Play interactive tourEdit tour

Windows Analysis Report
https://check.xemyrai6.icu/gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b # ''I am not a robot - САРТСНА Verification ID:543195''

Overview

General Information

Sample URL:	https://check.xemyrai6.icu/gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b # ''I am not a robot - САРТСНА Verification ID:543195''
Analysis ID:	1641377
Infos:

Detection

HTMLPhisher

Score:	72
Range:	0 - 100
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

Yara detected BlockedWebSite

Yara detected Powershell download and execute

Creates files inside the system directory

Deletes files inside the Windows folder

Detected non-DNS traffic on DNS port

Suricata IDS alerts with low severity for network traffic

Classification

×

Joe Sandbox Signatures

• • AV Detection
• • Phishing
• • Compliance
• • Networking
• • System Summary
• • HIPS / PFW / Operating System Protection Evasion

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://check.xemyrai6.icu/gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b%20#%20''I%20am%20not%20a%20robot%20-%20%20Verification%20ID:543195''

Avira URL Cloud: detection malicious, Label: phishing

Antivirus detection for URL or domain

Source: https://check.xemyrai6.icu/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://check.xemyrai6.icu/gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b%20	Avira URL Cloud: Label: malware
Source: https://check.xemyrai6.icu/cdn-cgi/speculation	Avira URL Cloud: Label: phishing
Source: https://check.xemyrai6.icu/cdn-cgi/images/icon-exclamation.png?1376755637	Avira URL Cloud: Label: phishing

Phishing

Yara detected BlockedWebSite

Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: dropped/chromecache_214, type: DROPPED
Source: Yara match	File source: dropped/chromecache_249, type: DROPPED

Found iframes

Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/ga/rul?tid=G-SQCRB0TXZW&gacid=2125603403.1742283256&gtm=45je53d3v895724479z8890325950za200zb890325950&dma=0&gcs=G111&gcd=13r3r3r3r5l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=102308675~102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&z=1686251471
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/fls/rul/activityi;fledge=1;src=9309168;type=a_pag0;cat=3_page;ord=9680566318671;npa=0;auiddc=667396256.1742283254;u1=page_load;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=1260795656;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=9;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2?
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://cloudflareinc.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.cloudflare.com
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://s.company-target.com/s/sync?exc=lr
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/ga/rul?tid=G-SQCRB0TXZW&gacid=2125603403.1742283256&gtm=45je53d3v895724479z8890325950za200zb890325950&dma=0&gcs=G111&gcd=13r3r3r3r5l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=102308675~102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&z=1686251471
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: Iframe src: https://td.doubleclick.net/td/fls/rul/activityi;fledge=1;src=9309168;type=a_pag0;cat=3_page;ord=9680566318671;npa=0;auiddc=667396256.1742283254;u1=page_load;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=1260795656;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=9;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2?

HTML page is missing a favicon

Source: https://check.xemyrai6.icu/gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b%20#%20''I%20am%20not%20a%20robot%20-%20%D0%A1%D0%90%D0%A0%D0%A2%D0%A1%D0%9D%D0%90%20Verification%20ID:543195''	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No favicon

META author tag missing

Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="author".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="author".. found

META copyright tag missing

Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="copyright".. found
Source: https://www.cloudflare.com/learning/access-management/phishing-attack/	HTTP Parser: No <meta name="copyright".. found

Compliance

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 142.250.184.196:443 -> 192.168.2.5:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 188.114.97.3:443 -> 192.168.2.5:62838 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 188.114.97.3:443 -> 192.168.2.5:62837 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.5:62840 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 188.114.96.3:443 -> 192.168.2.5:62846 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62863 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.80.73:443 -> 192.168.2.5:62862 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62864 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.124.96:443 -> 192.168.2.5:62865 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62871 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.5:62869 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.30.78:443 -> 192.168.2.5:62870 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62875 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62874 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62877 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62882 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.96.1:443 -> 192.168.2.5:62886 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62908 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.18.96.221:443 -> 192.168.2.5:62905 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.16.5:443 -> 192.168.2.5:62922 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.65.140:443 -> 192.168.2.5:62917 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.71.105:443 -> 192.168.2.5:62924 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.42.14:443 -> 192.168.2.5:62918 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 88.221.110.136:443 -> 192.168.2.5:62921 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.73.230.208:443 -> 192.168.2.5:62920 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.16.164.8:443 -> 192.168.2.5:62919 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.245.46.89:443 -> 192.168.2.5:62923 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 146.75.116.157:443 -> 192.168.2.5:62916 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.35.45.179:443 -> 192.168.2.5:62927 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.196:443 -> 192.168.2.5:62928 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.5:62931 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.220.103.163:443 -> 192.168.2.5:62936 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.5:62934 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.196:443 -> 192.168.2.5:62933 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.129.140:443 -> 192.168.2.5:62939 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.5:62945 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.198.23.205:443 -> 192.168.2.5:62940 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.96.71.22:443 -> 192.168.2.5:62951 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.5:62953 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.42.14:443 -> 192.168.2.5:62947 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.140.62.222:443 -> 192.168.2.5:62943 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.17.115.208:443 -> 192.168.2.5:62946 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.66.102.85:443 -> 192.168.2.5:62950 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.22.242.97:443 -> 192.168.2.5:62952 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.17.5:443 -> 192.168.2.5:62956 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.16.5:443 -> 192.168.2.5:62957 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 162.159.140.229:443 -> 192.168.2.5:62959 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.41.41:443 -> 192.168.2.5:62960 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.235.250:443 -> 192.168.2.5:62944 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.66.0.227:443 -> 192.168.2.5:62962 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.27.193:443 -> 192.168.2.5:62963 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.35.45.179:443 -> 192.168.2.5:62961 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.213.58.31:443 -> 192.168.2.5:62965 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.41.41:443 -> 192.168.2.5:62969 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 69.173.144.165:443 -> 192.168.2.5:62966 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.239.34.181:443 -> 192.168.2.5:62977 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.130:443 -> 192.168.2.5:62979 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.138.7.51:443 -> 192.168.2.5:62980 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.220.103.163:443 -> 192.168.2.5:62985 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.132:443 -> 192.168.2.5:62989 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 192.28.144.124:443 -> 192.168.2.5:62997 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63006 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63007 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.140.62.222:443 -> 192.168.2.5:63008 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.66.0.227:443 -> 192.168.2.5:63016 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.42.14:443 -> 192.168.2.5:63011 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 162.159.140.229:443 -> 192.168.2.5:63021 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.186.70:443 -> 192.168.2.5:63012 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.140.62.27:443 -> 192.168.2.5:63014 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.16.164.8:443 -> 192.168.2.5:63015 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.66.102.85:443 -> 192.168.2.5:63017 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.208.252.15:443 -> 192.168.2.5:63020 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.22.242.136:443 -> 192.168.2.5:63018 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.245.86.9:443 -> 192.168.2.5:63022 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.27.193:443 -> 192.168.2.5:63027 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.16.164.8:443 -> 192.168.2.5:63025 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.138.7.120:443 -> 192.168.2.5:63032 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.194:443 -> 192.168.2.5:63036 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 69.173.144.165:443 -> 192.168.2.5:63028 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.134:443 -> 192.168.2.5:63037 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.140.62.27:443 -> 192.168.2.5:63039 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.245.86.9:443 -> 192.168.2.5:63041 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.130:443 -> 192.168.2.5:63043 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.239.34.181:443 -> 192.168.2.5:63044 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.245.86.7:443 -> 192.168.2.5:63045 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.5:63057 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.17.5:443 -> 192.168.2.5:63064 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63071 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63072 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63074 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63075 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.230:443 -> 192.168.2.5:63082 version: TLS 1.2

Networking

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.5:62835 -> 1.1.1.1:53

Suricata IDS alerts with low severity for network traffic

Source: Network traffic	Suricata IDS: 2022112 - Severity 1 - ET EXPLOIT_KIT Possible Nuclear EK Landing Nov 17 2015 : 192.168.2.5:62959 -> 162.159.140.229:443
Source: Network traffic	Suricata IDS: 2022112 - Severity 1 - ET EXPLOIT_KIT Possible Nuclear EK Landing Nov 17 2015 : 192.168.2.5:62963 -> 104.18.27.193:443
Source: Network traffic	Suricata IDS: 2022112 - Severity 1 - ET EXPLOIT_KIT Possible Nuclear EK Landing Nov 17 2015 : 192.168.2.5:62962 -> 172.66.0.227:443

Connects to IPs without corresponding DNS lookups

Source: unknown	TCP traffic detected without corresponding DNS query: 104.126.37.184
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.77.188
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.14
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.14
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.14
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.14
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.14
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.14
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.14
Source: unknown	TCP traffic detected without corresponding DNS query: 104.126.37.184
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.77.188
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Downloads files from webservers via HTTP

Source: global traffic	HTTP traffic detected: GET /gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b%20 HTTP/1.1Host: check.xemyrai6.icuConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/speculation HTTP/1.1Host: check.xemyrai6.icuConnection: keep-aliveOrigin: https://check.xemyrai6.icusec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: speculationrulesReferer: https://check.xemyrai6.icu/gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b%20Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/styles/cf.errors.css HTTP/1.1Host: check.xemyrai6.icuConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://check.xemyrai6.icu/gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b%20Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1Host: check.xemyrai6.icuConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://check.xemyrai6.icu/cdn-cgi/styles/cf.errors.cssAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: check.xemyrai6.icuConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://check.xemyrai6.icu/gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b%20Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1Host: check.xemyrai6.icuConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /learning/access-management/phishing-attack/ HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://check.xemyrai6.icu/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /img/learning/security/threats/phishing-attack/diagram-phishing-attack.png HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /img/privacyoptions.svg HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/2fMg89go9MegG1EDg39mNy/5a42817cd388ae352f77f56e53b1ff81/card-new.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-aliveOrigin: https://www.cloudflare.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/6bNeiYhSx0RGvbzxS5Fi8c/3ff83bcc36e86e85170201f8264b2c1c/banner-new.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /img/learning/security/threats/phishing-attack/diagram-phishing-attack.png HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /webpack-runtime-9510a2e22c3debbfcadd.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /framework-957a522640f43541ca6a.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /app-435b8291d068da48aef5.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/scripttemplates/otSDKStub.js HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/api.js?render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/2fMg89go9MegG1EDg39mNy/5a42817cd388ae352f77f56e53b1ff81/card-new.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /img/privacyoptions.svg HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/6bNeiYhSx0RGvbzxS5Fi8c/3ff83bcc36e86e85170201f8264b2c1c/banner-new.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f3b948d8acb8/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/consent/b1e05d49-f072-4bae-9116-bdb78af15448/b1e05d49-f072-4bae-9116-bdb78af15448.json HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.js HTTP/1.1Host: performance.radar.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/scripttemplates/202407.2.0/otBannerSdk.js HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/consent/b1e05d49-f072-4bae-9116-bdb78af15448/b1e05d49-f072-4bae-9116-bdb78af15448.json HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /page-data/app-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /page-data/learning/access-management/phishing-attack/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /logger-1.min.js HTTP/1.1Host: cdn.logr-ingest.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/consent/b1e05d49-f072-4bae-9116-bdb78af15448/018debfb-4917-76f1-8862-8a2f83812baa/en.json HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/1048862057.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/3199558980.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/333361657.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/3934964512.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /a06cff934e9579536ce1c10bad21c1d6d7f63ae0-90484db4602d401d94ca.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /component---src-components-learning-center-templates-learning-center-article-template-tsx-49a0a9ee350debcad655.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /page-data/app-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /page-data/learning/access-management/phishing-attack/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/scripttemplates/202407.2.0/assets/otCommonStyles.css HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/consent/b1e05d49-f072-4bae-9116-bdb78af15448/018debfb-4917-76f1-8862-8a2f83812baa/en.json HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/1048862057.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/3199558980.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/3934964512.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/333361657.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F
Source: global traffic	HTTP traffic detected: GET /174-242772ef10d8d161ae24.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F
Source: global traffic	HTTP traffic detected: GET /static/z/i.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-0195a82c-9dea-7a88-89ee-dbc515cce404%22%2C%22sessionID%22:0%2C%22lastActivity%22:1742283251760%2C%22hasActivity%22:false}; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xi46x/0x4AAAAAAAnv2jFa1hO0Znbl/light/fbE/new/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F
Source: global traffic	HTTP traffic detected: GET /api/v1/marketo/form/2459 HTTP/1.1Host: api.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F
Source: global traffic	HTTP traffic detected: GET /f597f8065f97/065ba81630d7/launch-efab6d095ce0.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/scripttemplates/202407.2.0/assets/otCommonStyles.css HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1
Source: global traffic	HTTP traffic detected: GET /static/z/s.js?z=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 HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-0195a82c-9dea-7a88-89ee-dbc515cce404%22%2C%22sessionID%22:0%2C%22lastActivity%22:1742283251760%2C%22hasActivity%22:false}; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=92230bda298d41ba&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xi46x/0x4AAAAAAAnv2jFa1hO0Znbl/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xi46x/0x4AAAAAAAnv2jFa1hO0Znbl/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1
Source: global traffic	HTTP traffic detected: GET /api/v1/marketo/form/2459 HTTP/1.1Host: api.www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1
Source: global traffic	HTTP traffic detected: GET /qualified.js?token=37pXYrro6wCZbsU7 HTTP/1.1Host: js.qualified.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1742283253433&uuid=b63dc466-0dab-4535-b4a6-109e5a7d4b49&integration=reddit&opt_out=0&v=rdt_65e23bc4&sh=1024&sw=1280 HTTP/1.1Host: alb.reddit.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sl.js HTTP/1.1Host: scout-cdn.salesloft.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283253433&pid=28851&conversionId=13043044 HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /li.lms-analytics/insight.min.js HTTP/1.1Host: snap.licdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /munchkin-beta.js HTTP/1.1Host: munchkin.marketo.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripts/bizible.js HTTP/1.1Host: cdn.bizible.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1be41a80498a5b73.min.js HTTP/1.1Host: tag.demandbase.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uwt.js HTTP/1.1Host: static.ads-twitter.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=8AD56F28618A50850A495FB6%40AdobeOrg&d_nsid=0&ts=1742283253533 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-Type: application/x-www-form-urlencodedsec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20166%7CvVersion%7C5.5.0; _gcl_au=1.1.667396256.1742283254
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283254486&pid=28851&conversionId=10249833 HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDkyNjh9.dguW7jthV1Y1wgRcAJfVrR_xsANK7zX9ZiD1wf0suvY HTTP/1.1Host: scout.salesloft.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/z/t HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-0195a82c-9dea-7a88-89ee-dbc515cce404%22%2C%22sessionID%22:0%2C%22lastActivity%22:1742283251760%2C%22hasActivity%22:false}; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20166%7CvVersion%7C5.5.0; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-9
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=01d7b225-2cff-4e08-b66b-988cdd13e9a5&_u=KGDAAEADQAAAAC%7E&z=2118699474&slf_rd=1 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comX-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1742283253433&uuid=b63dc466-0dab-4535-b4a6-109e5a7d4b49&integration=reddit&opt_out=0&v=rdt_65e23bc4&sh=1024&sw=1280 HTTP/1.1Host: alb.reddit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283253433&pid=28851&conversionId=13043044&cookiesTest=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; lidc="b=VGST03:s=V:r=V:a=V:p=V:g=3436:u=1:x=1:i=1742283254:t=1742369654:v=2:sig=AQGTf2Tmspbvsimk734BfbH97-PB5bPO"
Source: global traffic	HTTP traffic detected: GET /710030.gif?pdata=d=desktop,lc=US,ref=check.xemyrai6.icu HTTP/1.1Host: di.rlcdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/sync?exc=lr HTTP/1.1Host: s.company-target.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /464526.gif HTTP/1.1Host: id.rlcdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283254486&pid=28851&conversionId=10249833&cookiesTest=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: li_sugr=36a7d405-e516-4c43-9976-cbd2175fb88f; bcookie="v=2&49349456-03d9-4291-86f0-9d04772468a4"; lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"
Source: global traffic	HTTP traffic detected: GET /attribution_trigger?pid=28851&time=1742283254571&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: *sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://www.cloudflare.comAttribution-Reporting-Eligible: trigger=event-sourceAttribution-Reporting-Support: web;osSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /164/munchkin.js HTTP/1.1Host: munchkin.marketo.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dest5.html?d_nsid=0 HTTP/1.1Host: cloudflareinc.demdex.netConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=27551282098545788821892944682676757551
Source: global traffic	HTTP traffic detected: GET /ipv?_biz_r=https%3A%2F%2Fcheck.xemyrai6.icu%2F&_biz_h=-1777624096&_biz_u=046522e2590c45e8b6409f563ef1e283&_biz_l=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&_biz_t=1742283254590&_biz_i=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare&_biz_n=0&rnd=76904&cdn_o=a&_biz_z=1742283254591 HTTP/1.1Host: cdn.bizible.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /u?_biz_u=046522e2590c45e8b6409f563ef1e283&_biz_l=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&_biz_t=1742283254594&_biz_i=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare&rnd=126973&cdn_o=a&_biz_z=1742283254594 HTTP/1.1Host: cdn.bizibly.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cable?wv=9&token=37pXYrro6wCZbsU7&vu=819860d3-0c5c-4ed3-ade6-2a9c9a8ce592&wu=390b3bea-15f9-48f7-8b8d-5cb09772f483&ca=2025-03-18T07%3A34%3A14.669Z&tz=America%2FNew_York&bis=5&referrer=https%3A%2F%2Fcheck.xemyrai6.icu%2F&pv=1&fv=2025-03-18-6fd1b7ecaa&iml=false&bl=en-US&ic=true HTTP/1.1Host: ws6.qualified.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://www.cloudflare.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: QPcQDNpuSOLw7GHvjuJ3tw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bitsSec-WebSocket-Protocol: actioncable-v1-json, actioncable-unsupported
Source: global traffic	HTTP traffic detected: GET /collect?v=2&fmt=js&pid=28851&time=1742283254571&li_adsId=3f6100eb-cd34-4260-8bbd-1c73f8763cb6&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; lidc="b=VGST03:s=V:r=V:a=V:p=V:g=3436:u=1:x=1:i=1742283254:t=1742369654:v=2:sig=AQGTf2Tmspbvsimk734BfbH97-PB5bPO"
Source: global traffic	HTTP traffic detected: GET /1/i/adsct?bci=4&dv=America%2FNew_York%26en-US%2Cen%26Google%20Inc.%26Win32%26255%261280%261024%264%2624%261280%26984%260%26na&eci=3&event=%7B%7D&event_id=faf90841-edfd-424e-b213-a067ea3fe2f0&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=75345be4-bd3d-4c8a-8617-cca82a41caef&restricted_data_use=restrict_optimization&tw_document_href=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&tw_iframe_status=0&txn_id=nvldc&type=javascript&version=2.3.31 HTTP/1.1Host: t.coConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%2F%3Ffmt%3Djs%26v%3D2%26url%3Dhttps%253A%252F%252Fwww.cloudflare.com%252Flearning%252Faccess-management%252Fphishing-attack%252F%26time%3D1742283253433%26pid%3D28851%26conversionId%3D13043044%26cookiesTest%3Dtrue%26liSync%3Dtrue HTTP/1.1Host: www.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKkSxvGmxMWlAAAAZWoLK5HyFLYCMdCOtiCwCmVtEzQLyHuauWKceyHKJ4FurG2Urmi_3jKDyPwkA; AnalyticsSyncHistory=AQI7WbMzI6YbFAAAAZWoLK5HE1krbkpm25EuDvNJkxUG1yMqEaNtUd25fPrLAf0eWlggK6vPDGMK0Bpc9LMufA; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"
Source: global traffic	HTTP traffic detected: GET /i HTTP/1.1Host: scout.salesloft.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm/dd?d_uuid=27551282098545788821892944682676757551 HTTP/1.1Host: cm.everesttech.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1/i/adsct?bci=4&dv=America%2FNew_York%26en-US%2Cen%26Google%20Inc.%26Win32%26255%261280%261024%264%2624%261280%26984%260%26na&eci=3&event=%7B%7D&event_id=faf90841-edfd-424e-b213-a067ea3fe2f0&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=75345be4-bd3d-4c8a-8617-cca82a41caef&restricted_data_use=restrict_optimization&tw_document_href=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&tw_iframe_status=0&txn_id=nvldc&type=javascript&version=2.3.31 HTTP/1.1Host: analytics.twitter.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=18&expiry=1758180855&external_user_id=1990cbd0-249c-4810-b25c-9ba02ccc618e HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=8AD56F28618A50850A495FB6%40AdobeOrg&d_nsid=0&ts=1742283253533 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=27551282098545788821892944682676757551
Source: global traffic	HTTP traffic detected: GET /sync?UIDM=1990cbd0-249c-4810-b25c-9ba02ccc618e HTTP/1.1Host: partners.tremorhub.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%2F%3Ffmt%3Djs%26v%3D2%26url%3Dhttps%253A%252F%252Fwww.cloudflare.com%252Flearning%252Faccess-management%252Fphishing-attack%252F%26time%3D1742283254486%26pid%3D28851%26conversionId%3D10249833%26cookiesTest%3Dtrue%26liSync%3Dtrue HTTP/1.1Host: www.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=36a7d405-e516-4c43-9976-cbd2175fb88f; UserMatchHistory=AQIXQ_gEDBwqVAAAAZWoLK_UI0xX3pSldnc8vNu4-CWIFxM-5lt7h9SJLx0rH1B4iSCTwneHGdRPJg; AnalyticsSyncHistory=AQI3E9Ea0nNKjAAAAZWoLK_UkgihI44kS064VsCdNxOXPPEQIYfAXE1CFThRxh_qeMAKFp5k1whBCCUNPb0psg; bcookie="v=2&49349456-03d9-4291-86f0-9d04772468a4"
Source: global traffic	HTTP traffic detected: GET /page-data/plans/enterprise/contact/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveOrigin: https://www.cloudflare.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: application/signed-exchange;v=b3;q=0.7,*/*;q=0.8Purpose: prefetchSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-0195a82c-9dea-7a88-89ee-dbc515cce404%22%2C%22sessionID%22:0%2C%22lastActivity%22:1742283251760%2C%22hasActivity%22:false}; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_cou
Source: global traffic	HTTP traffic detected: GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D28851%26time%3D1742283254571%26li_adsId%3D3f6100eb-cd34-4260-8bbd-1c73f8763cb6%26url%3Dhttps%253A%252F%252Fwww.cloudflare.com%252Flearning%252Faccess-management%252Fphishing-attack%252F%26liSync%3Dtrue HTTP/1.1Host: www.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKgKp493SzswAAAAZWoLLCoFmOF-Lf6AJojvW3gDxGXB_eZtAqBWGA6TpRHcRROVsqxj-cu91EcVw; AnalyticsSyncHistory=AQImHPrV-PuhZgAAAZWoLLCoqEGTGQhgdifMdpHUb66jrdlj1HanqUqTVPeZU8QDGHXfZpH8482lZqrGQhc5Fw; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"
Source: global traffic	HTTP traffic detected: GET /tap.php?nid=5578&put=1990cbd0-249c-4810-b25c-9ba02ccc618e&v=1181926 HTTP/1.1Host: pixel.rubiconproject.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/learning/access-management/what-is-identity-and-access-management/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveOrigin: https://www.cloudflare.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: application/signed-exchange;v=b3;q=0.7,*/*;q=0.8Purpose: prefetchSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-0195a82c-9dea-7a88-89ee-dbc515cce404%22%2C%22sessionID%22:0%2C%22lastActivity%22:1742283251760%2C%22hasActivity%22:false}; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22
Source: global traffic	HTTP traffic detected: GET /f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC55904e5e1abc4d38a5f1ac3dea0edaab-source.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /xdc.js?_biz_u=046522e2590c45e8b6409f563ef1e283&_biz_h=-1777624096&cdn_o=a&jsVer=4.25.02.19 HTTP/1.1Host: cdn.bizible.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _BUID=046522e2590c45e8b6409f563ef1e283
Source: global traffic	HTTP traffic detected: GET /u?mapType=ecid&mapValue=8AD56F28618A50850A495FB6%40AdobeOrg_33133750470002030001261641929229400597&_biz_u=046522e2590c45e8b6409f563ef1e283&_biz_l=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&_biz_t=1742283254595&_biz_i=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare&_biz_n=1&rnd=192676&cdn_o=a&_biz_z=1742283255558 HTTP/1.1Host: cdn.bizible.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _BUID=046522e2590c45e8b6409f563ef1e283
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283253433&pid=28851&conversionId=13043044&cookiesTest=true&liSync=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKgKp493SzswAAAAZWoLLCoFmOF-Lf6AJojvW3gDxGXB_eZtAqBWGA6TpRHcRROVsqxj-cu91EcVw; AnalyticsSyncHistory=AQImHPrV-PuhZgAAAZWoLLCoqEGTGQhgdifMdpHUb66jrdlj1HanqUqTVPeZU8QDGHXfZpH8482lZqrGQhc5Fw; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; __cf_bm=fUgNjriCt_vQ18ZJwyrI7AqJTeDuNZDRZNzlFhlHYGY-1742283256-1.0.1.1-P_RHF_8fY0Lc1IYCVccm9YfOI0DOBnRAOddZv3MJtMd6fjnqbbqQaB2VxjDkywuCh8c.t_9r0DcGVf5WuhudqiQEHE1ry6T0.sBmnYxdy_o
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=18&expiry=1758180855&external_user_id=1990cbd0-249c-4810-b25c-9ba02ccc618e&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: CMID=Z9kh.NHM6SsAMLmJAGYkdAAA; CMPS=3471; CMPRO=3471
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=Z9kh_AAAAOKsVgOJ HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=27551282098545788821892944682676757551
Source: global traffic	HTTP traffic detected: GET /td/ga/rul?tid=G-SQCRB0TXZW&gacid=2125603403.1742283256&gtm=45je53d3v895724479z8890325950za200zb890325950&dma=0&gcs=G111&gcd=13r3r3r3r5l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=102308675~102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&z=1686251471 HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Browser-Channel: stableX-Browser-Year: 2025X-Browser-Validation: wTKGXmLo+sPWz1JKKbFzUyHly1Q=X-Browser-Copyright: Copyright 2025 Google LLC. All rights reserved.X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=XvTBxrcKi40TXfyQfsDgEPT_ZRNzvam86mhRnEIl-SsPGOmFQ8B3xg==&api-version=v3 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/learning/access-management/what-is-sase/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveOrigin: https://www.cloudflare.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: application/signed-exchange;v=b3;q=0.7,*/*;q=0.8Purpose: prefetchSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-0195a82c-9dea-7a88-89ee-dbc515cce404%22%2C%22sessionID%22:0%2C%22lastActivity%22:1742283251760%2C%22hasActivity%22:false}; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22n
Source: global traffic	HTTP traffic detected: GET /r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDkyNjh9.dguW7jthV1Y1wgRcAJfVrR_xsANK7zX9ZiD1wf0suvY HTTP/1.1Host: scout.salesloft.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/plans/enterprise/contact/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-0195a82c-9dea-7a88-89ee-dbc515cce404%22%2C%22sessionID%22:0%2C%22lastActivity%22:1742283251760%2C%22hasActivity%22:false}; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/820737830:1742282716:ZfrsBtS6ynMIRSS--pRT9J1sJ9MBh3J9CAcASq3qK8k/92230bda298d41ba/YM.CBhqYFR4REtn7.X9kz167Zq4hsBtga6OlsdJYrxU-1742283252-1.1.1.1-mB2DJ.w06lTlTkb0qplRFIG7ZMxl5ZsRyhhL7DhQIfHCEnaonSof5ITKSaQUnYPP HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20166%7CMCMID%7C33133750470002030001261641929229400597%7CMCAAMLH-1742888054%7C6%7CMCAAMB-1742888054%7C6G1ynYcLPuiQxYZrsz_pkqf
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283254486&pid=28851&conversionId=10249833&cookiesTest=true&liSync=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKgKp493SzswAAAAZWoLLCoFmOF-Lf6AJojvW3gDxGXB_eZtAqBWGA6TpRHcRROVsqxj-cu91EcVw; AnalyticsSyncHistory=AQImHPrV-PuhZgAAAZWoLLCoqEGTGQhgdifMdpHUb66jrdlj1HanqUqTVPeZU8QDGHXfZpH8482lZqrGQhc5Fw; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; __cf_bm=fk98mR2gWs0juKASm5GA.IMLSrrc33.0hdYP_h0PKag-1742283256-1.0.1.1-QkB33Vgg1KH.2bf7VwbJXSiuXWHma_Gb5YywjcQubeNE6dBDgq_txcCWJwD.1Mi6yl_VLRPcecTdwlYcJeL3R4enEeBWMJIQ6O.quQuGp3k
Source: global traffic	HTTP traffic detected: GET /ads/ga-audiences?t=sr&aip=1&_r=4&v=1&_v=j86&tid=G-PGV1K2BN4M&cid=01d7b225-2cff-4e08-b66b-988cdd13e9a5&_u=KGDAAEADQAAAAC%7E&z=2118699474&slf_rd=1 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collect?v=2&fmt=js&pid=28851&time=1742283254571&li_adsId=3f6100eb-cd34-4260-8bbd-1c73f8763cb6&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&liSync=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKgKp493SzswAAAAZWoLLCoFmOF-Lf6AJojvW3gDxGXB_eZtAqBWGA6TpRHcRROVsqxj-cu91EcVw; AnalyticsSyncHistory=AQImHPrV-PuhZgAAAZWoLLCoqEGTGQhgdifMdpHUb66jrdlj1HanqUqTVPeZU8QDGHXfZpH8482lZqrGQhc5Fw; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; __cf_bm=6wg6BRVpt8UJsMNi97yVv7F2iZh8YHVP_.5H46SpuvU-1742283256-1.0.1.1-u.HTtHaOrTJyfXcm8gKCFmGLzfXfkRth6SE5bJXagTaPR8EJZ9I_WGjwiMCHq0._7_y7CXWq6mWZqz9Gdx73bn2N3Z7ynYV5zemiZflnbGc
Source: global traffic	HTTP traffic detected: GET /page-data/learning/access-management/what-is-identity-and-access-management/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988c
Source: global traffic	HTTP traffic detected: GET /page-data/learning/access-management/what-is-sase/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A17
Source: global traffic	HTTP traffic detected: GET /f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC392ad6d4bbf94c7283b4eda6cbf689a0-source.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/plans/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveOrigin: https://www.cloudflare.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: application/signed-exchange;v=b3;q=0.7,*/*;q=0.8Purpose: prefetchSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-0195a82c-9dea-7a88-89ee-dbc515cce404%22%2C%22sessionID%22:0%2C%22lastActivity%22:1742283251760%2C%22hasActivity%22:false}; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%2
Source: global traffic	HTTP traffic detected: GET /component---src-components-page-page-template-tsx-c7ec2b92ba43b220ad2d.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Purpose: prefetchSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b22
Source: global traffic	HTTP traffic detected: GET /u?mapType=mkto&mapValue=id%3A713-XSC-918%26token%3A_mch-cloudflare.com-521eda6d18e2dadf1a0f2a4ef8f63def&_biz_u=046522e2590c45e8b6409f563ef1e283&_biz_l=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&_biz_t=1742283255662&_biz_i=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare&_biz_n=2&rnd=209958&cdn_o=a&_biz_z=1742283256605 HTTP/1.1Host: cdn.bizible.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _BUID=046522e2590c45e8b6409f563ef1e283
Source: global traffic	HTTP traffic detected: GET /component---src-components-learning-center-templates-learning-center-article-template-tsx-49a0a9ee350debcad655.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Purpose: prefetchSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C
Source: global traffic	HTTP traffic detected: GET /td/fls/rul/activityi;fledge=1;src=9309168;type=a_pag0;cat=3_page;ord=9680566318671;npa=0;auiddc=667396256.1742283254;u1=page_load;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=1260795656;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=9;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Browser-Channel: stableX-Browser-Year: 2025X-Browser-Validation: wTKGXmLo+sPWz1JKKbFzUyHly1Q=X-Browser-Copyright: Copyright 2025 Google LLC. All rights reserved.X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /activity;src=9309168;type=a_pag0;cat=3_page;ord=9680566318671;npa=0;auiddc=667396256.1742283254;u1=page_load;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=1260795656;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=5;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9309168;type=a_pag0;cat=3_page;ord=9680566318671;npa=0;auiddc=667396256.1742283254;u1=page_load;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=1260795656;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=10;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Attribution-Reporting-Eligible: trigger, event-sourceAttribution-Reporting-Support: web;osX-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /1/i/adsct?bci=4&dv=America%2FNew_York%26en-US%2Cen%26Google%20Inc.%26Win32%26255%261280%261024%264%2624%261280%26984%260%26na&eci=3&event=%7B%7D&event_id=faf90841-edfd-424e-b213-a067ea3fe2f0&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=75345be4-bd3d-4c8a-8617-cca82a41caef&restricted_data_use=restrict_optimization&tw_document_href=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&tw_iframe_status=0&txn_id=nvldc&type=javascript&version=2.3.31 HTTP/1.1Host: t.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: muc_ads=bea6c0e1-96bd-4bf4-8ac6-deb9d8b46b08; __cf_bm=Oagpli975DVGXLjI5SrYxDfeg.xtSXoOufcmmUS4af4-1742283256-1.0.1.1-z.ojtuINqKWer1vSx9qK2B._xa3E86bmYSzXuXTSBRgdzkTV5rX83Hnz4N02tF.jI5n9NuBHbCFwuAsnGXog78uzAhoZGIb_R240LEaoteY
Source: global traffic	HTTP traffic detected: GET /i HTTP/1.1Host: scout.salesloft.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /attribution_trigger?pid=28851&time=1742283254571&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F HTTP/1.1Host: px.ads.linkedin.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKgKp493SzswAAAAZWoLLCoFmOF-Lf6AJojvW3gDxGXB_eZtAqBWGA6TpRHcRROVsqxj-cu91EcVw; AnalyticsSyncHistory=AQImHPrV-PuhZgAAAZWoLLCoqEGTGQhgdifMdpHUb66jrdlj1HanqUqTVPeZU8QDGHXfZpH8482lZqrGQhc5Fw; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; __cf_bm=6wg6BRVpt8UJsMNi97yVv7F2iZh8YHVP_.5H46SpuvU-1742283256-1.0.1.1-u.HTtHaOrTJyfXcm8gKCFmGLzfXfkRth6SE5bJXagTaPR8EJZ9I_WGjwiMCHq0._7_y7CXWq6mWZqz9Gdx73bn2N3Z7ynYV5zemiZflnbGc
Source: global traffic	HTTP traffic detected: GET /static/z/t HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _biz_uid=046522e2590c45e8b6409f563ef1e283; __q_state_37pXYrro6wCZbsU7=eyJ1dWlkIjoiODE5ODYwZDMt
Source: global traffic	HTTP traffic detected: GET /activity;dc_pre=CLCX4_WOk4wDFRlRHgIdF0sADg;src=9309168;type=a_pag0;cat=3_page;ord=9680566318671;npa=0;auiddc=667396256.1742283254;u1=page_load;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=1260795656;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=5;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUn8tNlB7YBxNrOEt1ci6n1MCryx9h9H-b0E-CIbZt9T5q0RIS0ZwetupcOcfBg
Source: global traffic	HTTP traffic detected: GET /1/i/adsct?bci=4&dv=America%2FNew_York%26en-US%2Cen%26Google%20Inc.%26Win32%26255%261280%261024%264%2624%261280%26984%260%26na&eci=3&event=%7B%7D&event_id=faf90841-edfd-424e-b213-a067ea3fe2f0&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=75345be4-bd3d-4c8a-8617-cca82a41caef&restricted_data_use=restrict_optimization&tw_document_href=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&tw_iframe_status=0&txn_id=nvldc&type=javascript&version=2.3.31 HTTP/1.1Host: analytics.twitter.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: guest_id_marketing=v1%3A174228325630290529; guest_id_ads=v1%3A174228325630290529; personalization_id="v1_5jIbtjY/fVUGzcA2O0stDg=="; guest_id=v1%3A174228325630290529; __cf_bm=pGE7fb2FRQX9lCZoj5vuDbZ_hKOzpwjWj3p9.gQRz5Q-1742283256-1.0.1.1-VMVdyOomHQ4N4Dn1pn6J9SLSf2K8FzMfVnZ0vjmi2gBlNl3S88e.6QkO088aHD0jIEuZQ8uWASppx.hrWQm5CeazlKQ0rws.Y2exdVb7AA8
Source: global traffic	HTTP traffic detected: GET /ee/v1/identity/acquire?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=406977fd-9d16-4cf9-b55f-df2adac8b565 HTTP/1.1Host: adobedc.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=27551282098545788821892944682676757551
Source: global traffic	HTTP traffic detected: GET /ipv?_biz_r=https%3A%2F%2Fcheck.xemyrai6.icu%2F&_biz_h=-1777624096&_biz_u=046522e2590c45e8b6409f563ef1e283&_biz_l=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&_biz_t=1742283254590&_biz_i=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare&_biz_n=0&rnd=76904&cdn_o=a&_biz_z=1742283254591 HTTP/1.1Host: cdn.bizible.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _BUID=046522e2590c45e8b6409f563ef1e283
Source: global traffic	HTTP traffic detected: GET /api/v3/ip.json?referrer=https%3A%2F%2Fcheck.xemyrai6.icu%2F&page=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&page_title=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare HTTP/1.1Host: api.company-target.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: tuuid=1990cbd0-249c-4810-b25c-9ba02ccc618e; tuuid_lu=1742283255|ix:0|mctv:0|rp:0
Source: global traffic	HTTP traffic detected: GET /sync?UIDM=1990cbd0-249c-4810-b25c-9ba02ccc618e HTTP/1.1Host: partners.tremorhub.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: tvid=2d1b3c02bae54ff38f3d7e260dec4e9f; tv_UIDM=1990cbd0-249c-4810-b25c-9ba02ccc618e
Source: global traffic	HTTP traffic detected: GET /u?_biz_u=046522e2590c45e8b6409f563ef1e283&_biz_l=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&_biz_t=1742283254594&_biz_i=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare&rnd=126973&cdn_o=a&_biz_z=1742283254594 HTTP/1.1Host: cdn.bizibly.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/plans/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/learning/access-management/phishing-attack/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=18&expiry=1758180855&external_user_id=1990cbd0-249c-4810-b25c-9ba02ccc618e&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: CMID=Z9kh.NHM6SsAMLmJAGYkdAAA; CMPS=3471; CMPRO=3471
Source: global traffic	HTTP traffic detected: GET /page-data/plans/enterprise/contact/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _biz_uid=046522e2590c45e8b6409f563ef1e283; __q_state_37
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283253433&pid=28851&conversionId=13043044&cookiesTest=true&liSync=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKgKp493SzswAAAAZWoLLCoFmOF-Lf6AJojvW3gDxGXB_eZtAqBWGA6TpRHcRROVsqxj-cu91EcVw; AnalyticsSyncHistory=AQImHPrV-PuhZgAAAZWoLLCoqEGTGQhgdifMdpHUb66jrdlj1HanqUqTVPeZU8QDGHXfZpH8482lZqrGQhc5Fw; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; __cf_bm=6wg6BRVpt8UJsMNi97yVv7F2iZh8YHVP_.5H46SpuvU-1742283256-1.0.1.1-u.HTtHaOrTJyfXcm8gKCFmGLzfXfkRth6SE5bJXagTaPR8EJZ9I_WGjwiMCHq0._7_y7CXWq6mWZqz9Gdx73bn2N3Z7ynYV5zemiZflnbGc
Source: global traffic	HTTP traffic detected: GET /page-data/learning/access-management/what-is-identity-and-access-management/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _biz_uid=04652
Source: global traffic	HTTP traffic detected: GET /page-data/learning/access-management/what-is-sase/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _biz_uid=046522e2590c45e8b6409f563ef1e28
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283254486&pid=28851&conversionId=10249833&cookiesTest=true&liSync=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKgKp493SzswAAAAZWoLLCoFmOF-Lf6AJojvW3gDxGXB_eZtAqBWGA6TpRHcRROVsqxj-cu91EcVw; AnalyticsSyncHistory=AQImHPrV-PuhZgAAAZWoLLCoqEGTGQhgdifMdpHUb66jrdlj1HanqUqTVPeZU8QDGHXfZpH8482lZqrGQhc5Fw; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; __cf_bm=6wg6BRVpt8UJsMNi97yVv7F2iZh8YHVP_.5H46SpuvU-1742283256-1.0.1.1-u.HTtHaOrTJyfXcm8gKCFmGLzfXfkRth6SE5bJXagTaPR8EJZ9I_WGjwiMCHq0._7_y7CXWq6mWZqz9Gdx73bn2N3Z7ynYV5zemiZflnbGc
Source: global traffic	HTTP traffic detected: GET /collect?v=2&fmt=js&pid=28851&time=1742283254571&li_adsId=3f6100eb-cd34-4260-8bbd-1c73f8763cb6&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&liSync=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKgKp493SzswAAAAZWoLLCoFmOF-Lf6AJojvW3gDxGXB_eZtAqBWGA6TpRHcRROVsqxj-cu91EcVw; AnalyticsSyncHistory=AQImHPrV-PuhZgAAAZWoLLCoqEGTGQhgdifMdpHUb66jrdlj1HanqUqTVPeZU8QDGHXfZpH8482lZqrGQhc5Fw; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; __cf_bm=6wg6BRVpt8UJsMNi97yVv7F2iZh8YHVP_.5H46SpuvU-1742283256-1.0.1.1-u.HTtHaOrTJyfXcm8gKCFmGLzfXfkRth6SE5bJXagTaPR8EJZ9I_WGjwiMCHq0._7_y7CXWq6mWZqz9Gdx73bn2N3Z7ynYV5zemiZflnbGc
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=Z9kh_AAAAOKsVgOJ HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=27551282098545788821892944682676757551; dpm=27551282098545788821892944682676757551
Source: global traffic	HTTP traffic detected: GET /u?mapType=ecid&mapValue=8AD56F28618A50850A495FB6%40AdobeOrg_33133750470002030001261641929229400597&_biz_u=046522e2590c45e8b6409f563ef1e283&_biz_l=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&_biz_t=1742283254595&_biz_i=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare&_biz_n=1&rnd=192676&cdn_o=a&_biz_z=1742283255558 HTTP/1.1Host: cdn.bizible.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _BUID=046522e2590c45e8b6409f563ef1e283
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/92230bda298d41ba/1742283255109/BFsi4ysAElY4gmK HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xi46x/0x4AAAAAAAnv2jFa1hO0Znbl/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _biz_uid=046522e2590c45e8b6409f
Source: global traffic	HTTP traffic detected: GET /bg9s?x-amz-cf-id=XvTBxrcKi40TXfyQfsDgEPT_ZRNzvam86mhRnEIl-SsPGOmFQ8B3xg==&api-version=v3 HTTP/1.1Host: tag-logger.demandbase.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /u?mapType=mkto&mapValue=id%3A713-XSC-918%26token%3A_mch-cloudflare.com-521eda6d18e2dadf1a0f2a4ef8f63def&_biz_u=046522e2590c45e8b6409f563ef1e283&_biz_l=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&_biz_t=1742283255662&_biz_i=What%20is%20a%20phishing%20attack%3F%20%7C%20Cloudflare&_biz_n=2&rnd=209958&cdn_o=a&_biz_z=1742283256605 HTTP/1.1Host: cdn.bizible.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _BUID=046522e2590c45e8b6409f563ef1e283
Source: global traffic	HTTP traffic detected: GET /ddm/fls/z/dc_pre=CLCX4_WOk4wDFRlRHgIdF0sADg;src=9309168;type=a_pag0;cat=3_page;ord=9680566318671;npa=0;auiddc=*;u1=page_load;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=1260795656;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=5;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2 HTTP/1.1Host: adservice.google.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tap.php?nid=5578&put=1990cbd0-249c-4810-b25c-9ba02ccc618e&v=1181926 HTTP/1.1Host: pixel.rubiconproject.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: khaos=M8E6GSPQ-1D-560F; audit=1|oS3fMlmL0P/udFchr5HDdgjWzjqoBi27lRNtGUsSub7lGNsBp+KQQa3gy92rfL/T0ZJ4mySbeIKM1KxoLazIt5mwZQnb46mpof38b0OaaTDifSj5nUTOCRkoRGf6XLUrMgKIGf8BhyVpM6w/x5GRrvIeaTDGuZ8ScmESKmf2cwrTmoFL5pKQsaZr5ZVxLWDe
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9309168;type=a_pag0;cat=3_page;ord=9680566318671;npa=0;auiddc=667396256.1742283254;u1=page_load;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=1260795656;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=10;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUkXcUCU-9hM2rd-OzewBt7SgztfOCvMRkW9Jv7FBNCrBmxYOd3zP6SuggoU
Source: global traffic	HTTP traffic detected: GET /ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=e5ddb016-b489-4f2e-bd00-c1acd8770932 HTTP/1.1Host: edge.adobedc.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/plans/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _biz_uid=046522e2590c45e8b6409f563ef1e283; __q_state_37pXYrro6wCZbsU7=eyJ1
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/92230bda298d41ba/1742283255109/BFsi4ysAElY4gmK HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _biz_uid=046522e2590c45e8b6409f563ef1e283; __q_state_37pXYrro6wCZbsU7=eyJ1dWlkIjoiODE5ODYwZDMtMGM1Yy00ZWQzLWFkZTYtMmE5YzlhOGNlNTkyIiwiY29va2llRG9tYWluIjoiY2xvdWRmbGFyZS5jb20ifQ==; kndctr_8AD56F28618A50850A495FB6_AdobeOrg_identity=CiYzMzEzMzc1MDQ3MDAwMjAzMDAwMTI2MTY0MTkyOTIyOTQwMDU5N1IRCOLgssHaMhgBKgRJUkwxMAPwAeLgssHaMg==; kndctr_8AD56F28618A50850A495FB6_A
Source: global traffic	HTTP traffic detected: GET /l/dmVuZG9yPW1hcmlwb3NhJnAxPW5naXAub3JnJnRva2VuPTVPOFIwbTV3UHFvcnVSTlR4REFHYnlmYWhiT0RmNEtWcmpnRlhUbTE= HTTP/1.1Host: segments.company-target.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-type: application/jsonsec-ch-ua-mobile: ?0Accept: */*Origin: https://www.cloudflare.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: tuuid=1990cbd0-249c-4810-b25c-9ba02ccc618e; tuuid_lu=1742283255|ix:0|mctv:0|rp:0
Source: global traffic	HTTP traffic detected: GET /ddm/fls/z/dc_pre=CLCX4_WOk4wDFRlRHgIdF0sADg;src=9309168;type=a_pag0;cat=3_page;ord=9680566318671;npa=0;auiddc=*;u1=page_load;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=1260795656;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=5;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2 HTTP/1.1Host: adservice.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /l/dmVuZG9yPW1hcmlwb3NhJnAxPW5naXAub3JnJnRva2VuPTVPOFIwbTV3UHFvcnVSTlR4REFHYnlmYWhiT0RmNEtWcmpnRlhUbTE= HTTP/1.1Host: segments.company-target.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: tuuid=1990cbd0-249c-4810-b25c-9ba02ccc618e; tuuid_lu=1742283255|ix:0|mctv:0|rp:0
Source: global traffic	HTTP traffic detected: GET /cable?wv=9&token=37pXYrro6wCZbsU7&vu=819860d3-0c5c-4ed3-ade6-2a9c9a8ce592&wu=390b3bea-15f9-48f7-8b8d-5cb09772f483&ca=2025-03-18T07%3A34%3A14.669Z&tz=America%2FNew_York&bis=5&referrer=https%3A%2F%2Fcheck.xemyrai6.icu%2F&pv=1&fv=2025-03-18-6fd1b7ecaa&iml=false&bl=en-US&ic=false HTTP/1.1Host: ws6.qualified.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://www.cloudflare.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: mEtpA5OlxQPOAT3aPIdshg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bitsSec-WebSocket-Protocol: actioncable-v1-json, actioncable-unsupported
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/pat/92230bda298d41ba/1742283255112/7828f533c7daa8abb6b6d1b15c15abb815479c0cb6f11eba163900140568d3ab/MoILlmCg0et_Ezl HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xi46x/0x4AAAAAAAnv2jFa1hO0Znbl/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _b
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/820737830:1742282716:ZfrsBtS6ynMIRSS--pRT9J1sJ9MBh3J9CAcASq3qK8k/92230bda298d41ba/YM.CBhqYFR4REtn7.X9kz167Zq4hsBtga6OlsdJYrxU-1742283252-1.1.1.1-mB2DJ.w06lTlTkb0qplRFIG7ZMxl5ZsRyhhL7DhQIfHCEnaonSof5ITKSaQUnYPP HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _biz_uid=046522e2590c45e8b6409f563ef1e283; __q_state_37pXYrro6wCZbsU7=eyJ1dWlkIjoiODE5ODYwZDMtMGM1Yy00ZWQzLWFkZTYtMmE5YzlhOGNlNTkyIiwiY29va2llRG9tYWluIjoiY2xvdWRmbGFyZS5jb20ifQ==; kndctr_
Source: global traffic	HTTP traffic detected: GET /cable?wv=9&token=37pXYrro6wCZbsU7&vu=819860d3-0c5c-4ed3-ade6-2a9c9a8ce592&wu=390b3bea-15f9-48f7-8b8d-5cb09772f483&ca=2025-03-18T07%3A34%3A14.669Z&tz=America%2FNew_York&bis=5&referrer=https%3A%2F%2Fcheck.xemyrai6.icu%2F&pv=1&fv=2025-03-18-6fd1b7ecaa&iml=false&bl=en-US&ic=false HTTP/1.1Host: ws6.qualified.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://www.cloudflare.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: IXxXy0hbSiChmJQFmMXerQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bitsSec-WebSocket-Protocol: actioncable-v1-json, actioncable-unsupported
Source: global traffic	HTTP traffic detected: GET /cable?wv=9&token=37pXYrro6wCZbsU7&vu=819860d3-0c5c-4ed3-ade6-2a9c9a8ce592&wu=390b3bea-15f9-48f7-8b8d-5cb09772f483&ca=2025-03-18T07%3A34%3A14.669Z&tz=America%2FNew_York&bis=5&referrer=https%3A%2F%2Fcheck.xemyrai6.icu%2F&pv=1&fv=2025-03-18-6fd1b7ecaa&iml=false&bl=en-US&ic=false HTTP/1.1Host: ws6.qualified.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://www.cloudflare.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: oSjFZGmXimsrt+fqSG3vQA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bitsSec-WebSocket-Protocol: actioncable-v1-json, actioncable-unsupported
Source: global traffic	HTTP traffic detected: GET /static/z/t HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=OeesBjCdUMfMd8Rhqgjpl0H3Zc2KsKg4izf2DlvN0zE-1742283247-1.0.1.1-P9l1WzveOou.BIfUiR170.asrr0Wbk_9_TvK.S.U._2FuPR1GLUoYxX2xEKUSjjpH3.f_1yjNsGRFy3AUUo_74YvHQZI9Sg69I1qFndAgbdbMaD6yiSbrrF2QCYCzMbc; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1742283251760}; _lr_uf_-ykolez=917189ee-1e43-4e2c-8106-36831c973424; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Mar+18+2025+03%3A34%3A11+GMT-0400+(Eastern+Daylight+Time)&version=202407.2.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=ecb50acc-dc30-4eb2-9d22-32ae27f8a79d&interactionCount=0&isAnonUser=1&landingPath=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&groups=SSPD_BG%3A1%2CC0004%3A1%2CC0002%3A1%2CC0003%3A1%2CC0001%3A1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.935895698%22%2C%22e%22%3A1773819253433%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.1697497243%22%2C%22e%22%3A1773819253433%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.356146980%22%2C%22e%22%3A1773819253433%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1742283253433.835965978%22%2C%22e%22%3A1773819253433%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221742283253433.b63dc466-0dab-4535-b4a6-109e5a7d4b49%22%2C%22e%22%3A1773819253433%7D%7D; _gcl_au=1.1.667396256.1742283254; cfzs_amplitude=%7B%22TTin_session_id%22%3A%7B%22v%22%3A%221742283254486%22%7D%7D; cfzs_google-analytics_v4=%7B%22nzcr_conversionCounter%22%3A%7B%22v%22%3A%221%22%7D%7D; cfz_amplitude=%7B%22TTin_event_id%22%3A%7B%22v%22%3A%222%22%2C%22e%22%3A1773819254486%7D%2C%22TTin_device_id%22%3A%7B%22v%22%3A%22cc6d2ede-a04f-4fd9-92df-9acb21b28cbe%22%2C%22e%22%3A1773819254486%7D%7D; cfz_google-analytics_v4=%7B%22nzcr_engagementDuration%22%3A%7B%22v%22%3A%220%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_engagementStart%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4sid%22%3A%7B%22v%22%3A%2229978568%22%2C%22e%22%3A1742285054486%7D%2C%22nzcr_session_counter%22%3A%7B%22v%22%3A%221%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_ga4%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr__z_ga_audiences%22%3A%7B%22v%22%3A%2201d7b225-2cff-4e08-b66b-988cdd13e9a5%22%2C%22e%22%3A1773819254486%7D%2C%22nzcr_let%22%3A%7B%22v%22%3A%221742283254486%22%2C%22e%22%3A1773819254486%7D%7D; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; _biz_uid=046522e2590c45e8b6409f563ef1e283; __q_state_37pXYrro6wCZbsU7=eyJ1dWlkIjoiODE5ODYwZDMt
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283284119&pid=28851&conversionId=20071137 HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: lidc="b=OGST03:s=O:r=O:a=O:p=O:g=3505:u=1:x=1:i=1742283255:t=1742369655:v=2:sig=AQEPcTu6glCKNc9iQyY-OenxPC3W79qz"; li_sugr=76cb0d2b-a948-4027-971c-dc43fbb66bbb; UserMatchHistory=AQKgKp493SzswAAAAZWoLLCoFmOF-Lf6AJojvW3gDxGXB_eZtAqBWGA6TpRHcRROVsqxj-cu91EcVw; AnalyticsSyncHistory=AQImHPrV-PuhZgAAAZWoLLCoqEGTGQhgdifMdpHUb66jrdlj1HanqUqTVPeZU8QDGHXfZpH8482lZqrGQhc5Fw; bcookie="v=2&e1d6c23c-a639-4085-8785-edb4c6bfd71c"; __cf_bm=6wg6BRVpt8UJsMNi97yVv7F2iZh8YHVP_.5H46SpuvU-1742283256-1.0.1.1-u.HTtHaOrTJyfXcm8gKCFmGLzfXfkRth6SE5bJXagTaPR8EJZ9I_WGjwiMCHq0._7_y7CXWq6mWZqz9Gdx73bn2N3Z7ynYV5zemiZflnbGc; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /activity;src=9309168;type=a_pri_pv;cat=0p_qual;ord=7435867000453;npa=0;auiddc=667396256.1742283254;u1=FL%20-%20Brand%20-%20GLOBAL%20-%20Quality%20Visit;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=174090911;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=5;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUkXcUCU-9hM2rd-OzewBt7SgztfOCvMRkW9Jv7FBNCrBmxYOd3zP6SuggoU; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /activity;src=9309168;type=a_eng0;cat=3_timer;ord=4878634885003;npa=0;auiddc=667396256.1742283254;u1=timer_event%20(30%20Sec);u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=844261132;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=5;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUkXcUCU-9hM2rd-OzewBt7SgztfOCvMRkW9Jv7FBNCrBmxYOd3zP6SuggoU; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9309168;type=a_pri_pv;cat=0p_qual;ord=7435867000453;npa=0;auiddc=667396256.1742283254;u1=FL%20-%20Brand%20-%20GLOBAL%20-%20Quality%20Visit;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=174090911;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=10;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Attribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceAttribution-Reporting-Support: web=osX-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUkXcUCU-9hM2rd-OzewBt7SgztfOCvMRkW9Jv7FBNCrBmxYOd3zP6SuggoU; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /td/fls/rul/activityi;fledge=1;src=9309168;type=a_pri_pv;cat=0p_qual;ord=7435867000453;npa=0;auiddc=667396256.1742283254;u1=FL%20-%20Brand%20-%20GLOBAL%20-%20Quality%20Visit;u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=174090911;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=9;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Browser-Channel: stableX-Browser-Year: 2025X-Browser-Validation: wTKGXmLo+sPWz1JKKbFzUyHly1Q=X-Browser-Copyright: Copyright 2025 Google LLC. All rights reserved.X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUkXcUCU-9hM2rd-OzewBt7SgztfOCvMRkW9Jv7FBNCrBmxYOd3zP6SuggoU; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9309168;type=a_eng0;cat=3_timer;ord=4878634885003;npa=0;auiddc=667396256.1742283254;u1=timer_event%20(30%20Sec);u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=844261132;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=10;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Attribution-Reporting-Eligible: trigger, event-sourceAttribution-Reporting-Support: webX-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUkXcUCU-9hM2rd-OzewBt7SgztfOCvMRkW9Jv7FBNCrBmxYOd3zP6SuggoU; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /td/fls/rul/activityi;fledge=1;src=9309168;type=a_eng0;cat=3_timer;ord=4878634885003;npa=0;auiddc=667396256.1742283254;u1=timer_event%20(30%20Sec);u2=www.cloudflare.com;u3=%2Flearning%2Faccess-management%2Fphishing-attack%2F;u4=en-US;u5=1742283253345;u6=US;u7=false;u8=undefined;u9=undefined;u10=undefined;u12=undefined;ps=1;pcor=844261132;uaa=x86;uab=64;uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;_tu=Kg;gtm=45fe53d3v9164255219z8890325950za201zb895724479;gcs=G111;gcd=13r3r3r3r5l1;dma=0;dc_fmt=9;tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887800;epver=2? HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Browser-Channel: stableX-Browser-Year: 2025X-Browser-Validation: wTKGXmLo+sPWz1JKKbFzUyHly1Q=X-Browser-Copyright: Copyright 2025 Google LLC. All rights reserved.X-Client-Data: CIe2yQEIprbJAQipncoBCMDdygEIlqHLAQiJo8sBCIWgzQEIrt7OAQ==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUkXcUCU-9hM2rd-OzewBt7SgztfOCvMRkW9Jv7FBNCrBmxYOd3zP6SuggoU; receive-cookie-deprecation=1

Found strings which match to known social media urls

Source: chromecache_226.1.dr	String found in binary or memory: -->`;document.body.appendChild(d);};{\n!function(e,t,n,s,u,a){e.twq||(s=e.twq=function(){s.exe?s.exe.apply(s,arguments):s.queue.push(arguments);\n},s.version='1.1',s.queue=[],u=t.createElement(n),u.async=!0,u.src='https://static.ads-twitter.com/uwt.js',\na=t.getElementsByTagName(n)[0],a.parentNode.insertBefore(u,a))}(window,document,'script');\n// Insert Twitter Advertiser ID\ntwq('config','nvldc', {\n restricted_data_use: 'restrict_optimization' // or 'off'\n});\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\n(function() {\n var didInit = false;\n function initMunchkin() {\n if(didInit === false) {\n didInit = true;\n Munchkin.init('713-XSC-918');\n }\n }\n var s = document.createElement('script');\n s.type = 'text/javascript';\n s.async = true;\n s.src = '//munchkin.marketo.net/munchkin-beta.js';\n s.onreadystatechange = function() {\n if (this.readyState == 'complete' || this.readyState == 'loaded') {\n initMunchkin();\n }\n };\n s.onload = initMunchkin;\n document.getElementsByTagName('head')[0].appendChild(s);\n})();\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22type%22%3A%22text%2Fjavascript%22%2C%22src%22%3A%22https%3A%2F%2Fcdn.bizible.com%2Fscripts%2Fbizible.js%22%2C%22async%22%3A%22%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-a07edd44-2c8b-4f16-ba7c-2d34fd7e5d07%5C%22))%7D%22%2C%22order-id%22%3A%22a07edd44-2c8b-4f16-ba7c-2d34fd7e5d07%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = `<!-- Qualified -->\n\n\n<!-- End Qualified -->`;document.body.appendChild(d);};{\n(function(w,q){w['QualifiedObject']=q;w[q]=w[q]||function(){\n(w[q].q=w[q].q||[]).push(arguments)};})(window,'qualified')\n\n};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22async%22%3A%22%22%2C%22src%22%3A%22https%3A%2F%2Fjs.qualified.com%2Fqualified.js%3Ftoken%3D37pXYrro6wCZbsU7%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-2b4cd3fa-2372-4d77-9908-e8b88b286bd5%5C%22))%7D%22%2C%22order-id%22%3A%222b4cd3fa-2372-4d77-9908-e8b88b286bd5%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);}})(window,document)"],"f":[["https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283253433&pid=28851&conversionId=13043044",{"credentials":"include","keepalive":true,"mode":"no-cors"}],["https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1742283253433&uuid=b63dc466-0dab-4535-b4a6-109e5a7d4b49&integration=reddit&opt_out=0&v=rdt_65e23bc4&sh=1024&sw=1280",{"mode":"no-cors","keepalive":true,"credentials":"include"}]]})})(window,document)}ca
Source: chromecache_226.1.dr	String found in binary or memory: -->`;document.body.appendChild(d);};{\n!function(e,t,n,s,u,a){e.twq||(s=e.twq=function(){s.exe?s.exe.apply(s,arguments):s.queue.push(arguments);\n},s.version='1.1',s.queue=[],u=t.createElement(n),u.async=!0,u.src='https://static.ads-twitter.com/uwt.js',\na=t.getElementsByTagName(n)[0],a.parentNode.insertBefore(u,a))}(window,document,'script');\n// Insert Twitter Advertiser ID\ntwq('config','nvldc', {\n restricted_data_use: 'restrict_optimization' // or 'off'\n});\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\n(function() {\n var didInit = false;\n function initMunchkin() {\n if(didInit === false) {\n didInit = true;\n Munchkin.init('713-XSC-918');\n }\n }\n var s = document.createElement('script');\n s.type = 'text/javascript';\n s.async = true;\n s.src = '//munchkin.marketo.net/munchkin-beta.js';\n s.onreadystatechange = function() {\n if (this.readyState == 'complete' || this.readyState == 'loaded') {\n initMunchkin();\n }\n };\n s.onload = initMunchkin;\n document.getElementsByTagName('head')[0].appendChild(s);\n})();\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22type%22%3A%22text%2Fjavascript%22%2C%22src%22%3A%22https%3A%2F%2Fcdn.bizible.com%2Fscripts%2Fbizible.js%22%2C%22async%22%3A%22%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-a07edd44-2c8b-4f16-ba7c-2d34fd7e5d07%5C%22))%7D%22%2C%22order-id%22%3A%22a07edd44-2c8b-4f16-ba7c-2d34fd7e5d07%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = `<!-- Qualified -->\n\n\n<!-- End Qualified -->`;document.body.appendChild(d);};{\n(function(w,q){w['QualifiedObject']=q;w[q]=w[q]||function(){\n(w[q].q=w[q].q||[]).push(arguments)};})(window,'qualified')\n\n};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22async%22%3A%22%22%2C%22src%22%3A%22https%3A%2F%2Fjs.qualified.com%2Fqualified.js%3Ftoken%3D37pXYrro6wCZbsU7%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-2b4cd3fa-2372-4d77-9908-e8b88b286bd5%5C%22))%7D%22%2C%22order-id%22%3A%222b4cd3fa-2372-4d77-9908-e8b88b286bd5%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);}})(window,document)"],"f":[["https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Faccess-management%2Fphishing-attack%2F&time=1742283253433&pid=28851&conversionId=13043044",{"credentials":"include","keepalive":true,"mode":"no-cors"}],["https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1742283253433&uuid=b63dc466-0dab-4535-b4a6-109e5a7d4b49&integration=reddit&opt_out=0&v=rdt_65e23bc4&sh=1024&sw=1280",{"mode":"no-cors","keepalive":true,"credentials":"include"}]]})})(window,document)}ca
Source: chromecache_256.1.dr, chromecache_189.1.dr, chromecache_213.1.dr	String found in binary or memory: return f}BG.K="internal.enableAutoEventOnTimer";var bc=wa(["data-gtm-yt-inspected-"]),DG=["www.youtube.com","www.youtube-nocookie.com"],EG,FG=!1; equals www.youtube.com (Youtube)
Source: chromecache_189.1.dr	String found in binary or memory: var QF=function(a,b,c,d,e){var f=MC("fsl",c?"nv.mwt":"mwt",0),g;g=c?MC("fsl","nv.ids",[]):MC("fsl","ids",[]);if(!g.length)return!0;var k=RC(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);Q(121);if(m==="https://www.facebook.com/tr/")return Q(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!zB(k,BB(b, equals www.facebook.com (Facebook)

Performs DNS lookups

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: check.xemyrai6.icu
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: static.cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: cf-assets.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: performance.radar.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: ot.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdn.logr-ingest.com
Source: global traffic	DNS traffic detected: DNS query: assets.adobedtm.com
Source: global traffic	DNS traffic detected: DNS query: api.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: alb.reddit.com
Source: global traffic	DNS traffic detected: DNS query: tag.demandbase.com
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: scout-cdn.salesloft.com
Source: global traffic	DNS traffic detected: DNS query: static.ads-twitter.com
Source: global traffic	DNS traffic detected: DNS query: munchkin.marketo.net
Source: global traffic	DNS traffic detected: DNS query: cdn.bizible.com
Source: global traffic	DNS traffic detected: DNS query: js.qualified.com
Source: global traffic	DNS traffic detected: DNS query: dpm.demdex.net
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: scout.salesloft.com
Source: global traffic	DNS traffic detected: DNS query: r.logr-ingest.com
Source: global traffic	DNS traffic detected: DNS query: cloudflareinc.demdex.net
Source: global traffic	DNS traffic detected: DNS query: adobedc.demdex.net
Source: global traffic	DNS traffic detected: DNS query: di.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: cm.everesttech.net
Source: global traffic	DNS traffic detected: DNS query: api.company-target.com
Source: global traffic	DNS traffic detected: DNS query: cdn.bizibly.com
Source: global traffic	DNS traffic detected: DNS query: s.company-target.com
Source: global traffic	DNS traffic detected: DNS query: id.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: ws6.qualified.com
Source: global traffic	DNS traffic detected: DNS query: app.qualified.com
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: t.co
Source: global traffic	DNS traffic detected: DNS query: analytics.twitter.com
Source: global traffic	DNS traffic detected: DNS query: dsum-sec.casalemedia.com
Source: global traffic	DNS traffic detected: DNS query: partners.tremorhub.com
Source: global traffic	DNS traffic detected: DNS query: pixel.rubiconproject.com
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: tag-logger.demandbase.com
Source: global traffic	DNS traffic detected: DNS query: 713-xsc-918.mktoresp.com
Source: global traffic	DNS traffic detected: DNS query: ad.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: edge.adobedc.net
Source: global traffic	DNS traffic detected: DNS query: segments.company-target.com
Source: global traffic	DNS traffic detected: DNS query: adservice.google.com

Posts data to webserver

Source: unknown

HTTP traffic detected: POST /report/v4?s=WDg9XOGud4PpOwji8476LwynU%2B%2F6V4C0Z%2FByhWLA2QCBpKcaiFTgaBZVWSM1Trv3iJvdP2wFJSj%2BXPblHguPI1OOsVfKm5WmAdSeXCw7Y6dhu3nTcpVNE0K%2BO6e%2BFr5cBs3kRJ0%3D HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 441Content-Type: application/reports+jsonOrigin: https://check.xemyrai6.icuUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Tries to download or post to a non-existing HTTP route (HTTP/1.1 404 Not Found / 503 Service Unavailable / 403 Forbidden)

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 18 Mar 2025 07:33:29 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Frame-Options: SAMEORIGINReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WDg9XOGud4PpOwji8476LwynU%2B%2F6V4C0Z%2FByhWLA2QCBpKcaiFTgaBZVWSM1Trv3iJvdP2wFJSj%2BXPblHguPI1OOsVfKm5WmAdSeXCw7Y6dhu3nTcpVNE0K%2BO6e%2BFr5cBs3kRJ0%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}speculation-rules: "/cdn-cgi/speculation"Server: cloudflareCF-RAY: 92230ac95cbb428e-EWR
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 18 Mar 2025 07:33:31 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Frame-Options: SAMEORIGINReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KJ7Xd5yfQ574LVdbllxre1arD2P3ApCGnQT0jJk%2BbQ3qtCxyVOH9WYPjd6UdTgRO%2BNRZDAb1d5Uu7Hm0xUCNfeL%2F%2FZYP3%2BiPXTo9Rmpr6OZQvMHG4eSbQICroImh7g0vx3Ol1uE%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}speculation-rules: "/cdn-cgi/speculation"Server: cloudflareCF-RAY: 92230ad5afde2142-EWR
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 18 Mar 2025 07:34:09 GMTContent-Type: text/html; charset=UTF-8Content-Length: 7723Connection: closeaccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UAcf-mitigated: challengecritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UAcross-origin-embedder-policy: require-corpcross-origin-opener-policy: same-origincross-origin-resource-policy: same-originorigin-agent-cluster: ?1permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()referrer-policy: same-originserver-timing: chlray;desc="92230bc68f40de94"x-content-options: nosniffx-frame-options: SAMEORIGIN
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 18 Mar 2025 07:34:13 GMTContent-Type: application/json; charset=UTF-8Content-Length: 24Connection: closeAccess-Control-Allow-Origin: https://www.cloudflare.comAccess-Control-Allow-Credentials: trueAccess-Control-Allow-Headers: Content-Type,AcceptAccess-Control-Allow-Methods: GET,POST,OPTIONSX-Robots-Tag: noindexReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=84qgaHJGghjw8YvNPGu3hvk19ka%2FTmPmoftVhpRjp%2BT6E%2BIyXtP9oEH9HF3IrOsqLSBRmN8%2FPVXoJM%2FaNjlHUlfJe1O4RTD8%2Bl9tF0Oq1J6PfmGhgF7nLhOulZp48Lb69IV2SVFnnEw%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Report-To: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=ZQMtRmnGicutbX3Cm72Xxa6vmwuAzbHmWK2_7cBMuD8-1742283253-1.0.1.1-pXX2c_yG2qL2tT.vRlHUI4PybLK21IXt2yYw7QW4ulYV32ZV8.OYAhm3JZMOcfOm_s0MCgO_n1HGUAwwh2gI3SLEV.Y.iBSg5Qf9ZwGPV07TGYV7KcqFzssu92H6GjdcFhYb6AKstPtnJvSpic8I8YYTGqql9oQA8PbfOcQw0II"}],"group":"cf-csp-endpoint","max_age":86400}
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: 406977fd-9d16-4cf9-b55f-df2adac8b565vary: Origindate: Tue, 18 Mar 2025 07:34:19 GMTx-konductor: 25.3.5-HEAD-SNAPSHOT:f1eeb5cdbx-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: e5ddb016-b489-4f2e-bd00-c1acd8770932vary: Origindate: Tue, 18 Mar 2025 07:34:20 GMTx-konductor: 25.3.4:8abf704d4x-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close

URLs found in memory or binary data

Source: chromecache_189.1.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_256.1.dr, chromecache_189.1.dr	String found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_213.1.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_226.1.dr	String found in binary or memory: https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1742283253433&uuid=b63dc466-0dab-453
Source: chromecache_192.1.dr, chromecache_250.1.dr	String found in binary or memory: https://api.www.cloudflare.com/api/v1
Source: chromecache_211.1.dr	String found in binary or memory: https://app.qualified.com
Source: chromecache_182.1.dr	String found in binary or memory: https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.js
Source: chromecache_218.1.dr	String found in binary or memory: https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_Acti
Source: chromecache_162.1.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC392ad6d4bbf94c7283b4eda6cbf689a
Source: chromecache_228.1.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC55904e5e1abc4d38a5f1ac3dea0edaa
Source: chromecache_244.1.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/launch-efab6d095ce0.js
Source: chromecache_256.1.dr, chromecache_189.1.dr, chromecache_213.1.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_202.1.dr, chromecache_155.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/17RhepZZwxiD452Hs0gKFk/5324e2c81dcdef79c74efea2c60
Source: chromecache_196.1.dr, chromecache_208.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/2dlg4oApldWlYGAWdzwN7C/3b0f1908d3e4ca00a193c2fd679
Source: chromecache_212.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/2fMg89go9MegG1EDg39mNy/5a42817cd388ae352f77f56e53b
Source: chromecache_202.1.dr, chromecache_155.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/3aiXyraQa82SPHcEOgsxLq/ace1025cc5204f2ca8885646b8b
Source: chromecache_158.1.dr, chromecache_161.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/42XkFj9Uywkm8Jahf62RtP/0563d91cc1fa54da2bf2c50bad8
Source: chromecache_158.1.dr, chromecache_161.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab
Source: chromecache_212.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/6bNeiYhSx0RGvbzxS5Fi8c/3ff83bcc36e86e85170201f8264
Source: chromecache_246.1.dr, chromecache_159.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/6i8d186tH2iueYvgwVRaJf/ab27fd31033bdd31aea69065480
Source: chromecache_246.1.dr, chromecache_159.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/mJZqOomHta2MLLB73P8Hs/9378861761815b3adf7bcb7734d6
Source: chromecache_164.1.dr, chromecache_203.1.dr	String found in binary or memory: https://developers.marketo.com/MunchkinLicense.pdf
Source: chromecache_180.1.dr	String found in binary or memory: https://dsum-sec.casalemedia.com/rum?cm_dsp_id=18&expiry=1758180855&external_user_id=1990cbd
Source: chromecache_212.1.dr	String found in binary or memory: https://github.com/jonsuh/hamburgers
Source: chromecache_239.1.dr	String found in binary or memory: https://github.com/js-cookie/js-cookie
Source: chromecache_213.1.dr	String found in binary or memory: https://google.com
Source: chromecache_213.1.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_212.1.dr	String found in binary or memory: https://jonsuh.com/hamburgers
Source: chromecache_211.1.dr	String found in binary or memory: https://js.qualified.com
Source: chromecache_213.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_256.1.dr, chromecache_189.1.dr, chromecache_213.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_180.1.dr	String found in binary or memory: https://partners.tremorhub.com/sync?UIDM=1990cbd0-249c-4810-b25c-9ba02ccc618e
Source: chromecache_180.1.dr	String found in binary or memory: https://pixel.rubiconproject.com/tap.php?nid=5578&put=1990cbd0-249c-4810-b25c-9ba02ccc618e&v
Source: chromecache_226.1.dr	String found in binary or memory: https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Flearning%2Fac
Source: chromecache_226.1.dr	String found in binary or memory: https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif
Source: chromecache_211.1.dr	String found in binary or memory: https://schedule.qualified.com
Source: chromecache_155.1.dr	String found in binary or memory: https://schema.org/Answer
Source: chromecache_212.1.dr	String found in binary or memory: https://schema.org/FAQPage
Source: chromecache_155.1.dr	String found in binary or memory: https://schema.org/Question
Source: chromecache_226.1.dr	String found in binary or memory: https://scout-cdn.salesloft.com/sl.js
Source: chromecache_166.1.dr, chromecache_220.1.dr	String found in binary or memory: https://scout.us4.salesloft.com
Source: chromecache_226.1.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_175.1.dr	String found in binary or memory: https://staging.mrk.cfdata.org/mrk/redwood-blade-repository/
Source: chromecache_226.1.dr	String found in binary or memory: https://static.ads-twitter.com/uwt.js
Source: chromecache_213.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_213.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect?v=2&
Source: chromecache_196.1.dr, chromecache_208.1.dr	String found in binary or memory: https://support.cloudflare.com/)
Source: chromecache_226.1.dr	String found in binary or memory: https://tag.demandbase.com/1be41a80498a5b73.min.js
Source: chromecache_256.1.dr, chromecache_189.1.dr, chromecache_213.1.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_202.1.dr, chromecache_155.1.dr	String found in binary or memory: https://unctad.org/page/data-protection-and-privacy-legislation-worldwide
Source: chromecache_192.1.dr, chromecache_250.1.dr	String found in binary or memory: https://www.cloudflare.com
Source: chromecache_214.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.cloudflare.com/5xx-error-landing
Source: chromecache_214.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.cloudflare.com/learning/access-management/phishing-attack/
Source: chromecache_202.1.dr, chromecache_155.1.dr	String found in binary or memory: https://www.cloudflare.com/learning/access-management/what-is-browser-isolation/
Source: chromecache_196.1.dr, chromecache_208.1.dr	String found in binary or memory: https://www.cloudflare.com/lp/forrester-tei-study-2024/
Source: chromecache_211.1.dr	String found in binary or memory: https://www.cloudflare.com/lp/multi-channel-phishing-demo?utm_medium=banner
Source: chromecache_181.1.dr, chromecache_223.1.dr	String found in binary or memory: https://www.cloudflare.com/saas/)
Source: chromecache_213.1.dr	String found in binary or memory: https://www.google.com
Source: chromecache_256.1.dr, chromecache_189.1.dr	String found in binary or memory: https://www.google.com/gmp/conversion;
Source: chromecache_213.1.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_213.1.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_256.1.dr, chromecache_189.1.dr, chromecache_213.1.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_256.1.dr, chromecache_189.1.dr	String found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_256.1.dr, chromecache_189.1.dr, chromecache_213.1.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_213.1.dr	String found in binary or memory: https://www.merchant-center-analytics.goog

Uses HTTPS

Source: unknown	Network traffic detected: HTTP traffic on port 62997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62974 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62956
Source: unknown	Network traffic detected: HTTP traffic on port 62939 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62838
Source: unknown	Network traffic detected: HTTP traffic on port 62916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62950
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62951
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62952
Source: unknown	Network traffic detected: HTTP traffic on port 63051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62967
Source: unknown	Network traffic detected: HTTP traffic on port 62963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62969
Source: unknown	Network traffic detected: HTTP traffic on port 62871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62960
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62842
Source: unknown	Network traffic detected: HTTP traffic on port 63073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63050 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62975
Source: unknown	Network traffic detected: HTTP traffic on port 62985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62855
Source: unknown	Network traffic detected: HTTP traffic on port 62962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62977
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62979
Source: unknown	Network traffic detected: HTTP traffic on port 63005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62970
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62974
Source: unknown	Network traffic detected: HTTP traffic on port 62996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62987
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62869
Source: unknown	Network traffic detected: HTTP traffic on port 62940 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62980
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62863
Source: unknown	Network traffic detected: HTTP traffic on port 62894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62864
Source: unknown	Network traffic detected: HTTP traffic on port 62949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63075 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62917
Source: unknown	Network traffic detected: HTTP traffic on port 63017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62918
Source: unknown	Network traffic detected: HTTP traffic on port 62846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62919
Source: unknown	Network traffic detected: HTTP traffic on port 63052 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62910
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62913
Source: unknown	Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62916
Source: unknown	Network traffic detected: HTTP traffic on port 62973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62920
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62922
Source: unknown	Network traffic detected: HTTP traffic on port 62984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62923
Source: unknown	Network traffic detected: HTTP traffic on port 62915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62927
Source: unknown	Network traffic detected: HTTP traffic on port 62896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62939
Source: unknown	Network traffic detected: HTTP traffic on port 62905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62934
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62936
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62937
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62938
Source: unknown	Network traffic detected: HTTP traffic on port 62895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62930
Source: unknown	Network traffic detected: HTTP traffic on port 62927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62942
Source: unknown	Network traffic detected: HTTP traffic on port 62961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62946
Source: unknown	Network traffic detected: HTTP traffic on port 62938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62949
Source: unknown	Network traffic detected: HTTP traffic on port 63029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62940
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63007 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63076 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63030 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63031 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63019 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63064 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63042 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62879
Source: unknown	Network traffic detected: HTTP traffic on port 62964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63066 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62990
Source: unknown	Network traffic detected: HTTP traffic on port 62870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62870
Source: unknown	Network traffic detected: HTTP traffic on port 63043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62872
Source: unknown	Network traffic detected: HTTP traffic on port 62893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62873
Source: unknown	Network traffic detected: HTTP traffic on port 62987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62996
Source: unknown	Network traffic detected: HTTP traffic on port 63020 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62889
Source: unknown	Network traffic detected: HTTP traffic on port 62908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62881
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62884
Source: unknown	Network traffic detected: HTTP traffic on port 62837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62886
Source: unknown	Network traffic detected: HTTP traffic on port 62953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63077 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63054 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62890
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62897
Source: unknown	Network traffic detected: HTTP traffic on port 62975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63032 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62888 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63010
Source: unknown	Network traffic detected: HTTP traffic on port 63033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63001
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63005
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63004
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63007
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63006
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63020
Source: unknown	Network traffic detected: HTTP traffic on port 63068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63019
Source: unknown	Network traffic detected: HTTP traffic on port 62911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63012
Source: unknown	Network traffic detected: HTTP traffic on port 62980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63011
Source: unknown	Network traffic detected: HTTP traffic on port 63079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63013
Source: unknown	Network traffic detected: HTTP traffic on port 63044 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63016
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63015
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63017
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63030
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63031
Source: unknown	Network traffic detected: HTTP traffic on port 63067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63022
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63027
Source: unknown	Network traffic detected: HTTP traffic on port 63022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63026
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63028
Source: unknown	Network traffic detected: HTTP traffic on port 62841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63041
Source: unknown	Network traffic detected: HTTP traffic on port 63045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63040
Source: unknown	Network traffic detected: HTTP traffic on port 62923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63042
Source: unknown	Network traffic detected: HTTP traffic on port 62979 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63035
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63038
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63037
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63039
Source: unknown	Network traffic detected: HTTP traffic on port 62890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63000 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63035 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62994 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62936 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62937 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63070 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62909
Source: unknown	Network traffic detected: HTTP traffic on port 63014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62900
Source: unknown	Network traffic detected: HTTP traffic on port 62959 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62902
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62905
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63050
Source: unknown	Network traffic detected: HTTP traffic on port 62903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63052
Source: unknown	Network traffic detected: HTTP traffic on port 62970 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63051
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63054
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63044
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63046
Source: unknown	Network traffic detected: HTTP traffic on port 63072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63061
Source: unknown	Network traffic detected: HTTP traffic on port 63026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63060
Source: unknown	Network traffic detected: HTTP traffic on port 62946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63064
Source: unknown	Network traffic detected: HTTP traffic on port 62864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63059
Source: unknown	Network traffic detected: HTTP traffic on port 62875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63070
Source: unknown	Network traffic detected: HTTP traffic on port 62947 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63073
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63075
Source: unknown	Network traffic detected: HTTP traffic on port 63015 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63067
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63066
Source: unknown	Network traffic detected: HTTP traffic on port 62981 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63068
Source: unknown	Network traffic detected: HTTP traffic on port 62876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63080
Source: unknown	Network traffic detected: HTTP traffic on port 62902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63082
Source: unknown	Network traffic detected: HTTP traffic on port 62992 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63077
Source: unknown	Network traffic detected: HTTP traffic on port 62898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 63079
Source: unknown	Network traffic detected: HTTP traffic on port 62969 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 63004 -> 443

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 142.250.184.196:443 -> 192.168.2.5:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 188.114.97.3:443 -> 192.168.2.5:62838 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 188.114.97.3:443 -> 192.168.2.5:62837 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.5:62840 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 188.114.96.3:443 -> 192.168.2.5:62846 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62855 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62854 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62863 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.80.73:443 -> 192.168.2.5:62862 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62864 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.124.96:443 -> 192.168.2.5:62865 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62871 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.5:62869 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.30.78:443 -> 192.168.2.5:62870 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62875 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62874 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62877 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62882 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.96.1:443 -> 192.168.2.5:62886 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62908 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.18.96.221:443 -> 192.168.2.5:62905 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.123.96:443 -> 192.168.2.5:62913 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.16.5:443 -> 192.168.2.5:62922 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.65.140:443 -> 192.168.2.5:62917 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.71.105:443 -> 192.168.2.5:62924 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.42.14:443 -> 192.168.2.5:62918 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 88.221.110.136:443 -> 192.168.2.5:62921 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.73.230.208:443 -> 192.168.2.5:62920 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.16.164.8:443 -> 192.168.2.5:62919 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.245.46.89:443 -> 192.168.2.5:62923 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 146.75.116.157:443 -> 192.168.2.5:62916 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.35.45.179:443 -> 192.168.2.5:62927 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.196:443 -> 192.168.2.5:62928 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.5:62931 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.220.103.163:443 -> 192.168.2.5:62936 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.177.15.155:443 -> 192.168.2.5:62934 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.196:443 -> 192.168.2.5:62933 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 151.101.129.140:443 -> 192.168.2.5:62939 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.5:62945 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.198.23.205:443 -> 192.168.2.5:62940 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.96.71.22:443 -> 192.168.2.5:62951 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.174.68:443 -> 192.168.2.5:62953 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.42.14:443 -> 192.168.2.5:62947 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.140.62.222:443 -> 192.168.2.5:62943 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.17.115.208:443 -> 192.168.2.5:62946 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.66.102.85:443 -> 192.168.2.5:62950 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.22.242.97:443 -> 192.168.2.5:62952 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.17.5:443 -> 192.168.2.5:62956 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.16.5:443 -> 192.168.2.5:62957 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 162.159.140.229:443 -> 192.168.2.5:62959 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.41.41:443 -> 192.168.2.5:62960 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.16.235.250:443 -> 192.168.2.5:62944 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.66.0.227:443 -> 192.168.2.5:62962 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.27.193:443 -> 192.168.2.5:62963 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.35.45.179:443 -> 192.168.2.5:62961 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.213.58.31:443 -> 192.168.2.5:62965 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.41.41:443 -> 192.168.2.5:62969 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 69.173.144.165:443 -> 192.168.2.5:62966 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.239.34.181:443 -> 192.168.2.5:62977 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.130:443 -> 192.168.2.5:62979 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.138.7.51:443 -> 192.168.2.5:62980 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.220.103.163:443 -> 192.168.2.5:62985 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.132:443 -> 192.168.2.5:62989 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 192.28.144.124:443 -> 192.168.2.5:62997 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63006 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63007 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.140.62.222:443 -> 192.168.2.5:63008 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.66.0.227:443 -> 192.168.2.5:63016 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.42.14:443 -> 192.168.2.5:63011 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 162.159.140.229:443 -> 192.168.2.5:63021 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.186.70:443 -> 192.168.2.5:63012 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.140.62.27:443 -> 192.168.2.5:63014 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.16.164.8:443 -> 192.168.2.5:63015 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.66.102.85:443 -> 192.168.2.5:63017 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.208.252.15:443 -> 192.168.2.5:63020 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.22.242.136:443 -> 192.168.2.5:63018 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.245.86.9:443 -> 192.168.2.5:63022 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.27.193:443 -> 192.168.2.5:63027 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.16.164.8:443 -> 192.168.2.5:63025 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.138.7.120:443 -> 192.168.2.5:63032 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.194:443 -> 192.168.2.5:63036 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 69.173.144.165:443 -> 192.168.2.5:63028 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.134:443 -> 192.168.2.5:63037 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 63.140.62.27:443 -> 192.168.2.5:63039 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.245.86.9:443 -> 192.168.2.5:63041 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.130:443 -> 192.168.2.5:63043 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.239.34.181:443 -> 192.168.2.5:63044 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.245.86.7:443 -> 192.168.2.5:63045 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.5:63057 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.17.5:443 -> 192.168.2.5:63064 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63071 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63072 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63074 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.217.16.198:443 -> 192.168.2.5:63075 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.230:443 -> 192.168.2.5:63082 version: TLS 1.2

System Summary

Creates files inside the system directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir6952_1439276917

Jump to behavior

Deletes files inside the Windows folder

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir6952_1439276917

Jump to behavior

Classification label

Source: classification engine

Classification label: mal72.phis.evad.win@29/179@159/57

Spawns processes

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2052,i,10187722825763512096,3524301073930875486,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2080 /prefetch:3
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=printing.mojom.UnsandboxedPrintBackendHost --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2052,i,10187722825763512096,3524301073930875486,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5040 /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://check.xemyrai6.icu/gkcxv.google?i=be5d552d-303c-4e59-9dfd-ba549f72437b%20#%20''I%20am%20not%20a%20robot%20-%20???????%20Verification%20ID:543195''"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2052,i,10187722825763512096,3524301073930875486,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2080 /prefetch:3			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=printing.mojom.UnsandboxedPrintBackendHost --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2052,i,10187722825763512096,3524301073930875486,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5040 /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Found graphical window changes (likely an installer)

Source: Window Recorder

Window detected: More than 3 window changes detected

HIPS / PFW / Operating System Protection Evasion

Yara detected Powershell download and execute

Source: Yara match

File source: dropped/chromecache_239, type: DROPPED