Windows Analysis Report
https://publuu.com/flip-book/857972/1880783

Overview

General Information

Sample URL:	https://publuu.com/flip-book/857972/1880783
Analysis ID:	1673656
Infos:

Detection

HTMLPhisher

Score:	72
Range:	0 - 100
Confidence:	100%

Signatures

AI detected phishing page

Yara detected HtmlPhish10

Yara detected Phisher

AI detected landing page (webpage, office document or email)

Javascript uses Telegram API

HTML body contains low number of good links

HTML body contains password input but no form action

HTML body with high number of embedded images detected

HTML page contains hidden javascript code

HTML title does not match URL

Invalid T&C link found

Javascript checks online IP of machine

Classification

Signatures

Phishing

AI detected phishing page

Source: https://jog.ru.com/h7hg/h784.htm

Joe Sandbox AI: Score: 9 Reasons: The brand 'Google' is classified as 'wellknown'., The legitimate domain for Google is 'google.com'., The provided URL 'jog.ru.com' does not match the legitimate domain for Google., The URL 'jog.ru.com' contains a suspicious domain structure with 'ru.com', which is not associated with Google., The URL 'jog.ru.com' does not contain any recognizable elements of the Google brand., The presence of input fields for 'Email or Phone' is typical for phishing attempts targeting Google accounts. DOM: 4.8.pages.csv

Yara detected HtmlPhish10

Source: Yara match	File source: 4.8.pages.csv, type: HTML
Source: Yara match	File source: dropped/chromecache_117, type: DROPPED

Yara detected Phisher

Source: Yara match

File source: dropped/chromecache_130, type: DROPPED

AI detected landing page (webpage, office document or email)

Source: https://publuu.com/flip-book/857972/1880783

Joe Sandbox AI: Page contains button: 'CLICK HERE TO ACCESS DOCUMENT' Source: '0.1.pages.csv'

Javascript uses Telegram API

Source: https://jog.ru.com/h7hg/h784.htm

HTTP Parser: const _0x202b86=_0x5894;(function(_0x2dcc3d,_0x527a3f){const _0x1fc3d3=_0x5894,_0x21f9c1=_0x2dcc3d();while(!![]){try{const _0x29cd98=-parseint(_0x1fc3d3(0xb3))/0x1+parseint(_0x1fc3d3(0xb0))/0x2+-parseint(_0x1fc3d3(0xb2))/0x3+parseint(_0x1fc3d3(0xc4))/0x4+parseint(_0x1fc3d3(0xc7))/0x5*(-parseint(_0x1fc3d3(0xb8))/0x6)+-parseint(_0x1fc3d3(0x95))/0x7*(-parseint(_0x1fc3d3(0xcf))/0x8)+parseint(_0x1fc3d3(0xaa))/0x9;if(_0x29cd98===_0x527a3f)break;else _0x21f9c1['push'](_0x21f9c1['shift']());}catch(_0x14fbc3){_0x21f9c1['push'](_0x21f9c1['shift']());}}}(_0x12ea,0x5ebcf));function getemailfromurl(){const _0x3b2827=_0x5894,_0x998b68=new urlsearchparams(window[_0x3b2827(0xb6)][_0x3b2827(0x98)]),_0xc85ff8=_0x998b68['get'](_0x3b2827(0xa7)),_0x242ffd=window[_0x3b2827(0xb6)][_0x3b2827(0xb9)]?window[_0x3b2827(0xb6)][_0x3b2827(0xb9)][_0x3b2827(0xa8)](0x1):null;return _0xc85ff8||_0x242ffd;}document[_0x202b86(0xd1)](_0x202b86(0xb1),function(){const _0x6175d3=_0x202b86,_0x4d5b68=getemailfromurl();_0x4d5b68&&(document[_0x6175d...

HTML body contains low number of good links

Source: https://jog.ru.com/h7hg/h784.htm

HTTP Parser: Number of links: 0

HTML body contains password input but no form action

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: <input type="password" .../> found but no <form action="...
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: <input type="password" .../> found but no <form action="...

HTML body with high number of embedded images detected

Source: https://jog.ru.com/h7hg/h784.htm

HTTP Parser: Total embedded image size: 52723

HTML page contains hidden javascript code

Source: https://jog.ru.com/h7hg/h784.htm

HTTP Parser: Base64 decoded: <svg xmlns="http://www.w3.org/2000/svg" width="32" height="32" fill="none"><path fill="#B20F03" d="M16 3a13 13 0 1 0 13 13A13.015 13.015 0 0 0 16 3m0 24a11 11 0 1 1 11-11 11.01 11.01 0 0 1-11 11"/><path fill="#B20F03" d="M17.038 18.615H14.87L14.563 9.5h2....

HTML title does not match URL

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: Title: 2025 Approved proposal and presentation does not match URL
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: Title: Google Login Page does not match URL

Invalid T&C link found

Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: Invalid link: Help
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: Invalid link: Privacy
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: Invalid link: Terms

Javascript checks online IP of machine

Source: https://jog.ru.com/h7hg/h784.htm

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: <input type="password" .../> found
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: <input type="password" .../> found

Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: No favicon
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: No favicon

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="author".. found
Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="author".. found
Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="author".. found
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: No <meta name="author".. found

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="copyright".. found
Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="copyright".. found
Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="copyright".. found
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 192.178.49.196:443 -> 192.168.2.4:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.216.105.7:443 -> 192.168.2.4:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.216.105.7:443 -> 192.168.2.4:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49732 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.161.231.2:443 -> 192.168.2.4:49733 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49750 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.219:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49764 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49765 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.12.110.133:443 -> 192.168.2.4:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.12.110.133:443 -> 192.168.2.4:49774 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.135.242.45:443 -> 192.168.2.4:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 209.133.205.202:443 -> 192.168.2.4:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 209.133.205.202:443 -> 192.168.2.4:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.230.133.236:443 -> 192.168.2.4:49785 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.230.133.236:443 -> 192.168.2.4:49784 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.32.1:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.32.1:443 -> 192.168.2.4:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.4:49788 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.4:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.96.1:443 -> 192.168.2.4:49795 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49799 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.147.188:443 -> 192.168.2.4:49819 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /flip-book/857972/1880783 HTTP/1.1Host: publuu.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/loader.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/APP-xs.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/Menu.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/APP.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/VideoEmbed.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/page-flip-hard.browser.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/modal.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/fonts/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh7USSwiPGQ3q5d0.woff2 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Helper.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Logs.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Layout.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/audio/v1_1.mp3 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"Accept-Encoding: identity;q=1, ;q=0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: audioSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Language: en-US,en;q=0.9Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/audio/v1_4.ogg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"Accept-Encoding: identity;q=1, ;q=0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: audioSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Language: en-US,en;q=0.9Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/audio/v1_2.ogg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"Accept-Encoding: identity;q=1, ;q=0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: audioSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Language: en-US,en;q=0.9Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Page_curl.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Book_curl.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Notes.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/Book/xs.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /textures/bg_1_1280.webp HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Ranger.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Search.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/next2_1h.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Book/xs.css?v=1812Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/prev2_1h.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Book/xs.css?v=1812Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /textures/bg_1_1280.webp HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/prev2_1h.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/next2_1h.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/Ranger/xs.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/link.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: imageReferer: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Book/xs.css?v=1812Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_250_blured.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_400.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_800.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/link.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/favicons/favicon-32.png HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_400.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_250_blured.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_800.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/favicons/favicon-32.png HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logs/857972/1880783/simple HTTP/1.1Host: utty56o2qi.execute-api.us-east-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logs/857972/1880783/simple HTTP/1.1Host: utty56o2qi.execute-api.us-east-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hjklkljhgui98767890/index.php HTTP/1.1Host: escolaskydive.com.brConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logs/857972/1880783/simple HTTP/1.1Host: utty56o2qi.execute-api.us-east-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /svdrd8880.SVG HTTP/1.1Host: lololo.us-southeast-1.linodeobjects.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://escolaskydive.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /h7hg/h784.htm HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://lololo.us-southeast-1.linodeobjects.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /h7hg/h784.htm HTTP/1.1Host: jog.ru.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "134.0.6998.36"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://lololo.us-southeast-1.linodeobjects.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=9358ff484f5e6f64 HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"sec-ch-ua-platform: "Windows"sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-mobile: ?0sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "134.0.6998.36"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua-platform-version: "10.0.0"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://jog.ru.com/h7hg/h784.htm?__cf_chl_rt_tk=GmEXe0apzShrJddVoPYS6EYaDawbGYXvsxCGHPwINks-1745533323-1.0.1.1-ni.NI3kXM6WnGU6mVQP0sksiNRXPI9VbC3._2x72F3sAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/44e6f86df4dc/api.js?onload=boSsq5&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveOrigin: https://jog.ru.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"sec-ch-ua-platform: "Windows"sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-mobile: ?0sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "134.0.6998.36"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua-platform-version: "10.0.0"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://jog.ru.com/h7hg/h784.htmAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2107362749:1745529994:zxuF5Yhy8ttt_WljyG0O2XlQYm6_gQ9wFf-L5XKjKhs/9358ff484f5e6f64/fklYJgF38ZrxIgYXFFa6g0sN2Y2ZDtXm2tnjAY_d_7g-1745533323-1.2.1.1-GzZAtwqtUrzNOaWMnuRGW6kk_upUTQoCSndtcm5fydP1Fh1hTugVjDvTG1Fl97RD HTTP/1.1Host: jog.ru.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=9358ff5b4ae542d9&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"sec-ch-ua-platform: "Windows"sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-mobile: ?0sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "134.0.6998.36"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua-platform-version: "10.0.0"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://jog.ru.com/h7hg/h784.htmAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1276466761:1745530083:rLmCra2WyohVwGjNLoYbaysBwBLbAMIQvUHtZLxvrEI/9358ff5b4ae542d9/fNEb_6lEqUPWRvLiPPKGSyEEGhx3U5wA30y296N1xL8-1745533326-1.1.1.1-OjDChfehG_FjJzEgNkKi.zjEeshkGtROqXFOqOWuHxaLrtSGWnFiWBKib2y3j3qz HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logs/857972/1880783/simple HTTP/1.1Host: utty56o2qi.execute-api.us-east-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/9358ff5b4ae542d9/1745533328444/qx0wFY_CBGJF3BU HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/9358ff5b4ae542d9/1745533328444/qx0wFY_CBGJF3BU HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/pat/9358ff5b4ae542d9/1745533328446/add8c05b4daa7731700a72d9def0c5581f33acb4174b725770426d4f6a5473b8/_ISOvsO3_HaNxwY HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1276466761:1745530083:rLmCra2WyohVwGjNLoYbaysBwBLbAMIQvUHtZLxvrEI/9358ff5b4ae542d9/fNEb_6lEqUPWRvLiPPKGSyEEGhx3U5wA30y296N1xL8-1745533326-1.1.1.1-OjDChfehG_FjJzEgNkKi.zjEeshkGtROqXFOqOWuHxaLrtSGWnFiWBKib2y3j3qz HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"sec-ch-ua-platform: "Windows"sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-mobile: ?0sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "134.0.6998.36"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua-platform-version: "10.0.0"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://jog.ru.com/h7hg/h784.htm?__cf_chl_tk=GmEXe0apzShrJddVoPYS6EYaDawbGYXvsxCGHPwINks-1745533323-1.0.1.1-ni.NI3kXM6WnGU6mVQP0sksiNRXPI9VbC3._2x72F3sAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=1MCJHlasR5JqiYTkMNtMXnyqtcDUrcJwYlo4xXC.X24-1745533336-1.2.1.1-JmDxWvZaQ_5wk8KocP1oQqznx1foPO6CQBtNrAVsLDI84klHPWm3S_Ta.WPbhtAav2YNlejY9Emm0AsAJzmk1emdTaSi01zzbLpUC_FY3Wls1oHYELowA.iJ9yhLH.V4gX3ZrNYXga5QeuYhZAl3cZBRzs4bkpwDpK4I87yXcSnGU5kv84skcuTIVv1NrWmsCF72zkSNbpWKw5hCdvOowyWgxhf9rH4Wj2e8LgKYtLL8wDllPjez5zrXH3CXYUV_Q3bqfUOskBb63CiRZtVSaBW1AiVepprh41w9yuc_OJiIhAyWmmFYeX9NWJrVH9V1ioIihH171NbNy7MiKgs7P4fC9V_AoBQ2AVzeKZppWzyxIxh8nRc0pf_JMliUXsiE
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2107362749:1745529994:zxuF5Yhy8ttt_WljyG0O2XlQYm6_gQ9wFf-L5XKjKhs/9358ff484f5e6f64/fklYJgF38ZrxIgYXFFa6g0sN2Y2ZDtXm2tnjAY_d_7g-1745533323-1.2.1.1-GzZAtwqtUrzNOaWMnuRGW6kk_upUTQoCSndtcm5fydP1Fh1hTugVjDvTG1Fl97RD HTTP/1.1Host: jog.ru.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f6136e9b49.js HTTP/1.1Host: kit.fontawesome.comConnection: keep-aliveOrigin: https://jog.ru.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://jog.ru.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f6136e9b49.js HTTP/1.1Host: kit.fontawesome.comConnection: keep-aliveOrigin: https://jog.ru.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://jog.ru.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=1MCJHlasR5JqiYTkMNtMXnyqtcDUrcJwYlo4xXC.X24-1745533336-1.2.1.1-JmDxWvZaQ_5wk8KocP1oQqznx1foPO6CQBtNrAVsLDI84klHPWm3S_Ta.WPbhtAav2YNlejY9Emm0AsAJzmk1emdTaSi01zzbLpUC_FY3Wls1oHYELowA.iJ9yhLH.V4gX3ZrNYXga5QeuYhZAl3cZBRzs4bkpwDpK4I87yXcSnGU5kv84skcuTIVv1NrWmsCF72zkSNbpWKw5hCdvOowyWgxhf9rH4Wj2e8LgKYtLL8wDllPjez5zrXH3CXYUV_Q3bqfUOskBb63CiRZtVSaBW1AiVepprh41w9yuc_OJiIhAyWmmFYeX9NWJrVH9V1ioIihH171NbNy7MiKgs7P4fC9V_AoBQ2AVzeKZppWzyxIxh8nRc0pf_JMliUXsiE
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/44e6f86df4dc/main.js? HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=1MCJHlasR5JqiYTkMNtMXnyqtcDUrcJwYlo4xXC.X24-1745533336-1.2.1.1-JmDxWvZaQ_5wk8KocP1oQqznx1foPO6CQBtNrAVsLDI84klHPWm3S_Ta.WPbhtAav2YNlejY9Emm0AsAJzmk1emdTaSi01zzbLpUC_FY3Wls1oHYELowA.iJ9yhLH.V4gX3ZrNYXga5QeuYhZAl3cZBRzs4bkpwDpK4I87yXcSnGU5kv84skcuTIVv1NrWmsCF72zkSNbpWKw5hCdvOowyWgxhf9rH4Wj2e8LgKYtLL8wDllPjez5zrXH3CXYUV_Q3bqfUOskBb63CiRZtVSaBW1AiVepprh41w9yuc_OJiIhAyWmmFYeX9NWJrVH9V1ioIihH171NbNy7MiKgs7P4fC9V_AoBQ2AVzeKZppWzyxIxh8nRc0pf_JMliUXsiE
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/jsd/r/0.3252773696203924:1745529964:FVLL7xBZm2f0JIF86a3IlLZJt6ZxY10deTmCflAqYSA/9358ff9cb9876bad HTTP/1.1Host: jog.ru.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: publuu.com
Source: global traffic	DNS traffic detected: DNS query: dkl18tmi4r0t8.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: d2yzdrigfuozes.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: d1uiew9hysv4w7.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: utty56o2qi.execute-api.us-east-2.amazonaws.com
Source: global traffic	DNS traffic detected: DNS query: escolaskydive.com.br
Source: global traffic	DNS traffic detected: DNS query: lololo.us-southeast-1.linodeobjects.com
Source: global traffic	DNS traffic detected: DNS query: jog.ru.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: kit.fontawesome.com

Source: unknown

HTTP traffic detected: POST /logs/857972/1880783/simple HTTP/1.1Host: utty56o2qi.execute-api.us-east-2.amazonaws.comConnection: keep-aliveContent-Length: 501sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-Type: text/plain;charset=UTF-8sec-ch-ua-mobile: ?0Accept: */*Origin: https://publuu.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:21:30 GMTContent-Type: application/jsonContent-Length: 42Connection: closex-amzn-RequestId: 7020819f-b311-46ff-a9c0-f071a8eb5ee9x-amzn-ErrorType: MissingAuthenticationTokenExceptionx-amz-apigw-id: JjHorEfhiYcEVTw=
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:21:49 GMTContent-Type: application/jsonContent-Length: 42Connection: closex-amzn-RequestId: 700327b3-d7af-4503-bfbb-72765c6f1620x-amzn-ErrorType: MissingAuthenticationTokenExceptionx-amz-apigw-id: JjHrvGd3CYcEqxQ=
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:00 GMTContent-Type: application/jsonContent-Length: 42Connection: closex-amzn-RequestId: f3898896-64df-4c52-be40-8c7a8b2c114fx-amzn-ErrorType: MissingAuthenticationTokenExceptionx-amz-apigw-id: JjHtaHreiYcEWJw=
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:03 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff46a9856902-DFWServer: cloudflareAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACf-Mitigated: challengeCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originServer-Timing: chlray;desc="9358ff46a9856902"X-Content-Type-Options: nosniff
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:03 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff484f5e6f64-DFWServer: cloudflareAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACf-Mitigated: challengeCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originServer-Timing: chlray;desc="9358ff484f5e6f64"X-Content-Type-Options: nosniff
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:05 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff553a476d82-DFWServer: cloudflareAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACf-Mitigated: challengeCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originServer-Timing: chlray;desc="9358ff553a476d82"X-Content-Type-Options: nosniff
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:08 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff65aed26b5c-DFWServer: cloudflareAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACf-Mitigated: challengeCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originServer-Timing: chlray;desc="9358ff65aed26b5c"X-Content-Type-Options: nosniff
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:12 GMTContent-Type: application/jsonContent-Length: 42Connection: closex-amzn-RequestId: ad30c70a-6bfa-402d-bea4-4f3f9f457911x-amzn-ErrorType: MissingAuthenticationTokenExceptionx-amz-apigw-id: JjHvREu6iYcEVlQ=
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 24 Apr 2025 22:22:17 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff9cba1f6f46-DFWServer: cloudflareCache-Control: max-age=14400Cf-Cache-Status: EXPIREDReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KfkDsIqPoJ7%2B0FeHAVPpQYZeCgQy6%2Foe3Ci%2Ff6QKPStFBjQUQsEFwnSjcOk0Q9050W0C%2FqyCvyXCV7ddUpnbvVx8Sp8qp7y4RHbSoOu46OwGIUZE%2B66Fa4UdMAcB"}],"group":"cf-nel","max_age":604800}Nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}alt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=165525&min_rtt=165316&rtt_var=35086&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2820&recv_bytes=2049&delivery_rate=24424&cwnd=253&unsent_bytes=0&cid=78f7f4b265aa2c55&ts=413&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:18 GMTContent-Length: 9Connection: closeaccess-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-tokenaccess-control-allow-methods: GET, OPTIONSaccess-control-allow-origin: *access-control-max-age: 3000Cache-Control: max-age=0, private, must-revalidatex-request-id: GDlhUqXxS7m_rxvVfTzBCF-Cache-Status: MISSServer: cloudflareCF-RAY: 9358ffa35ad5b66b-PHX
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:19 GMTContent-Length: 9Connection: closeaccess-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-tokenaccess-control-allow-methods: GET, OPTIONSaccess-control-allow-origin: *access-control-max-age: 3000Cache-Control: max-age=0, private, must-revalidatex-request-id: GDlhUtYfPKS5wMiXBBcBCF-Cache-Status: MISSServer: cloudflareCF-RAY: 9358ffa86e71d984-PHX

Source: chromecache_102.2.dr	String found in binary or memory: http://schema.org/Book
Source: chromecache_102.2.dr	String found in binary or memory: https://api1.publuu.com
Source: chromecache_102.2.dr	String found in binary or memory: https://cvn5wqeu20.execute-api.us-east-2.amazonaws.com/viewer
Source: chromecache_102.2.dr	String found in binary or memory: https://d1u9ua4yk0lyeu.cloudfront.net
Source: chromecache_102.2.dr	String found in binary or memory: https://d1u9ua4yk0lyeu.cloudfront.net/cms/publuu.svg
Source: chromecache_102.2.dr	String found in binary or memory: https://d2yzdrigfuozes.cloudfront.net
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_1.mp3
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_2.mp3
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_2.ogg
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_4.mp3
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_4.ogg
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/APP-xs.css?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Menu.css?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/loader.css?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/modal.css?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-120.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-128.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-152.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-180.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-192.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-196.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-228.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-32.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-57.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-76.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-96.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh6UVSwaPGQ
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh7USSwiPGQ
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6uyw4BMUTPHjx4wXiWtFC
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6uyw4BMUTPHjxAwXiWtFC
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/APP.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Helper.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Layout.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Logs.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/VideoEmbed.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/page-flip-hard.browser.js?v=1
Source: chromecache_117.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Roboto:100
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3-UBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3CUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3GUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3KUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3OUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3iUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2)
Source: chromecache_124.2.dr	String found in binary or memory: https://jog.ru.com/h7hg/h784.htm
Source: chromecache_117.2.dr	String found in binary or memory: https://kit.fontawesome.com/f6136e9b49.js
Source: chromecache_130.2.dr	String found in binary or memory: https://lololo.us-southeast-1.linodeobjects.com/svdrd8880.SVG
Source: chromecache_102.2.dr	String found in binary or memory: https://mbx7b28fh6.execute-api.us-east-2.amazonaws.com/leads
Source: chromecache_102.2.dr	String found in binary or memory: https://p6aqvvqp5i.execute-api.us-east-2.amazonaws.com/images/share/857972/1880783
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com/flip-book/
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com/flip-book/857972/1880783
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com/flip-book/857972/1880783/page/1
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com/flip-book/assets/fonts/lato/v23/S6u9w4BMUTPHh7USSwaPGQ3q5d0N7w.woff2)
Source: chromecache_117.2.dr	String found in binary or memory: https://ssl.gstatic.com/ui/v1/icons/mail/rfr/gmail.ico
Source: chromecache_102.2.dr	String found in binary or memory: https://utty56o2qi.execute-api.us-east-2.amazonaws.com/logs

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 192.178.49.196:443 -> 192.168.2.4:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.216.105.7:443 -> 192.168.2.4:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.216.105.7:443 -> 192.168.2.4:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49732 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.161.231.2:443 -> 192.168.2.4:49733 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49750 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.219:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49764 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49765 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.12.110.133:443 -> 192.168.2.4:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.12.110.133:443 -> 192.168.2.4:49774 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.135.242.45:443 -> 192.168.2.4:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 209.133.205.202:443 -> 192.168.2.4:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 209.133.205.202:443 -> 192.168.2.4:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.230.133.236:443 -> 192.168.2.4:49785 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.230.133.236:443 -> 192.168.2.4:49784 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.32.1:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.32.1:443 -> 192.168.2.4:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.4:49788 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.4:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.96.1:443 -> 192.168.2.4:49795 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49799 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.147.188:443 -> 192.168.2.4:49819 version: TLS 1.2

Source: classification engine

Classification label: mal72.phis.win@30/106@36/17

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2388,i,2844282365555258020,1732392128010918280,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2416 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://publuu.com/flip-book/857972/1880783"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-pre-read-main-dll --field-trial-handle=2388,i,2844282365555258020,1732392128010918280,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5812 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2388,i,2844282365555258020,1732392128010918280,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2416 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-pre-read-main-dll --field-trial-handle=2388,i,2844282365555258020,1732392128010918280,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5812 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior

Click here to start
Slideshow Behavior Animation

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.64.147.188	kit.fontawesome.com.cdn.cloudflare.net	United States	13335	CLOUDFLARENETUS	false
209.133.205.202	escolaskydive.com.br	United States	29802	HVC-ASUS	false
3.12.110.133	utty56o2qi.execute-api.us-east-2.amazonaws.com	United States	16509	AMAZON-02US	false
173.230.133.236	us-southeast-1.linodeobjects.com.akadns.net	United States	63949	LINODE-APLinodeLLCUS	false
104.18.94.41	challenges.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
52.85.39.219	unknown	United States	16509	AMAZON-02US	false
3.161.231.2	d2yzdrigfuozes.cloudfront.net	United States	16509	AMAZON-02US	false
104.21.96.1	unknown	United States	13335	CLOUDFLARENETUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
3.169.227.11	d1uiew9hysv4w7.cloudfront.net	United States	16509	AMAZON-02US	false
3.135.242.45	unknown	United States	16509	AMAZON-02US	false
104.21.32.1	jog.ru.com	United States	13335	CLOUDFLARENETUS	false
192.178.49.196	www.google.com	United States	15169	GOOGLEUS	false
18.216.105.7	publuu.com	United States	16509	AMAZON-02US	false
104.18.95.41	unknown	United States	13335	CLOUDFLARENETUS	false
52.85.39.145	dkl18tmi4r0t8.cloudfront.net	United States	16509	AMAZON-02US	false

Private

IP
192.168.2.4

Contacted Domains

Name	IP	Active
kit.fontawesome.com.cdn.cloudflare.net	172.64.147.188	true
d1uiew9hysv4w7.cloudfront.net	3.169.227.11	true
d2yzdrigfuozes.cloudfront.net	3.161.231.2	true
a.nel.cloudflare.com	35.190.80.1	true
us-southeast-1.linodeobjects.com.akadns.net	173.230.133.236	true
escolaskydive.com.br	209.133.205.202	true
challenges.cloudflare.com	104.18.94.41	true
publuu.com	18.216.105.7	true
www.google.com	192.178.49.196	true
utty56o2qi.execute-api.us-east-2.amazonaws.com	3.12.110.133	true
jog.ru.com	104.21.32.1	true
dkl18tmi4r0t8.cloudfront.net	52.85.39.145	true
lololo.us-southeast-1.linodeobjects.com	unknown	unknown
kit.fontawesome.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/	false		high
https://publuu.com/flip-book/857972/1880783	false		high
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Page_curl.js?v=1812	false	Avira URL Cloud: safe	unknown
https://a.nel.cloudflare.com/report/v4?s=1gJVtgIJH5HHFuYl4fjvItdKbgX2CdA59%2BuVv1d2l9sr%2BWKYDpISnQiGj5ZuYnElBDSXH63wEbiN2vlu%2Fu6VrUFSg%2BBLRFBR20JvjU0VyOmRFN9iDVELVG1BRhs9	false		high
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Ranger.js?v=1812	false	Avira URL Cloud: safe	unknown
https://escolaskydive.com.br/hjklkljhgui98767890/index.php	false	Avira URL Cloud: safe	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/d/9358ff5b4ae542d9/1745533328444/qx0wFY_CBGJF3BU	false		high
https://kit.fontawesome.com/f6136e9b49.js	false		high
https://jog.ru.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/APP.js?v=1812	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/loader.css?v=1812	false	Avira URL Cloud: safe	unknown
https://lololo.us-southeast-1.linodeobjects.com/svdrd8880.SVG	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Logs.js?v=1812	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/images/next2_1h.svg	false	Avira URL Cloud: safe	unknown
https://jog.ru.com/favicon.ico	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Book/xs.css?v=1812	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_4.ogg	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Book_curl.js?v=1812	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/page-flip-hard.browser.js?v=1812	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Menu.css?v=1812	false	Avira URL Cloud: safe	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=9358ff5b4ae542d9&lang=auto	false		high
https://jog.ru.com/h7hg/h784.htm	true		unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh7USSwiPGQ3q5d0.woff2	false	Avira URL Cloud: safe	unknown
https://d1uiew9hysv4w7.cloudfront.net/857972/1880783/txt/1880783_1_400.webp	false	Avira URL Cloud: safe	unknown
https://d1uiew9hysv4w7.cloudfront.net/857972/1880783/txt/1880783_1_800.webp	false	Avira URL Cloud: safe	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1276466761:1745530083:rLmCra2WyohVwGjNLoYbaysBwBLbAMIQvUHtZLxvrEI/9358ff5b4ae542d9/fNEb_6lEqUPWRvLiPPKGSyEEGhx3U5wA30y296N1xL8-1745533326-1.1.1.1-OjDChfehG_FjJzEgNkKi.zjEeshkGtROqXFOqOWuHxaLrtSGWnFiWBKib2y3j3qz	false		high
https://jog.ru.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.3252773696203924:1745529964:FVLL7xBZm2f0JIF86a3IlLZJt6ZxY10deTmCflAqYSA/9358ff9cb9876bad	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/textures/bg_1_1280.webp	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_2.ogg	false	Avira URL Cloud: safe	unknown
https://d1uiew9hysv4w7.cloudfront.net/857972/1880783/txt/1880783_1_250_blured.webp	false	Avira URL Cloud: safe	unknown
https://utty56o2qi.execute-api.us-east-2.amazonaws.com/logs/857972/1880783/simple	false		high
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-32.png	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/images/link.svg	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Notes.js?v=1812	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/modal.css?v=1812	false	Avira URL Cloud: safe	unknown
https://jog.ru.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/44e6f86df4dc/main.js?	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/images/prev2_1h.svg	false	Avira URL Cloud: safe	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/9358ff5b4ae542d9/1745533328446/add8c05b4daa7731700a72d9def0c5581f33acb4174b725770426d4f6a5473b8/_ISOvsO3_HaNxwY	false		high
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/VideoEmbed.js?v=1812	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Helper.js?v=1812	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Ranger/xs.css?v=1812	false	Avira URL Cloud: safe	unknown
https://jog.ru.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=9358ff484f5e6f64	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Layout.js?v=1812	false	Avira URL Cloud: safe	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1	false		high
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_1.mp3	false	Avira URL Cloud: safe	unknown
https://jog.ru.com/cdn-cgi/challenge-platform/h/g/flow/ov1/2107362749:1745529994:zxuF5Yhy8ttt_WljyG0O2XlQYm6_gQ9wFf-L5XKjKhs/9358ff484f5e6f64/fklYJgF38ZrxIgYXFFa6g0sN2Y2ZDtXm2tnjAY_d_7g-1745533323-1.2.1.1-GzZAtwqtUrzNOaWMnuRGW6kk_upUTQoCSndtcm5fydP1Fh1hTugVjDvTG1Fl97RD	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Search.js?v=1812	false	Avira URL Cloud: safe	unknown
https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/APP-xs.css?v=1812	false	Avira URL Cloud: safe	unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 100	ASCII text, with very long lines (13032), with no line terminators	50DC446D5155956755D4D992B1A7751C	94144C30A4C45518760BD82CF025433D6FC2E091	23C027D90FC390AE4E06BC487E060FD39612B5DB76D223921DB7727FC1D402DB
Chrome Cache Entry: 101	RIFF (little-endian) data, Web/P image, VP8 encoding, 310x400, Scaling: [none]x[none], YUV color, decoders should clamp	94708F85C3B307714D809AEA6805653B	F6FB17D1A248742C4D3702C2175B48CDAB977F62	96D0010673C2B3B9E94AF820AC3BEBD331278C7929CEB5F54D546A9F7BA885B8
Chrome Cache Entry: 102	HTML document, ASCII text, with very long lines (5224), with CRLF, LF line terminators	1000758689E01BF64C34904B8889F118	F8BE336F2DAC3B8366CE4A0266FAACB6AFEC9620	32B85AD19393DF16C6D9F6675AEA1D0FDCAF2B376F3886B7F11F5E042B1DFE2C
Chrome Cache Entry: 103	RIFF (little-endian) data, Web/P image, VP8 encoding, 619x800, Scaling: [none]x[none], YUV color, decoders should clamp	3F12A70EB0B79F17F6B455728D8C0E20	E38CB13982419B08463FBDFA0FD01B3B7D9F97AA	70BFB8E72BD0F26D13FFF656C7BF56796426246199BEA4FBB363C0A09B1CABB1
Chrome Cache Entry: 104	RIFF (little-endian) data, Web/P image	C25CDF5BA8D867DFB76DBFAF71439EE8	927D5AB7CE6F2C62CA782848C7BD6C2943F6421E	32732C41A2B59706132872F3AC409AFF15175798C4D06BC905BB2152A21908B5
Chrome Cache Entry: 105	ASCII text, with very long lines (8854), with no line terminators	7D9945BF519FF25D9568D6A7E725D08A	42A1A69FF503D60CCD6F9E9CFDF28E753F1187A0	45B2E31C0EE2F9C67EED3FC574443A27C8477DE5738E911926E14ACEFCCD766D
Chrome Cache Entry: 106	PNG image data, 31 x 30, 8-bit/color RGB, non-interlaced	2E5F80F0AC6947878199383960724407	71C34718766C5C976628124400AF86A4AC4171CA	2A8E538682E9A5CE3E0D6E1EAE9B6B43372CA72B9AF7511C1E9875ECD67803D7
Chrome Cache Entry: 107	JSON data	905B1FBB26E082557FF0B3B3553CDA6C	8FE0790D6026998BDB2C9FFA3B915952E613E1B4	F249B63CB2FCB66B47E86F906C98F8FD912E82DD035B4E53D7E72FC1960CFD16
Chrome Cache Entry: 108	SVG Scalable Vector Graphics image	E19C3D3111DB8EB1A3C38B93739B3361	39B751E740852E620870C9D27A5245F94C7475D3	5C87DF59B770C6B740DE8E316F8BDC1AE27E375EC911D222961E0757C1C9206D
Chrome Cache Entry: 109	RIFF (little-endian) data, Web/P image, VP8 encoding, 310x400, Scaling: [none]x[none], YUV color, decoders should clamp	94708F85C3B307714D809AEA6805653B	F6FB17D1A248742C4D3702C2175B48CDAB977F62	96D0010673C2B3B9E94AF820AC3BEBD331278C7929CEB5F54D546A9F7BA885B8
Chrome Cache Entry: 110	ASCII text, with very long lines (1512), with no line terminators	C9CF33EA44218467EEAE16E8F6729CE2	99EF8F64C844A2568A9028318A458D4A31818CD5	704F85E70915562AD7BED52F9C8636A6DADE7D7E4DEDBBB0D9B6F2C96DDE4E72
Chrome Cache Entry: 111	RIFF (little-endian) data, Web/P image	C25CDF5BA8D867DFB76DBFAF71439EE8	927D5AB7CE6F2C62CA782848C7BD6C2943F6421E	32732C41A2B59706132872F3AC409AFF15175798C4D06BC905BB2152A21908B5
Chrome Cache Entry: 112	ASCII text, with very long lines (1827), with no line terminators	1F0E5931479DCEBFFFB0AA36B30CBD34	56A678C6361186B0AA295E41762871DDC42D8E23	846598C7AFC8C3298175E6367792CFF07B56E2176FB2C3D36F5F1E33B17C3DF1
Chrome Cache Entry: 113	SVG Scalable Vector Graphics image	F890E9134112CCB2624B08864D6AB45B	DC79DD5F8BA5B837539E6539E241D7C812BD6B30	C40AC0A8F5989D1E976A8664B382C015C6FCE68DEA9E6062DE9C6550620178F4
Chrome Cache Entry: 114	ASCII text, with very long lines (8426), with no line terminators	292A3C4385E16C256A33F4D6D6634DD9	1D2FD262C80FD61B1D8D356D8876AC2E7BBDC461	587D98CCFCE2D1850450A0A913952436BBD0181ADD03E2CD33EDBB8C4E9DB85C
Chrome Cache Entry: 115	ASCII text, with very long lines (7214)	E52BE4E9F992051F548FDD070890462F	CEED140EA1B8D7C499A0A8CBB36A1950DE45A0AD	45E2E849D02ACD141C53DBBAA59B9E3AAD8EC624B328B9167AC835763BEAB853
Chrome Cache Entry: 116	ASCII text, with very long lines (1572)	1259EC64BE82B4AC34A247A8FE3CC72C	6A6F9D788F60BAECCA04BD8E905CEDC0A209197B	E7D3456A36699EE3CF0E0D319530AEE132FC6C19C37C65C0B4B986152F7C9547
Chrome Cache Entry: 117	HTML document, ASCII text, with very long lines (15736), with CRLF line terminators	FF6F8B88082A073A59DAB24FF3E95016	F48F37360F8459362381D6B8CB3EDAA52B9F4937	8070427B6C91FD5D07541FE630846113FB066FBC0D48850A8FDB7D7EADF4A3FA
Chrome Cache Entry: 118	ASCII text, with very long lines (6497), with no line terminators	2297CEE1901CF5176BBD896C86AAF9FE	74B6D54611B66DD8BDC46314447D04E21F29415B	CDE6A074F04E367963EE4C3F540545F35EAB13DD7E88BE35D1190E6A45457529
Chrome Cache Entry: 119	Web Open Font Format (Version 2), TrueType, length 13976, version 1.0	E7E52C955AA33E618BAF437A16539524	13ECB55BB760D6980A1B1331085630EF5ED84E9F	07C94892C3E0AC93D2BCB3A9CB88AA67EA47B3D1AA89BC39DFCC2B025DCD8988
Chrome Cache Entry: 120	ASCII text, with very long lines (26478)	F59A3E7974883F3F49629B4EE5345D4C	272DF55C1E02E0AF7277EDE8B18CB148F72EA892	E53BF2B42B0BE6DC812524E3E1D42E530A647D26666AAE4B4EA062ACCF6B9073
Chrome Cache Entry: 121	ASCII text, with very long lines (30358)	351F9CD2F531F29E1F9ECD851DFF7477	FC8D2241EC64D41D2231A742944DCA7D10BD2EBE	A890D0F80A2A76387B3C361B71ED140EBC2431B2C547D56EA88378A50333C5ED
Chrome Cache Entry: 122	RIFF (little-endian) data, Web/P image, VP8 encoding, 194x250, Scaling: [none]x[none], YUV color, decoders should clamp	C3A078E45D65B4589EFD169B67F7807B	D0F30A7B3D1FAD8AE247F2493A4AFF13F734942F	0019CEEE4C982FB850C891EF81BC7F6DE2AC66579F8EF7ED55EDD9155CC7BB89
Chrome Cache Entry: 123	ASCII text, with very long lines (48122)	3ED4AB6463FDABE2783A7A7828E94177	C80F67F86421DD2C071D5ABC70337877DB648266	91CE8BCEF253FA49B7BBEC10FA3C456261336414CAA9DA52E94988B6A44D1780
Chrome Cache Entry: 124	SVG Scalable Vector Graphics image	471AF68E6D99E92806248B759B4CBDDC	613042DD2408F52470848ABB8118210ABD2B858E	424C4D08702079A75D2F00E7B3F8C230836F07DE16E41583921D2608ED89866F
Chrome Cache Entry: 125	ASCII text, with very long lines (11941), with no line terminators	EC33658605E981D8233183E7E860C412	0CD8715F2C1A8A897F340E4B7E2EC7784C04CDE1	E3BA848087F6B527BE7A55DDFCDC31A106F13E189104F0C5BDC2E0DEF19EF3CA
Chrome Cache Entry: 126	ASCII text, with very long lines (7627), with no line terminators	345F0CC83F1CB80B47092ACC0F54465D	7A45E0B786CB5667FF065A9BAEAFED13511C4086	DAB02E9F58C120AA81544E937740300FFEAA67DB684F0AC30A5216A3FB52173D
Chrome Cache Entry: 127	ASCII text, with no line terminators	3DC9643F57969C9135A4C12FAEF11846	611E2C6E8BB81F713EDBB1BBC8EE22569589FBFE	87AE48C341F5ECDDDC1DC4EAFDF2C792C713178A585D6FC21D9110D19B651C4C
Chrome Cache Entry: 128	HTML document, ASCII text	A34AC19F4AFAE63ADC5D2F7BC970C07F	A82190FC530C265AA40A045C21770D967F4767B8	D5A89E26BEAE0BC03AD18A0B0D1D3D75F87C32047879D25DA11970CB5C4662A3
Chrome Cache Entry: 129	ASCII text, with very long lines (50185)	545C67A0620BB822A88620ADD08B0066	87E01CD0A2A5D3269CE26A16317725AA6582AED7	436A4355347E37E1791232D08F534888235D2029790A5464EF48B9F9D46AFC65
Chrome Cache Entry: 130	HTML document, ASCII text	C81AF19C90589BB6A08E6AB3FE39E3FA	591EB94A3378DA73635531ECE91B5B57F6B4A3B5	ED6A0E737BD859EEAEFA7F57B9C95A06F3D83BFEC8F160D181B8ED3A4453414B
Chrome Cache Entry: 131	RIFF (little-endian) data, Web/P image, VP8 encoding, 194x250, Scaling: [none]x[none], YUV color, decoders should clamp	C3A078E45D65B4589EFD169B67F7807B	D0F30A7B3D1FAD8AE247F2493A4AFF13F734942F	0019CEEE4C982FB850C891EF81BC7F6DE2AC66579F8EF7ED55EDD9155CC7BB89
Chrome Cache Entry: 132	ASCII text, with no line terminators	99B005D6096FA7830510A91940500E57	63BD32DE13EE741634BC70E8666DCD0783B06AA2	9982D8904BE85F60C9845D90A23C5E1D2F10A2DC5DF9A68891ADE48CBF712C0F
Chrome Cache Entry: 133	PNG image data, 31 x 30, 8-bit/color RGB, non-interlaced	2E5F80F0AC6947878199383960724407	71C34718766C5C976628124400AF86A4AC4171CA	2A8E538682E9A5CE3E0D6E1EAE9B6B43372CA72B9AF7511C1E9875ECD67803D7
Chrome Cache Entry: 134	SVG Scalable Vector Graphics image	C367903210123C014EC5E671676601C7	3059F9B6044E3ECE90432553AF10A5692D4DAC3C	D91E82B7DDA3E4B51CE72438B7B940DC7EA4D877D1E2C5BF1C39BA5E01A6CD7C
Chrome Cache Entry: 135	PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced	9246CCA8FC3C00F50035F28E9F6B7F7D	3AA538440F70873B574F40CD793060F53EC17A5D	C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84
Chrome Cache Entry: 136	Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 96 kbps, 44.1 kHz, JntStereo	A9125E860E067F6B1AE834D6ABB9AD37	C0F3A30C71A6C0DB5630C6A5B84680F014949684	9150C6F33600F63065D2BF2AC960153A7E579F57F5998AC043AEA47A52354213
Chrome Cache Entry: 137	ASCII text, with no line terminators	722969577A96CA3953E84E3D949DEE81	3DAB5F6012E3E149B5A939B9CEBBA4A0B84DC8F5	78342A0905A72CE44DA083DCB5D23B8EA0C16992BA2A82EECE97E033D76BA3D3
Chrome Cache Entry: 138	Web Open Font Format (Version 2), TrueType, length 20408, version 1.0	E8730678D4610FA908D3CBA1EF0B4DDF	1EFCBEE909CE74BF04878D74867F12A1E41AE7A4	E921785496ED2D98C2257C88A6F838AFA6ACBEE05CB8467048501BFE2A301461
Chrome Cache Entry: 139	MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	24473A3724F5B81A947C91A3AF992059	D0FDA75C58DCD0FF36727E31A96BBC03C79AD1B2	2A5C83DD7F4634810218BA70E3FE9550FB5D887E349CB46D77419EB1C74BC299
Chrome Cache Entry: 140	ASCII text, with very long lines (22611)	A13CF2D7ED58596C5A3054422DE911AA	6B5707EA605C0E5908F317D4A1F2DB6A2357037A	1B7139A84CB32092714EC5420DA014999E662336BD950AF99EDD01636AA22620
Chrome Cache Entry: 141	SVG Scalable Vector Graphics image	E19C3D3111DB8EB1A3C38B93739B3361	39B751E740852E620870C9D27A5245F94C7475D3	5C87DF59B770C6B740DE8E316F8BDC1AE27E375EC911D222961E0757C1C9206D
Chrome Cache Entry: 142	PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced	9246CCA8FC3C00F50035F28E9F6B7F7D	3AA538440F70873B574F40CD793060F53EC17A5D	C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84
Chrome Cache Entry: 143	ASCII text, with very long lines (29723), with no line terminators	566314B279A361EA0030B83A64FFF6A7	B4524A65F41AF7E378B87A9BBDB02CBE8616D797	EC954D70E285181FF3398C2AD48D5D859D36415EAEFB48DA9BBECDDF5A5B8A4A
Chrome Cache Entry: 85	ASCII text, with very long lines (22838), with no line terminators	71D521999B7CF12415563010CA5D224A	BE2F303548A75A47818D49E7FF1C2C1A583CBD57	825177EF7D3CC8424BD2144AA5A26789B080D20AD11BEF8617D1569686A28018
Chrome Cache Entry: 86	MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel	24473A3724F5B81A947C91A3AF992059	D0FDA75C58DCD0FF36727E31A96BBC03C79AD1B2	2A5C83DD7F4634810218BA70E3FE9550FB5D887E349CB46D77419EB1C74BC299
Chrome Cache Entry: 87	Web Open Font Format (Version 2), TrueType, length 40128, version 1.0	9A01B69183A9604AB3A439E388B30501	8ED1D59003D0DBE6360481017B44665153665FBE	20B535FA80C8189E3B87D1803038389960203A886D502BC2EF1857AFFC2F38D2
Chrome Cache Entry: 88	ASCII text, with very long lines (4897)	C05B85E790A7C5666C8136503BED25B1	3658E3C0498EC1840A8B3F76400CEDE782C47111	1A3B33D9D665585F75931DE4DEB60A90AE0E10BC4019A2954517F48244A354B7
Chrome Cache Entry: 89	ASCII text, with very long lines (17392)	F79DBCFE8823C3449A9C3649D7718919	8772CA649B35F29545A7A595B694D4564261AED0	5627C7B18AFF13A91AB2486C59EC1E095CEFB6FAB165C946AFD67D5BD7697A92
Chrome Cache Entry: 90	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	CCDFF90E27263B6C465D08BD87E5E03A	284FB98F610A32947F96DB83CECC4109FF22F038	05CF9EF13E7D4F62326848B021FAF24FAD5CC1C81BAB62205CC50CEEFEE241B0
Chrome Cache Entry: 91	Ogg data, Vorbis audio, stereo, 44100 Hz, ~112000 bps	D569802DF0E5D89B3959D846A8DE838D	25394966DB7A3FCB5B58508F0455358048414337	89BAC5598AFFBC317630B4441A96B811977EFB56425B9A91F167D3245E2F4C3B
Chrome Cache Entry: 92	Web Open Font Format (Version 2), TrueType, length 14148, version 1.0	69B28056044BE6438CE7E5214C66BA82	39EE8D4427A6062F942513B5B219A320068C7AE7	B8E094AD64704C2E4836153E641E432B22159B03D5B240B6DD303461BE83F542
Chrome Cache Entry: 93	Ogg data, Vorbis audio, mono, 44100 Hz, ~80000 bps	962AD009685D2C4647DA605A33BD555D	DD5DA9B020608114867CDD1105261B94AF876B15	B5F6536DAF4230BC5D6EFA2FC33B05E23EA5CF34724286E1C03A507A7BE65C5E
Chrome Cache Entry: 94	RIFF (little-endian) data, Web/P image, VP8 encoding, 619x800, Scaling: [none]x[none], YUV color, decoders should clamp	3F12A70EB0B79F17F6B455728D8C0E20	E38CB13982419B08463FBDFA0FD01B3B7D9F97AA	70BFB8E72BD0F26D13FFF656C7BF56796426246199BEA4FBB363C0A09B1CABB1
Chrome Cache Entry: 95	SVG Scalable Vector Graphics image	F890E9134112CCB2624B08864D6AB45B	DC79DD5F8BA5B837539E6539E241D7C812BD6B30	C40AC0A8F5989D1E976A8664B382C015C6FCE68DEA9E6062DE9C6550620178F4
Chrome Cache Entry: 96	SVG Scalable Vector Graphics image	C367903210123C014EC5E671676601C7	3059F9B6044E3ECE90432553AF10A5692D4DAC3C	D91E82B7DDA3E4B51CE72438B7B940DC7EA4D877D1E2C5BF1C39BA5E01A6CD7C
Chrome Cache Entry: 97	Web Open Font Format (Version 2), TrueType, length 13904, version 1.0	5589842CC46587294240B2CC0C7A0F98	F1BB816B059ACAACA4E925375C0C440F48810C6E	FDFDF90531F4BCE8EE5FBB9DA2E6736F462011670E5AF0B0DB44D6152C049076
Chrome Cache Entry: 98	ASCII text, with very long lines (65536), with no line terminators	D9B0AEC725B0CB3B0EA3936AC3BDAB20	429430C15685BF44CCFC3ABAA46B97B036DB76C7	0F531400EA63FA2E45971A1B7F68BFCF3B3BDB1698C73172B00A5B5859E5EA4F
Chrome Cache Entry: 99	PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced	CCDFF90E27263B6C465D08BD87E5E03A	284FB98F610A32947F96DB83CECC4109FF22F038	05CF9EF13E7D4F62326848B021FAF24FAD5CC1C81BAB62205CC50CEEFEE241B0

Phishing

AI detected phishing page

Source: https://jog.ru.com/h7hg/h784.htm

Yara detected HtmlPhish10

Source: Yara match	File source: 4.8.pages.csv, type: HTML
Source: Yara match	File source: dropped/chromecache_117, type: DROPPED

Yara detected Phisher

Source: Yara match

File source: dropped/chromecache_130, type: DROPPED

AI detected landing page (webpage, office document or email)

Source: https://publuu.com/flip-book/857972/1880783

Joe Sandbox AI: Page contains button: 'CLICK HERE TO ACCESS DOCUMENT' Source: '0.1.pages.csv'

Javascript uses Telegram API

Source: https://jog.ru.com/h7hg/h784.htm

HTML body contains low number of good links

Source: https://jog.ru.com/h7hg/h784.htm

HTTP Parser: Number of links: 0

HTML body contains password input but no form action

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: <input type="password" .../> found but no <form action="...
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: <input type="password" .../> found but no <form action="...

HTML body with high number of embedded images detected

Source: https://jog.ru.com/h7hg/h784.htm

HTTP Parser: Total embedded image size: 52723

HTML page contains hidden javascript code

Source: https://jog.ru.com/h7hg/h784.htm

HTML title does not match URL

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: Title: 2025 Approved proposal and presentation does not match URL
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: Title: Google Login Page does not match URL

Invalid T&C link found

Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: Invalid link: Help
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: Invalid link: Privacy
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: Invalid link: Terms

Javascript checks online IP of machine

Source: https://jog.ru.com/h7hg/h784.htm

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: <input type="password" .../> found
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: <input type="password" .../> found

Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: No favicon
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: No favicon

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="author".. found
Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="author".. found
Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="author".. found
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: No <meta name="author".. found

Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="copyright".. found
Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="copyright".. found
Source: https://publuu.com/flip-book/857972/1880783	HTTP Parser: No <meta name="copyright".. found
Source: https://jog.ru.com/h7hg/h784.htm	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 192.178.49.196:443 -> 192.168.2.4:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.216.105.7:443 -> 192.168.2.4:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.216.105.7:443 -> 192.168.2.4:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49732 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.161.231.2:443 -> 192.168.2.4:49733 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49750 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.219:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49764 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49765 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.12.110.133:443 -> 192.168.2.4:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.12.110.133:443 -> 192.168.2.4:49774 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.135.242.45:443 -> 192.168.2.4:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 209.133.205.202:443 -> 192.168.2.4:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 209.133.205.202:443 -> 192.168.2.4:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.230.133.236:443 -> 192.168.2.4:49785 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.230.133.236:443 -> 192.168.2.4:49784 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.32.1:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.32.1:443 -> 192.168.2.4:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.4:49788 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.4:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.96.1:443 -> 192.168.2.4:49795 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49799 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.147.188:443 -> 192.168.2.4:49819 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 52.113.196.254
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /flip-book/857972/1880783 HTTP/1.1Host: publuu.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/loader.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/APP-xs.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/Menu.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/APP.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/VideoEmbed.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/page-flip-hard.browser.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/modal.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ3q5d0.woff2 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/fonts/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh7USSwiPGQ3q5d0.woff2 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Helper.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Logs.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Layout.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/audio/v1_1.mp3 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"Accept-Encoding: identity;q=1, ;q=0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: audioSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Language: en-US,en;q=0.9Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/audio/v1_4.ogg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"Accept-Encoding: identity;q=1, ;q=0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: audioSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Language: en-US,en;q=0.9Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/audio/v1_2.ogg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"Accept-Encoding: identity;q=1, ;q=0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: audioSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Language: en-US,en;q=0.9Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Page_curl.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Book_curl.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Notes.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/Book/xs.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /textures/bg_1_1280.webp HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Ranger.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/scripts/Search.js?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/next2_1h.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Book/xs.css?v=1812Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/prev2_1h.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Book/xs.css?v=1812Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /textures/bg_1_1280.webp HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/prev2_1h.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/next2_1h.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/css/Ranger/xs.css?v=1812 HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/link.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveOrigin: https://publuu.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: imageReferer: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Book/xs.css?v=1812Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_250_blured.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_400.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_800.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/images/link.svg HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/favicons/favicon-32.png HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_400.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_250_blured.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /857972/1880783/txt/1880783_1_800.webp HTTP/1.1Host: d1uiew9hysv4w7.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /flipbook/202504/02/assets/favicons/favicon-32.png HTTP/1.1Host: dkl18tmi4r0t8.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logs/857972/1880783/simple HTTP/1.1Host: utty56o2qi.execute-api.us-east-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logs/857972/1880783/simple HTTP/1.1Host: utty56o2qi.execute-api.us-east-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hjklkljhgui98767890/index.php HTTP/1.1Host: escolaskydive.com.brConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://publuu.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logs/857972/1880783/simple HTTP/1.1Host: utty56o2qi.execute-api.us-east-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /svdrd8880.SVG HTTP/1.1Host: lololo.us-southeast-1.linodeobjects.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://escolaskydive.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /h7hg/h784.htm HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://lololo.us-southeast-1.linodeobjects.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /h7hg/h784.htm HTTP/1.1Host: jog.ru.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "134.0.6998.36"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://lololo.us-southeast-1.linodeobjects.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=9358ff484f5e6f64 HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"sec-ch-ua-platform: "Windows"sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-mobile: ?0sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "134.0.6998.36"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua-platform-version: "10.0.0"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://jog.ru.com/h7hg/h784.htm?__cf_chl_rt_tk=GmEXe0apzShrJddVoPYS6EYaDawbGYXvsxCGHPwINks-1745533323-1.0.1.1-ni.NI3kXM6WnGU6mVQP0sksiNRXPI9VbC3._2x72F3sAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/44e6f86df4dc/api.js?onload=boSsq5&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveOrigin: https://jog.ru.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"sec-ch-ua-platform: "Windows"sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-mobile: ?0sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "134.0.6998.36"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua-platform-version: "10.0.0"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://jog.ru.com/h7hg/h784.htmAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2107362749:1745529994:zxuF5Yhy8ttt_WljyG0O2XlQYm6_gQ9wFf-L5XKjKhs/9358ff484f5e6f64/fklYJgF38ZrxIgYXFFa6g0sN2Y2ZDtXm2tnjAY_d_7g-1745533323-1.2.1.1-GzZAtwqtUrzNOaWMnuRGW6kk_upUTQoCSndtcm5fydP1Fh1hTugVjDvTG1Fl97RD HTTP/1.1Host: jog.ru.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=9358ff5b4ae542d9&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"sec-ch-ua-platform: "Windows"sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-mobile: ?0sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "134.0.6998.36"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua-platform-version: "10.0.0"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://jog.ru.com/h7hg/h784.htmAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1276466761:1745530083:rLmCra2WyohVwGjNLoYbaysBwBLbAMIQvUHtZLxvrEI/9358ff5b4ae542d9/fNEb_6lEqUPWRvLiPPKGSyEEGhx3U5wA30y296N1xL8-1745533326-1.1.1.1-OjDChfehG_FjJzEgNkKi.zjEeshkGtROqXFOqOWuHxaLrtSGWnFiWBKib2y3j3qz HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logs/857972/1880783/simple HTTP/1.1Host: utty56o2qi.execute-api.us-east-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/9358ff5b4ae542d9/1745533328444/qx0wFY_CBGJF3BU HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/9358ff5b4ae542d9/1745533328444/qx0wFY_CBGJF3BU HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/pat/9358ff5b4ae542d9/1745533328446/add8c05b4daa7731700a72d9def0c5581f33acb4174b725770426d4f6a5473b8/_ISOvsO3_HaNxwY HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/mpmg8/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1276466761:1745530083:rLmCra2WyohVwGjNLoYbaysBwBLbAMIQvUHtZLxvrEI/9358ff5b4ae542d9/fNEb_6lEqUPWRvLiPPKGSyEEGhx3U5wA30y296N1xL8-1745533326-1.1.1.1-OjDChfehG_FjJzEgNkKi.zjEeshkGtROqXFOqOWuHxaLrtSGWnFiWBKib2y3j3qz HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-full-version-list: "Chromium";v="134.0.6998.36", "Not:A-Brand";v="24.0.0.0", "Google Chrome";v="134.0.6998.36"sec-ch-ua-platform: "Windows"sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-mobile: ?0sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "134.0.6998.36"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua-platform-version: "10.0.0"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://jog.ru.com/h7hg/h784.htm?__cf_chl_tk=GmEXe0apzShrJddVoPYS6EYaDawbGYXvsxCGHPwINks-1745533323-1.0.1.1-ni.NI3kXM6WnGU6mVQP0sksiNRXPI9VbC3._2x72F3sAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=1MCJHlasR5JqiYTkMNtMXnyqtcDUrcJwYlo4xXC.X24-1745533336-1.2.1.1-JmDxWvZaQ_5wk8KocP1oQqznx1foPO6CQBtNrAVsLDI84klHPWm3S_Ta.WPbhtAav2YNlejY9Emm0AsAJzmk1emdTaSi01zzbLpUC_FY3Wls1oHYELowA.iJ9yhLH.V4gX3ZrNYXga5QeuYhZAl3cZBRzs4bkpwDpK4I87yXcSnGU5kv84skcuTIVv1NrWmsCF72zkSNbpWKw5hCdvOowyWgxhf9rH4Wj2e8LgKYtLL8wDllPjez5zrXH3CXYUV_Q3bqfUOskBb63CiRZtVSaBW1AiVepprh41w9yuc_OJiIhAyWmmFYeX9NWJrVH9V1ioIihH171NbNy7MiKgs7P4fC9V_AoBQ2AVzeKZppWzyxIxh8nRc0pf_JMliUXsiE
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2107362749:1745529994:zxuF5Yhy8ttt_WljyG0O2XlQYm6_gQ9wFf-L5XKjKhs/9358ff484f5e6f64/fklYJgF38ZrxIgYXFFa6g0sN2Y2ZDtXm2tnjAY_d_7g-1745533323-1.2.1.1-GzZAtwqtUrzNOaWMnuRGW6kk_upUTQoCSndtcm5fydP1Fh1hTugVjDvTG1Fl97RD HTTP/1.1Host: jog.ru.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f6136e9b49.js HTTP/1.1Host: kit.fontawesome.comConnection: keep-aliveOrigin: https://jog.ru.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://jog.ru.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f6136e9b49.js HTTP/1.1Host: kit.fontawesome.comConnection: keep-aliveOrigin: https://jog.ru.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://jog.ru.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=1MCJHlasR5JqiYTkMNtMXnyqtcDUrcJwYlo4xXC.X24-1745533336-1.2.1.1-JmDxWvZaQ_5wk8KocP1oQqznx1foPO6CQBtNrAVsLDI84klHPWm3S_Ta.WPbhtAav2YNlejY9Emm0AsAJzmk1emdTaSi01zzbLpUC_FY3Wls1oHYELowA.iJ9yhLH.V4gX3ZrNYXga5QeuYhZAl3cZBRzs4bkpwDpK4I87yXcSnGU5kv84skcuTIVv1NrWmsCF72zkSNbpWKw5hCdvOowyWgxhf9rH4Wj2e8LgKYtLL8wDllPjez5zrXH3CXYUV_Q3bqfUOskBb63CiRZtVSaBW1AiVepprh41w9yuc_OJiIhAyWmmFYeX9NWJrVH9V1ioIihH171NbNy7MiKgs7P4fC9V_AoBQ2AVzeKZppWzyxIxh8nRc0pf_JMliUXsiE
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/44e6f86df4dc/main.js? HTTP/1.1Host: jog.ru.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=1MCJHlasR5JqiYTkMNtMXnyqtcDUrcJwYlo4xXC.X24-1745533336-1.2.1.1-JmDxWvZaQ_5wk8KocP1oQqznx1foPO6CQBtNrAVsLDI84klHPWm3S_Ta.WPbhtAav2YNlejY9Emm0AsAJzmk1emdTaSi01zzbLpUC_FY3Wls1oHYELowA.iJ9yhLH.V4gX3ZrNYXga5QeuYhZAl3cZBRzs4bkpwDpK4I87yXcSnGU5kv84skcuTIVv1NrWmsCF72zkSNbpWKw5hCdvOowyWgxhf9rH4Wj2e8LgKYtLL8wDllPjez5zrXH3CXYUV_Q3bqfUOskBb63CiRZtVSaBW1AiVepprh41w9yuc_OJiIhAyWmmFYeX9NWJrVH9V1ioIihH171NbNy7MiKgs7P4fC9V_AoBQ2AVzeKZppWzyxIxh8nRc0pf_JMliUXsiE
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/jsd/r/0.3252773696203924:1745529964:FVLL7xBZm2f0JIF86a3IlLZJt6ZxY10deTmCflAqYSA/9358ff9cb9876bad HTTP/1.1Host: jog.ru.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: publuu.com
Source: global traffic	DNS traffic detected: DNS query: dkl18tmi4r0t8.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: d2yzdrigfuozes.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: d1uiew9hysv4w7.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: utty56o2qi.execute-api.us-east-2.amazonaws.com
Source: global traffic	DNS traffic detected: DNS query: escolaskydive.com.br
Source: global traffic	DNS traffic detected: DNS query: lololo.us-southeast-1.linodeobjects.com
Source: global traffic	DNS traffic detected: DNS query: jog.ru.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: kit.fontawesome.com

Source: unknown

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:21:30 GMTContent-Type: application/jsonContent-Length: 42Connection: closex-amzn-RequestId: 7020819f-b311-46ff-a9c0-f071a8eb5ee9x-amzn-ErrorType: MissingAuthenticationTokenExceptionx-amz-apigw-id: JjHorEfhiYcEVTw=
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:21:49 GMTContent-Type: application/jsonContent-Length: 42Connection: closex-amzn-RequestId: 700327b3-d7af-4503-bfbb-72765c6f1620x-amzn-ErrorType: MissingAuthenticationTokenExceptionx-amz-apigw-id: JjHrvGd3CYcEqxQ=
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:00 GMTContent-Type: application/jsonContent-Length: 42Connection: closex-amzn-RequestId: f3898896-64df-4c52-be40-8c7a8b2c114fx-amzn-ErrorType: MissingAuthenticationTokenExceptionx-amz-apigw-id: JjHtaHreiYcEWJw=
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:03 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff46a9856902-DFWServer: cloudflareAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACf-Mitigated: challengeCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originServer-Timing: chlray;desc="9358ff46a9856902"X-Content-Type-Options: nosniff
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:03 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff484f5e6f64-DFWServer: cloudflareAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACf-Mitigated: challengeCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originServer-Timing: chlray;desc="9358ff484f5e6f64"X-Content-Type-Options: nosniff
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:05 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff553a476d82-DFWServer: cloudflareAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACf-Mitigated: challengeCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originServer-Timing: chlray;desc="9358ff553a476d82"X-Content-Type-Options: nosniff
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:08 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff65aed26b5c-DFWServer: cloudflareAccept-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACf-Mitigated: challengeCritical-Ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originServer-Timing: chlray;desc="9358ff65aed26b5c"X-Content-Type-Options: nosniff
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:12 GMTContent-Type: application/jsonContent-Length: 42Connection: closex-amzn-RequestId: ad30c70a-6bfa-402d-bea4-4f3f9f457911x-amzn-ErrorType: MissingAuthenticationTokenExceptionx-amz-apigw-id: JjHvREu6iYcEVlQ=
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 24 Apr 2025 22:22:17 GMTContent-Type: text/html; charset=iso-8859-1Transfer-Encoding: chunkedConnection: closeCf-Ray: 9358ff9cba1f6f46-DFWServer: cloudflareCache-Control: max-age=14400Cf-Cache-Status: EXPIREDReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KfkDsIqPoJ7%2B0FeHAVPpQYZeCgQy6%2Foe3Ci%2Ff6QKPStFBjQUQsEFwnSjcOk0Q9050W0C%2FqyCvyXCV7ddUpnbvVx8Sp8qp7y4RHbSoOu46OwGIUZE%2B66Fa4UdMAcB"}],"group":"cf-nel","max_age":604800}Nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}alt-svc: h3=":443"; ma=86400server-timing: cfL4;desc="?proto=TCP&rtt=165525&min_rtt=165316&rtt_var=35086&sent=6&recv=9&lost=0&retrans=0&sent_bytes=2820&recv_bytes=2049&delivery_rate=24424&cwnd=253&unsent_bytes=0&cid=78f7f4b265aa2c55&ts=413&x=0"
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:18 GMTContent-Length: 9Connection: closeaccess-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-tokenaccess-control-allow-methods: GET, OPTIONSaccess-control-allow-origin: *access-control-max-age: 3000Cache-Control: max-age=0, private, must-revalidatex-request-id: GDlhUqXxS7m_rxvVfTzBCF-Cache-Status: MISSServer: cloudflareCF-RAY: 9358ffa35ad5b66b-PHX
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Thu, 24 Apr 2025 22:22:19 GMTContent-Length: 9Connection: closeaccess-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-tokenaccess-control-allow-methods: GET, OPTIONSaccess-control-allow-origin: *access-control-max-age: 3000Cache-Control: max-age=0, private, must-revalidatex-request-id: GDlhUtYfPKS5wMiXBBcBCF-Cache-Status: MISSServer: cloudflareCF-RAY: 9358ffa86e71d984-PHX

Source: chromecache_102.2.dr	String found in binary or memory: http://schema.org/Book
Source: chromecache_102.2.dr	String found in binary or memory: https://api1.publuu.com
Source: chromecache_102.2.dr	String found in binary or memory: https://cvn5wqeu20.execute-api.us-east-2.amazonaws.com/viewer
Source: chromecache_102.2.dr	String found in binary or memory: https://d1u9ua4yk0lyeu.cloudfront.net
Source: chromecache_102.2.dr	String found in binary or memory: https://d1u9ua4yk0lyeu.cloudfront.net/cms/publuu.svg
Source: chromecache_102.2.dr	String found in binary or memory: https://d2yzdrigfuozes.cloudfront.net
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_1.mp3
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_2.mp3
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_2.ogg
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_4.mp3
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/audio/v1_4.ogg
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/APP-xs.css?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/Menu.css?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/loader.css?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/css/modal.css?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-120.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-128.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-152.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-180.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-192.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-196.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-228.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-32.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-57.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-76.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/favicons/favicon-96.png
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh6UVSwaPGQ
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6u9w4BMUTPHh7USSwiPGQ
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6uyw4BMUTPHjx4wXiWtFC
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/fonts/lato/v23/S6uyw4BMUTPHjxAwXiWtFC
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/APP.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Helper.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Layout.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/Logs.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/VideoEmbed.js?v=1812
Source: chromecache_102.2.dr	String found in binary or memory: https://dkl18tmi4r0t8.cloudfront.net/flipbook/202504/02/assets/scripts/page-flip-hard.browser.js?v=1
Source: chromecache_117.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Roboto:100
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3-UBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3CUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3GUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3KUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3OUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3iUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2)
Source: chromecache_116.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2)
Source: chromecache_124.2.dr	String found in binary or memory: https://jog.ru.com/h7hg/h784.htm
Source: chromecache_117.2.dr	String found in binary or memory: https://kit.fontawesome.com/f6136e9b49.js
Source: chromecache_130.2.dr	String found in binary or memory: https://lololo.us-southeast-1.linodeobjects.com/svdrd8880.SVG
Source: chromecache_102.2.dr	String found in binary or memory: https://mbx7b28fh6.execute-api.us-east-2.amazonaws.com/leads
Source: chromecache_102.2.dr	String found in binary or memory: https://p6aqvvqp5i.execute-api.us-east-2.amazonaws.com/images/share/857972/1880783
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com/flip-book/
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com/flip-book/857972/1880783
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com/flip-book/857972/1880783/page/1
Source: chromecache_102.2.dr	String found in binary or memory: https://publuu.com/flip-book/assets/fonts/lato/v23/S6u9w4BMUTPHh7USSwaPGQ3q5d0N7w.woff2)
Source: chromecache_117.2.dr	String found in binary or memory: https://ssl.gstatic.com/ui/v1/icons/mail/rfr/gmail.ico
Source: chromecache_102.2.dr	String found in binary or memory: https://utty56o2qi.execute-api.us-east-2.amazonaws.com/logs

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 192.178.49.196:443 -> 192.168.2.4:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.216.105.7:443 -> 192.168.2.4:49724 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.216.105.7:443 -> 192.168.2.4:49723 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49727 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49730 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49732 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.161.231.2:443 -> 192.168.2.4:49733 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49745 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.145:443 -> 192.168.2.4:49750 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.85.39.219:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49764 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49763 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49765 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49769 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.169.227.11:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.12.110.133:443 -> 192.168.2.4:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.12.110.133:443 -> 192.168.2.4:49774 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 3.135.242.45:443 -> 192.168.2.4:49778 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 209.133.205.202:443 -> 192.168.2.4:49781 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 209.133.205.202:443 -> 192.168.2.4:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.230.133.236:443 -> 192.168.2.4:49785 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.230.133.236:443 -> 192.168.2.4:49784 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.32.1:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.32.1:443 -> 192.168.2.4:49786 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.190.80.1:443 -> 192.168.2.4:49788 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.95.41:443 -> 192.168.2.4:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.96.1:443 -> 192.168.2.4:49795 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49799 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.147.188:443 -> 192.168.2.4:49819 version: TLS 1.2

Source: classification engine

Classification label: mal72.phis.win@30/106@36/17

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2388,i,2844282365555258020,1732392128010918280,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2416 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://publuu.com/flip-book/857972/1880783"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-pre-read-main-dll --field-trial-handle=2388,i,2844282365555258020,1732392128010918280,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5812 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2388,i,2844282365555258020,1732392128010918280,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2416 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-pre-read-main-dll --field-trial-handle=2388,i,2844282365555258020,1732392128010918280,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5812 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1673656
Product:	CloudBasic
Start time:	00:20:16
Start date:	25.04.2025
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 134, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://publuu.com/flip-book/857972/1880783

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://publuu.com/flip-book/857972/1880783

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://publuu.com/flip-book/857972/1880783