Windows Analysis Report
https://sites.google.com/view/htxkoegeteknologi

Phishing

Source: https://sites.google.com/view/htxkoegeteknologi/teknologi-b

HTTP Parser: No favicon

Compliance

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.253.67:443 -> 192.168.2.4:61810 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.253.67:443 -> 192.168.2.4:61858 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.253.67:443 -> 192.168.2.4:61875 version: TLS 1.2

Networking

Source: global traffic

TCP traffic: 192.168.2.4:61777 -> 162.159.36.2:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 162.159.36.2
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.221.95
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.221.95
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /js/client.js?onload=gapiLoaded HTTP/1.1Host: apis.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=EX2wSu9EA4g0qIDz_JU8pDj-hfhlQ0ylA-wEbS6Y2u_woso-xho56yRB1ZBs9JG5-3P6GuN62jaqbTK_yfCcUrYB7casUroM3Fl3KiwY-MBqh7Y4NTsg1SpjGzqOmloArFFPr2bscJOr5JsKXNsObPeusiZcV2zMoOxCOZHyEG_EXqV2mlA
Source: global traffic	HTTP traffic detected: GET /js/client.js?onload=gapiLoaded HTTP/1.1Host: apis.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=EX2wSu9EA4g0qIDz_JU8pDj-hfhlQ0ylA-wEbS6Y2u_woso-xho56yRB1ZBs9JG5-3P6GuN62jaqbTK_yfCcUrYB7casUroM3Fl3KiwY-MBqh7Y4NTsg1SpjGzqOmloArFFPr2bscJOr5JsKXNsObPeusiZcV2zMoOxCOZHyEG_EXqV2mlA
Source: global traffic	HTTP traffic detected: GET /eJozZKylGYaItUKyIGOfcAbk1l2rii0ZzmHwRjbjw1ZXjTfYtGFdSwM34Id9gXYmmDmnSlzTDU3IpPeBYWvSask=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /0QMDyAQ644i3r5Scb6ws8F8KKT-ymivqDFiWFKx2-ehIDKtAnU7EwWexuQvHHnPyutAPwrVMtS1v7twjsstvuaI=w16383 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.lb.en.2ttuSS2XBQ8.O/m=client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-TYe36ShA0ds8KrukIhF82BwaKlg/cb=gapi.loaded_0?le=scs HTTP/1.1Host: apis.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=EX2wSu9EA4g0qIDz_JU8pDj-hfhlQ0ylA-wEbS6Y2u_woso-xho56yRB1ZBs9JG5-3P6GuN62jaqbTK_yfCcUrYB7casUroM3Fl3KiwY-MBqh7Y4NTsg1SpjGzqOmloArFFPr2bscJOr5JsKXNsObPeusiZcV2zMoOxCOZHyEG_EXqV2mlA
Source: global traffic	HTTP traffic detected: GET /eJozZKylGYaItUKyIGOfcAbk1l2rii0ZzmHwRjbjw1ZXjTfYtGFdSwM34Id9gXYmmDmnSlzTDU3IpPeBYWvSask=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.lb.en.2ttuSS2XBQ8.O/m=client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-TYe36ShA0ds8KrukIhF82BwaKlg/cb=gapi.loaded_0?le=scs HTTP/1.1Host: apis.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=EX2wSu9EA4g0qIDz_JU8pDj-hfhlQ0ylA-wEbS6Y2u_woso-xho56yRB1ZBs9JG5-3P6GuN62jaqbTK_yfCcUrYB7casUroM3Fl3KiwY-MBqh7Y4NTsg1SpjGzqOmloArFFPr2bscJOr5JsKXNsObPeusiZcV2zMoOxCOZHyEG_EXqV2mlA
Source: global traffic	HTTP traffic detected: GET /0QMDyAQ644i3r5Scb6ws8F8KKT-ymivqDFiWFKx2-ehIDKtAnU7EwWexuQvHHnPyutAPwrVMtS1v7twjsstvuaI=w16383 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /ijN2s-7UZeGOww0PbbbsFYQkwS1sGU3oPqU4LHXvtRSlYGI46eLzCDwcZkwcimiuxE_XbKAuVL9raS2eQLot2WEyW9W0jnBEuLxr7nvSBsGqqks9m8yqJSWoH0NBcQHdaA=w1280 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /duImlsVxNkSyMqFsEsyolZfpQX_cwagG7Yf0H5Dy61JelOgOmWpoXRUq7DVydDWlcwXxPuhuznuGvpT2or_VOL4=w16383 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /duImlsVxNkSyMqFsEsyolZfpQX_cwagG7Yf0H5Dy61JelOgOmWpoXRUq7DVydDWlcwXxPuhuznuGvpT2or_VOL4=w16383 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /ijN2s-7UZeGOww0PbbbsFYQkwS1sGU3oPqU4LHXvtRSlYGI46eLzCDwcZkwcimiuxE_XbKAuVL9raS2eQLot2WEyW9W0jnBEuLxr7nvSBsGqqks9m8yqJSWoH0NBcQHdaA=w1280 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rk1Ye612iPndonA4zU-lGZ1M66-G3QZM4-h8ySIPFBfOynd_CPf1UxkpQOZFXddmSY-sTwvb0fJL1A6UYoUR0yw=w16383 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rk1Ye612iPndonA4zU-lGZ1M66-G3QZM4-h8ySIPFBfOynd_CPf1UxkpQOZFXddmSY-sTwvb0fJL1A6UYoUR0yw=w16383 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Xi_ICB4yQsZsaQFB69fvWtNfB6bMxSdu5uVuvSwNLTF5OU3Am-qg1sveX2LbbtNWkqAlffEr4h7mi3PJEqgHucw=w1280 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /zti0tgneT7FVsU-xBR67_NBwKRdMhaSQNOVFp_9BgKmbeB4sM5meA8moKYCwqgDsDCX-Cl0tXUbKy0SM1rVsUQ8=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /5BPGMbgy3N9GnwWRCtqtDqJxG-A0lpvLxktW1zv6mUxT1efIzN-Y6VU0dI5MibtjmwY8Hb_7fJ5-75WPdD1I7Vc=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /kiw4G7VaqMQTiVBoJEJKORPjBNUHqyc7RCwVOr3gVteGqBtNS5X-OQ0rIy5rdZBDBhXl1oa-vRScZxQVB2K8JTU=w1280 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /FMn6vUMomvFvbIVSypkb8KuPYeGVsB3qUf5YrvPryuf8oVGRtvaFJCmpjNw8PJiUqNDGMMzbd5rBS31zJHZiWUc=w16383 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vxNUUwsOt5PbjwJJGV9huExCSdM0JSiaB0drhmAh9H2oHisMZzTqHs2TcNg5slcYpPPngRH_Strk-MJ1EQCsVTN9t01b6x30DtSgo7xXTAxgon4HXV0xnIiLcndZGUU=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Xi_ICB4yQsZsaQFB69fvWtNfB6bMxSdu5uVuvSwNLTF5OU3Am-qg1sveX2LbbtNWkqAlffEr4h7mi3PJEqgHucw=w1280 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /zti0tgneT7FVsU-xBR67_NBwKRdMhaSQNOVFp_9BgKmbeB4sM5meA8moKYCwqgDsDCX-Cl0tXUbKy0SM1rVsUQ8=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /5BPGMbgy3N9GnwWRCtqtDqJxG-A0lpvLxktW1zv6mUxT1efIzN-Y6VU0dI5MibtjmwY8Hb_7fJ5-75WPdD1I7Vc=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /FMn6vUMomvFvbIVSypkb8KuPYeGVsB3qUf5YrvPryuf8oVGRtvaFJCmpjNw8PJiUqNDGMMzbd5rBS31zJHZiWUc=w16383 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vxNUUwsOt5PbjwJJGV9huExCSdM0JSiaB0drhmAh9H2oHisMZzTqHs2TcNg5slcYpPPngRH_Strk-MJ1EQCsVTN9t01b6x30DtSgo7xXTAxgon4HXV0xnIiLcndZGUU=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /kiw4G7VaqMQTiVBoJEJKORPjBNUHqyc7RCwVOr3gVteGqBtNS5X-OQ0rIy5rdZBDBhXl1oa-vRScZxQVB2K8JTU=w1280 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /images/icons/product/drive-32.png HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.lb.en.2ttuSS2XBQ8.O/m=gapi_rpc/exm=client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-TYe36ShA0ds8KrukIhF82BwaKlg/cb=gapi.loaded_1?le=scs HTTP/1.1Host: apis.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /file/d/17gJmnmU0utirL_ujgkwPnN1cNQc8Fp5m/preview HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /auth_warmup HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /images/icons/product/drive-32.png HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.lb.en.2ttuSS2XBQ8.O/m=gapi_rpc/exm=client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-TYe36ShA0ds8KrukIhF82BwaKlg/cb=gapi.loaded_1?le=scs HTTP/1.1Host: apis.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /drive-viewer/AKGpihYH56qIT8xh4sDm-woDm9UuouOW8gVgK0NZ5dgK5iB0suhfAUQwL_vsGVM4zDfAV8gn8PXmvSJxCbEZklu_aEECuwcQ4bTOFCQ=s1600-rw-v1 HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://drive.google.com/file/d/17gJmnmU0utirL_ujgkwPnN1cNQc8Fp5m/previewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /drive-viewer/AKGpihYH56qIT8xh4sDm-woDm9UuouOW8gVgK0NZ5dgK5iB0suhfAUQwL_vsGVM4zDfAV8gn8PXmvSJxCbEZklu_aEECuwcQ4bTOFCQ=s1600-rw-v1 HTTP/1.1Host: drive.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /auth_warmup HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /drivesharing/clientmodel?id=17gJmnmU0utirL_ujgkwPnN1cNQc8Fp5m&foreignService=texmex&authuser=0&origin=https%3A%2F%2Fdrive.google.com HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.gapi.en.SpvAvsXfWWo.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-MoqWi0fF1M09Ccs-6QfulXvxfdg/cb=gapi.loaded_0 HTTP/1.1Host: apis.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.gapi.en.SpvAvsXfWWo.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-MoqWi0fF1M09Ccs-6QfulXvxfdg/cb=gapi.loaded_1 HTTP/1.1Host: apis.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/meta?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0 HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.gapi.en.SpvAvsXfWWo.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-MoqWi0fF1M09Ccs-6QfulXvxfdg/cb=gapi.loaded_0 HTTP/1.1Host: apis.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/img?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=0&w=800&webp=true HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/presspage?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=0 HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/img?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=1&w=800&webp=true HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/presspage?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=1 HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/img?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=2&w=800&webp=true HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/presspage?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=2 HTTP/1.1Host: drive.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://drive.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/meta?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0 HTTP/1.1Host: drive.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.gapi.en.SpvAvsXfWWo.O/m=client/exm=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AACA/rs=AHpOoo-MoqWi0fF1M09Ccs-6QfulXvxfdg/cb=gapi.loaded_1 HTTP/1.1Host: apis.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/presspage?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=1 HTTP/1.1Host: drive.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/presspage?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=0 HTTP/1.1Host: drive.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/presspage?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=2 HTTP/1.1Host: drive.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/img?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=1&w=800&webp=true HTTP/1.1Host: drive.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/img?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=0&w=800&webp=true HTTP/1.1Host: drive.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /viewer2/prod-00/img?ck=drive&ds=APznzaZLIbZ62oHQ0GGWzn2LR456DJooQ3r3NMIshFYFjKU18LbdogEuHHXr8SHdFHiViycQS99DdRtLtu0iMvBvC8sIktm73oRZxKiXunCANbPoIgC1DDcq0Snh3aMvJUbLNifgLxabgW-VVUiw21NQfZdwY4V5_pqEW9sFgJLlrd7De4dLov0pcLMGvcaAP9_30CISfka76t1v4HYcPeI3UK9nWYq8f5NRtPf5N8xnKaTxLS19l_EsscWvQgOThiVkgsv73u8us_oEPkqPb0hMYlVvdCWlegZRoLOTHvkrXJACc4BJ7N3vyo4j0CY27fvwZQ_HvtvyCqH9mzkHV485oPhdO5p-Dzl3qinRorR4jNM4tWOr5ArjBbUhKLzJLzHR3NkJy1RqC0O3EdArjSEix0Tdoq2wFA%3D%3D&authuser=0&page=2&w=800&webp=true HTTP/1.1Host: drive.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /images/branding/googlelogo/1x/googlelogo_color_150x54dp.png HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://accounts.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /images/branding/googlelogo/1x/googlelogo_color_150x54dp.png HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /4oFrpSJmQYsk79YlyMjmJBjOS0-Cv5sRDvb0UUCHQcm87sKsXiTcZ8d-CsUgFLPS7WoI7OWLNk88ZXbfx9tpaT7ybbKU5oBOtYFYjQogIK-koiWTqwM0xi22R0RI88f6hw=w1280 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /u-I1ymymh9NK3rv_4j9OxnR8bP37_ca716gDzz-qdhuxCLb9hj5rD2EyeNceeFdxB1-J55AbptPZBpeBBsRXTZg=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /reo249KgyZh_OjSPkMfXNavGk7NkV9wSAWk4EEW7AL9IoI_RFZ1qQ8fZUyLfcdGeBFx03FzGSaFORzg52JzAPlw=w16383 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cIaR0aDQmPSWrnvzFcKDGzQ30Yhl7e_Y760qWxuiSYvser6cEns89102jGH5InaRWEPcbImMDa4FzXjSPB20K6A=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /lEq9sojVqu_P7qtfpUG0R9X9mvrmhkLcwvXVnrxEBHkswber_-WvZ0z71gjeAQt3rC-6j6EcZ4F3X6IjCH-Y8dE=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /kZCJAdxU6HwzCDLOfcl_KNFqSXdfqbF7ctZ4vmvco1QGFD9_kTWQEwdmXm2ZvUNOAsDhCti6Nr1u6AVV-iqzM1I=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /qYyf8J8Cis0IRXYEE3-xbtJx0Jwubt3LFYnAZC313fsNHiJWQywphvmGcoSGQSA8FillVzlQk0N8NC0HN2r4jWXu2Tnb8e1OF4XeEXEU0qn-_vsoOhAumtefdXvUPkNHtA=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /4oFrpSJmQYsk79YlyMjmJBjOS0-Cv5sRDvb0UUCHQcm87sKsXiTcZ8d-CsUgFLPS7WoI7OWLNk88ZXbfx9tpaT7ybbKU5oBOtYFYjQogIK-koiWTqwM0xi22R0RI88f6hw=w1280 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /iBNv6wxLvCoqsxu1STZKXrK1zxHHmR8vCR8755pvx8ofv9VtvxaYBygLZRE-_S56wBnjpWScQ1kozZs_eKV0tA=w1280 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wQbAw1rVgOPWZc3sHlfx_Wz-c6Ah_8YA5bQbMVg9fekc99XflsIP1aDxcy0n6nVis7m5DYgYCCZmKa48Pke1wU_HMS4Z8Fvmql4mrNypEdgMgeK-GhofDzDEvo2HddxzNQ=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cIaR0aDQmPSWrnvzFcKDGzQ30Yhl7e_Y760qWxuiSYvser6cEns89102jGH5InaRWEPcbImMDa4FzXjSPB20K6A=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /qYyf8J8Cis0IRXYEE3-xbtJx0Jwubt3LFYnAZC313fsNHiJWQywphvmGcoSGQSA8FillVzlQk0N8NC0HN2r4jWXu2Tnb8e1OF4XeEXEU0qn-_vsoOhAumtefdXvUPkNHtA=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /lEq9sojVqu_P7qtfpUG0R9X9mvrmhkLcwvXVnrxEBHkswber_-WvZ0z71gjeAQt3rC-6j6EcZ4F3X6IjCH-Y8dE=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /u-I1ymymh9NK3rv_4j9OxnR8bP37_ca716gDzz-qdhuxCLb9hj5rD2EyeNceeFdxB1-J55AbptPZBpeBBsRXTZg=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /reo249KgyZh_OjSPkMfXNavGk7NkV9wSAWk4EEW7AL9IoI_RFZ1qQ8fZUyLfcdGeBFx03FzGSaFORzg52JzAPlw=w16383 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /kZCJAdxU6HwzCDLOfcl_KNFqSXdfqbF7ctZ4vmvco1QGFD9_kTWQEwdmXm2ZvUNOAsDhCti6Nr1u6AVV-iqzM1I=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wQbAw1rVgOPWZc3sHlfx_Wz-c6Ah_8YA5bQbMVg9fekc99XflsIP1aDxcy0n6nVis7m5DYgYCCZmKa48Pke1wU_HMS4Z8Fvmql4mrNypEdgMgeK-GhofDzDEvo2HddxzNQ=w1280 HTTP/1.1Host: lh4.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /iBNv6wxLvCoqsxu1STZKXrK1zxHHmR8vCR8755pvx8ofv9VtvxaYBygLZRE-_S56wBnjpWScQ1kozZs_eKV0tA=w1280 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /zdHJof0jn5j18xY0ApJT0pcjPHMc6YtBPquArPln2qC-h6WIMWaC50lPkxsZXIHEddPGbfDCwdnjGffbvRdT5u_fKCHWRnP5jcayqKmVkautwzlmIdUOGGsq8BzdO7h-OA=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /zdHJof0jn5j18xY0ApJT0pcjPHMc6YtBPquArPln2qC-h6WIMWaC50lPkxsZXIHEddPGbfDCwdnjGffbvRdT5u_fKCHWRnP5jcayqKmVkautwzlmIdUOGGsq8BzdO7h-OA=w1280 HTTP/1.1Host: lh6.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /BR7b9X2oQyFHfM6zMb5v8QvUwN3xgSWitFL1SJw4TUd6Gxp3La74VZE2vW_KuRf_E9myvDYjkpf9toW6RDbOBYpy0HVJQCUphKdlSUWTWddKYfUZSvqDzsa8w1b7waJ5IA=w1280 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /BR7b9X2oQyFHfM6zMb5v8QvUwN3xgSWitFL1SJw4TUd6Gxp3La74VZE2vW_KuRf_E9myvDYjkpf9toW6RDbOBYpy0HVJQCUphKdlSUWTWddKYfUZSvqDzsa8w1b7waJ5IA=w1280 HTTP/1.1Host: lh5.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=b57k_unK8tBFyPLUCMCBlzWcztrlffr3bbhwOEwwS8eWmNb88AgygqSAUXtMhFWETxDaIEMiABwBxgk41sVCYYEUNhVN26QTjcHxI3oT-TuxON1Ocqw0riBnLMVaaemoaNZuDWfKHYURuOMYMPSkddb9PqhjsPzPIdX3AdEDa_HINII3S3xh2ArINPo
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: IYb.prototype.H=function(a){var b=a.q8;if(!b)return{};var c=b.T$,d,e,f=(d=b.EZ)==null?void 0:(e=d.d8)==null?void 0:e.message,g;b=(g=b.EZ)==null?void 0:g.state;var k;g=(k=a.z9)==null?void 0:k.u6;var l;k=(l=a.qba)==null?void 0:l.pba;c={player_response:c,reason:f,status:b,hbut:g,ttsurl:k};var n;if((n=a.FX)==null?0:n.duration)c.length_seconds=a.FX.duration.replace(HYb,"");return c};var LYb=function(a){RH.call(this,a.oa());this.context=a;this.L=new Eg};R(LYb,RH);LYb.prototype.D=function(){return"onYouTubeIframeAPIReady"};LYb.prototype.H=function(){var a=aF(this.context.ja())||new QH;return TIa(y(a,1,"https://www.youtube.com"),"iframe_api")};LYb.prototype.C=function(){return Ck("YT.Player",this.oa().getWindow())};LYb.prototype.tg=function(){return this.L};var MYb=function(){mw.apply(this,arguments)};R(MYb,mw);var RJ=function(a){Eg.call(this);this.context=a;this.F=null;this.V=!1;this.L=0;this.J=null;this.sa(this.context);var b=a.ja();a=a.oa();LE(b)||wg(b,83);this.H=new Frb;var c=NYb(b);Irb(this.H,c,function(){return X8a(c,!0)});Hrb(this.H,c);this.handler=new iv(this);this.sa(this.handler);this.C=new XGb;this.sa(this.C);OYb(this,b,a);PYb(this);this.D&&mi(b)&&(this.context.get(nB).start(),this.D.Jb({fa:1}),(b=Oi(b))&&this.context.get(nB).setEnabled(!!L(b,18,!1)));this.root=(b=uf(this.context,tIb))&&b.isEnabled()? equals www.youtube.com (Youtube)
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: Kf=w(["https://sandbox.google.com/tools/feedback/"]),Lf=w(["https://www.google.cn/tools/feedback/"]),Mf=w(["https://help.youtube.com/tools/feedback/"]),Nf=w(["https://asx-frontend-staging.corp.google.com/inapp/"]),Of=w(["https://asx-frontend-staging.corp.google.com/tools/feedback/"]),Pf=w(["https://localhost.corp.google.com/inapp/"]),Qf=w(["https://localhost.proxy.googlers.com/inapp/"]),Rf=V(tf),Sf=[V(uf),V(vf)],Tf=[V(wf),V(xf),V(yf),V(zf),V(Af),V(Bf),V(Cf),V(Df),V(Ef),V(Ff)],Uf=[V(Gf),V(Hf)],Vf= equals www.youtube.com (Youtube)
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: N0.prototype.H=function(a){var c=a.sM;if(!c)return{};var d=c.UN,e,f,g=(e=c.iG)==null?void 0:(f=e.nM)==null?void 0:f.message,k;c=(k=c.iG)==null?void 0:k.state;var l;k=(l=a.oN)==null?void 0:l.jL;var n;l=(n=a.EO)==null?void 0:n.DO;d={player_response:d,reason:g,status:c,hbut:k,ttsurl:l};var p;if((p=a.RE)==null?0:p.duration)d.length_seconds=a.RE.duration.replace(Dzb,"");return d};var O0=function(a){cZ.call(this,a.da());this.context=a;this.L=new _.To};_.F(O0,cZ);O0.prototype.C=function(){return"onYouTubeIframeAPIReady"};O0.prototype.H=function(){var a=this.context.ha().C()||new _.VN;return _.UN(_.K(a,1,"https://www.youtube.com"),"iframe_api")};O0.prototype.B=function(){return _.Pi("YT.Player",this.da().getWindow())};O0.prototype.Cd=function(){return this.L};var P0=function(a){_.To.call(this);this.context=a;this.D=null;this.L=!1;this.I=0;this.H=null;this.la(this.context);var c=a.ha();a=a.da();c.Hi()||_.wj(c,83);this.F=new ghb;var d=Gzb(c);jhb(this.F,d,function(){return chb(d,!0)});ihb(this.F,d);this.handler=new _.Ao(this);this.la(this.handler);this.B=new Prb;this.la(this.B);Hzb(this,c,a);Izb(this);this.C&&rP(c)&&(this.context.get(_.JE).start(),this.C.fb({O:1}),(c=XP(c))&&this.context.Ny().Wa(!!_.J(c,18,!1)));this.root=(c=_.Oh(this.context,Esb))&&c.isEnabled()? equals www.youtube.com (Youtube)
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: _.h.getVolume=function(){return this.isReady()?this.ZU():0};_.h.setVolume=function(a){this.isReady()&&this.cZ(a)};_.h.handleGlobalKeyDown=function(a){this.isReady()&&this.VK(a)};_.h.VK=function(){};_.h.ua=function(){this.item.isPlayable()||this.item.aH();_.dH.prototype.ua.call(this)};_.h.x0=function(){this.pause()};var ZN=function(a,c,d){YN.call(this,a,c,d);this.ready=this.fa=!1;this.R=d.ha().C()||new _.VN;this.host=_.K(this.R,1,"https://www.youtube.com");this.I={onReady:this.onReady.bind(this),onError:this.yX.bind(this),onKeyPress:this.onKeyPress.bind(this),onStateChange:this.onStateChange.bind(this),onTabOrderChange:this.uka.bind(this)}};_.F(ZN,YN);_.h=ZN.prototype;_.h.pt=function(){return this.host}; equals www.youtube.com (Youtube)
Source: chromecache_182.1.dr	String found in binary or memory: inline:{css:1},disableRealtimeCallback:!1,drive_share:{skipInitCommand:!0},csi:{rate:.01},client:{cors:!1},signInDeprecation:{rate:0},include_granted_scopes:!0,llang:"en",iframes:{youtube:{params:{location:["search","hash"]},url:":socialhost:/:session_prefix:_/widget/render/youtube?usegapi=1",methods:["scroll","openwindow"]},ytsubscribe:{url:"https://www.youtube.com/subscribe_embed?usegapi=1"},plus_circle:{params:{url:""},url:":socialhost:/:session_prefix::se:_/widget/plus/circle?usegapi=1"}, equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: apis.google.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: lh3.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: lh6.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: play.google.com
Source: global traffic	DNS traffic detected: DNS query: lh5.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: lh4.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: drive.google.com

Source: unknown

HTTP traffic detected: POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveContent-Length: 3767sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Content-Type: text/plain;charset=UTF-8X-Goog-AuthUser: 0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://sites.google.comX-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://sites.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=518=EX2wSu9EA4g0qIDz_JU8pDj-hfhlQ0ylA-wEbS6Y2u_woso-xho56yRB1ZBs9JG5-3P6GuN62jaqbTK_yfCcUrYB7casUroM3Fl3KiwY-MBqh7Y4NTsg1SpjGzqOmloArFFPr2bscJOr5JsKXNsObPeusiZcV2zMoOxCOZHyEG_EXqV2mlA

Source: chromecache_147.1.dr, chromecache_241.1.dr, chromecache_244.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: http://csi.gstatic.com/csi
Source: chromecache_135.1.dr	String found in binary or memory: http://lh3.ggpht.com
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: http://lh4.ggpht.com
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: http://lh5.ggpht.com
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: http://lh6.ggpht.com
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: http://localhost.corp.google.com/inapp/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: http://localhost.proxy.googlers.com/inapp/
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_230.1.dr	String found in binary or memory: http://www.bohemiancoding.com/sketch
Source: chromecache_230.1.dr	String found in binary or memory: http://www.bohemiancoding.com/sketch/ns
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr, chromecache_227.1.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: https://accounts.google.com/gsi/client
Source: chromecache_147.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://accounts.google.com/gsi/ottoken
Source: chromecache_245.1.dr	String found in binary or memory: https://accounts.google.com/o/fedcm/config.json
Source: chromecache_245.1.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/auth
Source: chromecache_245.1.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/iframe
Source: chromecache_147.1.dr, chromecache_182.1.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/postmessageRelay
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: https://ajax.googleapis.com/ajax/libs/model-viewer/3.5.0/model-viewer.min.js
Source: chromecache_158.1.dr, chromecache_179.1.dr	String found in binary or memory: https://angular.io/license
Source: chromecache_182.1.dr	String found in binary or memory: https://apis.google.com
Source: chromecache_244.1.dr	String found in binary or memory: https://apis.google.com/js/api.js
Source: chromecache_182.1.dr	String found in binary or memory: https://apis.google.com/js/client.js
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://apps-drive-picker-dev.corp.google.com/picker/minpick/main
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/inapp/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/tools/feedback/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/inapp/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.com/tools/feedback/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/inapp/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.google.de/tools/feedback/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/inapp/
Source: chromecache_207.1.dr	String found in binary or memory: https://asx-frontend-staging.corp.google.com/tools/feedback/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://calendar.google.com/calendar
Source: chromecache_182.1.dr	String found in binary or memory: https://classroom.google.com/sharewidget?usegapi=1
Source: chromecache_182.1.dr	String found in binary or memory: https://clients3.google.com/cast/chromecast/home/widget/backdrop?usegapi=1
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://clients5.google.com
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://clients5.google.com/webstore/wall/widget
Source: chromecache_147.1.dr, chromecache_182.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://clients6.google.com
Source: chromecache_147.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://console.developers.google.com/
Source: chromecache_147.1.dr, chromecache_182.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://content.googleapis.com
Source: chromecache_147.1.dr, chromecache_241.1.dr, chromecache_244.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://csi.gstatic.com/csi
Source: chromecache_147.1.dr	String found in binary or memory: https://csp.withgoogle.com/csp/lcreport/
Source: chromecache_182.1.dr	String found in binary or memory: https://dataconnector.corp.google.com/:session_prefix:ui/widgetview?usegapi=1
Source: chromecache_147.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://developers.google.com/
Source: chromecache_147.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://developers.google.com/api-client-library/javascript/reference/referencedocs
Source: chromecache_245.1.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/gis-migration)
Source: chromecache_245.1.dr	String found in binary or memory: https://developers.googleblog.com/2018/03/discontinuing-support-for-json-rpc-and.html
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://docs.google.com/document/d/1kganm9BHI3TsF8ogVulX2o4DzzO8XA4gu8aIKneTTNU/preview
Source: chromecache_147.1.dr	String found in binary or memory: https://domains.google.com/suggest/flow
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://drive-thirdparty.googleusercontent.com/
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://drive.google.com
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://drive.google.com/drive/my-drive
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://drive.google.com/picker/minpick/main
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://drive.google.com/requestreview?id=
Source: chromecache_182.1.dr	String found in binary or memory: https://drive.google.com/savetodrivebutton?usegapi=1
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://drive.google.com/viewer
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://drivemetadata.clients6.google.com
Source: chromecache_182.1.dr	String found in binary or memory: https://families.google.com/webcreation?usegapi=1&usegapi=1
Source: chromecache_207.1.dr	String found in binary or memory: https://feedback-pa.clients6.google.com
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/annotator.css
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://feedback.googleusercontent.com/resources/render_frame2.html
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://feedback2-test.corp.google.com/inapp/%
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://feedback2-test.corp.google.com/tools/feedback/%
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/inapp/%
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://feedback2-test.corp.googleusercontent.com/tools/feedback/%
Source: chromecache_215.1.dr, chromecache_180.1.dr, chromecache_223.1.dr	String found in binary or memory: https://fonts.google.com/license/googlerestricted
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_170.1.dr, chromecache_140.1.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Google
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://fonts.gstatic.com
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/bitter/v36/rax8HiqOu8IVPmn7cIxpPDk.woff2)
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/bitter/v36/rax8HiqOu8IVPmn7cYxpPDk.woff2)
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/bitter/v36/rax8HiqOu8IVPmn7coxpPDk.woff2)
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/bitter/v36/rax8HiqOu8IVPmn7e4xpPDk.woff2)
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/bitter/v36/rax8HiqOu8IVPmn7f4xp.woff2)
Source: chromecache_215.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlematerialicons/v142/Gw6kwdfw6UnXLJCcmafZyFRXb3BL9rvi0QZG3Q.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v61/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RP
Source: chromecache_227.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/alert/v11/gm_grey200-36dp/2x/gm_alert_gm_grey200_3
Source: chromecache_227.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/alert/v11/gm_grey600-36dp/2x/gm_alert_gm_grey600_3
Source: chromecache_227.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/close/v19/gm_grey200-24dp/1x/gm_close_gm_grey200_2
Source: chromecache_227.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/close/v19/gm_grey600-24dp/1x/gm_close_gm_grey600_2
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialiconsfilled/close/v19/gm_grey200-24dp/1x/gm_filled_close
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2)
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459WRhyzbi.woff2)
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459WZhyzbi.woff2)
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2)
Source: chromecache_146.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBBc4.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBBc4.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCBc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCRc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlM-vWjMY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlMOvWjMY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlMevWjMY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlMuvWjMY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlOevWjMY.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2)
Source: chromecache_223.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPuvWjMY.woff2)
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://gemini.google.com/gems/view
Source: chromecache_207.1.dr	String found in binary or memory: https://gstatic.com/uservoice/surveys/resources/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://help.youtube.com/tools/feedback/
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://lh3.googleusercontent.com/a/default-user
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://localhost.corp.google.com/inapp/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://localhost.proxy.googlers.com/inapp/
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://mygoogle.corp.google.com/help/answer/9011840
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://onepick-autopush.sandbox.google.com/picker/minpick/main
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://onepick-preprod.sandbox.google.com/picker/minpick/main
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://onepick-staging-drivequal.sandbox.google.com/picker/minpick/main
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://onepick-staging.sandbox.google.com/picker/minpick/main
Source: chromecache_182.1.dr	String found in binary or memory: https://pay.google.com/gp/v/widget/save
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://play.google.com
Source: chromecache_227.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_182.1.dr	String found in binary or memory: https://play.google.com/work/embedded/search?usegapi=1&usegapi=1
Source: chromecache_147.1.dr, chromecache_182.1.dr	String found in binary or memory: https://plus.google.com
Source: chromecache_147.1.dr, chromecache_182.1.dr	String found in binary or memory: https://plus.googleapis.com
Source: chromecache_244.1.dr	String found in binary or memory: https://policies.google.com/privacy
Source: chromecache_244.1.dr	String found in binary or memory: https://policies.google.com/terms
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://punctual-dev.corp.google.com
Source: chromecache_158.1.dr, chromecache_179.1.dr	String found in binary or memory: https://rapid.corp.google.com/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://sandbox.google.com/inapp/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://sandbox.google.com/inapp/%
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://sandbox.google.com/tools/feedback/%
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://scone-pa.clients6.google.com
Source: chromecache_158.1.dr, chromecache_179.1.dr	String found in binary or memory: https://scriptz.corp.google.com/
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://signaler-pa.clients6.google.com
Source: chromecache_244.1.dr	String found in binary or memory: https://signaler-pa.googleapis.com
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://signaler-pa.youtube.com
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://signaler-staging.sandbox.google.com
Source: chromecache_238.1.dr, chromecache_186.1.dr, chromecache_135.1.dr, chromecache_202.1.dr	String found in binary or memory: https://ssl.gstatic.com/atari/images/no-results-found.svg
Source: chromecache_238.1.dr, chromecache_186.1.dr, chromecache_135.1.dr, chromecache_202.1.dr	String found in binary or memory: https://ssl.gstatic.com/atari/images/no_results_error.png
Source: chromecache_238.1.dr, chromecache_186.1.dr, chromecache_135.1.dr, chromecache_202.1.dr	String found in binary or memory: https://ssl.gstatic.com/atari/images/results-not-loaded.svg
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://ssl.gstatic.com/docs/common/cleardot.gif
Source: chromecache_147.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://ssl.gstatic.com/gb/js/
Source: chromecache_182.1.dr	String found in binary or memory: https://ssl.gstatic.com/microscope/embed/
Source: chromecache_207.1.dr	String found in binary or memory: https://stagingqual-feedback-pa-googleapis.sandbox.google.com
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com
Source: chromecache_207.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/
Source: chromecache_238.1.dr, chromecache_186.1.dr, chromecache_135.1.dr, chromecache_202.1.dr	String found in binary or memory: https://support.google.com/cloudsearch/answer/6172299
Source: chromecache_244.1.dr	String found in binary or memory: https://support.google.com/docs/answer/13447609
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/docs/answer/148505
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/docs/answer/2494893?co=GENIE.Platform%3DDesktop#zippy=%2Cprevent-people-f
Source: chromecache_244.1.dr	String found in binary or memory: https://support.google.com/docs/answer/37603
Source: chromecache_244.1.dr	String found in binary or memory: https://support.google.com/docs/answer/49114
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/docs?p=vids-stock-content
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/drive/answer/13447401
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/drive/answer/2407404?hl=en
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/drive/answer/2423485?hl=%s
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/drive/answer/2423694
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/drive/answer/7650301
Source: chromecache_244.1.dr	String found in binary or memory: https://support.google.com/drive?p=gemini_drive_pdf
Source: chromecache_244.1.dr	String found in binary or memory: https://support.google.com/google-workspace-individual/?p=esignature_signer_terms
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://support.google.com/inapp/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://support.google.com/inapp/%
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://support.google.com/legal/answer/3110420
Source: chromecache_182.1.dr	String found in binary or memory: https://talkgadget.google.com/:session_prefix:talkgadget/_/widget
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://tasks.google.com/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://test-scone-pa-googleapis.sandbox.google.com
Source: chromecache_158.1.dr, chromecache_241.1.dr, chromecache_244.1.dr, chromecache_179.1.dr	String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://workspace.google.com
Source: chromecache_147.1.dr, chromecache_182.1.dr	String found in binary or memory: https://workspace.google.com/:session_prefix:marketplace/appfinder?usegapi=1
Source: chromecache_158.1.dr, chromecache_179.1.dr	String found in binary or memory: https://workspace.google.com/products/sites/
Source: chromecache_244.1.dr	String found in binary or memory: https://workspace.google.com/terms/google-workspace-individual-terms/esignature-signer/
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://workspacevideo-pa.googleapis.com
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://www.google.cn/tools/feedback/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://www.google.cn/tools/feedback/%
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://www.google.com
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api.js?trustedtypes=true
Source: chromecache_182.1.dr	String found in binary or memory: https://www.google.com/shopping/customerreviews/badge?usegapi=1
Source: chromecache_182.1.dr	String found in binary or memory: https://www.google.com/shopping/customerreviews/optin?usegapi=1
Source: chromecache_207.1.dr, chromecache_244.1.dr	String found in binary or memory: https://www.google.com/tools/feedback
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://www.google.com/tools/feedback/
Source: chromecache_199.1.dr, chromecache_207.1.dr	String found in binary or memory: https://www.google.com/tools/feedback/%
Source: chromecache_207.1.dr	String found in binary or memory: https://www.google.com/tools/feedback/help_panel_binary.js
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: https://www.googleapis.com/auth/cloud_search.query
Source: chromecache_245.1.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.login
Source: chromecache_147.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.me
Source: chromecache_147.1.dr	String found in binary or memory: https://www.googleapis.com/auth/plus.people.recommended
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: https://www.googleapis.com/auth/teams.readonly
Source: chromecache_147.1.dr, chromecache_238.1.dr, chromecache_135.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: chromecache_147.1.dr, chromecache_184.1.dr, chromecache_245.1.dr	String found in binary or memory: https://www.googleapis.com/auth/userinfo.profile
Source: chromecache_238.1.dr, chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
Source: chromecache_227.1.dr	String found in binary or memory: https://www.gstatic.com/gb/html/afbp.html
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://www.gstatic.com/images/branding/productlogos/calendar_2020q4/v13/192px.svg
Source: chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://www.gstatic.com/images/branding/productlogos/tasks/v10/192px.svg
Source: chromecache_227.1.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/anim/mspin/mspin_googcolor_medium.css
Source: chromecache_227.1.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/anim/mspin/mspin_googcolor_small.css
Source: chromecache_227.1.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/system/1x/broken_image_grey600_18dp.png
Source: chromecache_227.1.dr	String found in binary or memory: https://www.gstatic.com/images/icons/material/system/2x/broken_image_grey600_18dp.png
Source: chromecache_182.1.dr	String found in binary or memory: https://www.gstatic.com/partners/badge/templates/badge.html?usegapi=1
Source: chromecache_244.1.dr	String found in binary or memory: https://www.gstatic.com/uservoice/feedback/client/web/
Source: chromecache_207.1.dr	String found in binary or memory: https://www.gstatic.com/uservoice/surveys/resources/
Source: chromecache_135.1.dr, chromecache_241.1.dr, chromecache_244.1.dr	String found in binary or memory: https://www.youtube.com
Source: chromecache_182.1.dr	String found in binary or memory: https://www.youtube.com/subscribe_embed?usegapi=1
Source: chromecache_238.1.dr, chromecache_135.1.dr	String found in binary or memory: https://www.youtubeeducation.com

Source: unknown	Network traffic detected: HTTP traffic on port 61843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61987
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61869
Source: unknown	Network traffic detected: HTTP traffic on port 61946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61980
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 61890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62000 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61993 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61875
Source: unknown	Network traffic detected: HTTP traffic on port 61808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61996
Source: unknown	Network traffic detected: HTTP traffic on port 61832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61999
Source: unknown	Network traffic detected: HTTP traffic on port 62011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61990
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61873
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 61912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61935 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61888
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61881
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 61787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61899
Source: unknown	Network traffic detected: HTTP traffic on port 61855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 62034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61890
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 61891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61979 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61828
Source: unknown	Network traffic detected: HTTP traffic on port 61910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61829
Source: unknown	Network traffic detected: HTTP traffic on port 61994 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62047 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61941
Source: unknown	Network traffic detected: HTTP traffic on port 61856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61940
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 61785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61955
Source: unknown	Network traffic detected: HTTP traffic on port 61829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61958
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61959
Source: unknown	Network traffic detected: HTTP traffic on port 62036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62070 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61950
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61951
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 61845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61966
Source: unknown	Network traffic detected: HTTP traffic on port 61967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61849
Source: unknown	Network traffic detected: HTTP traffic on port 62058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62035 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61960
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61841
Source: unknown	Network traffic detected: HTTP traffic on port 61944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 61978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61974
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61975
Source: unknown	Network traffic detected: HTTP traffic on port 61834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61976
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61977
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61859
Source: unknown	Network traffic detected: HTTP traffic on port 62013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61970
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61850
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61973
Source: unknown	Network traffic detected: HTTP traffic on port 61828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62066 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62054 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62019 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62065 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62042 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 62031 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 61827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62020 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61787
Source: unknown	Network traffic detected: HTTP traffic on port 61965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61783
Source: unknown	Network traffic detected: HTTP traffic on port 62056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61785
Source: unknown	Network traffic detected: HTTP traffic on port 61942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61790
Source: unknown	Network traffic detected: HTTP traffic on port 61836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61793
Source: unknown	Network traffic detected: HTTP traffic on port 61907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61796
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62032 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62044 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62040
Source: unknown	Network traffic detected: HTTP traffic on port 61895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62041
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62042
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62063 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62035
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62037
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62038
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62039
Source: unknown	Network traffic detected: HTTP traffic on port 61928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62051
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62053
Source: unknown	Network traffic detected: HTTP traffic on port 61825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62044
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62046
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62047
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62048
Source: unknown	Network traffic detected: HTTP traffic on port 62074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62049
Source: unknown	Network traffic detected: HTTP traffic on port 62051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62062
Source: unknown	Network traffic detected: HTTP traffic on port 61849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62064
Source: unknown	Network traffic detected: HTTP traffic on port 62039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61940 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62055
Source: unknown	Network traffic detected: HTTP traffic on port 61850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62056
Source: unknown	Network traffic detected: HTTP traffic on port 61793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62058
Source: unknown	Network traffic detected: HTTP traffic on port 61906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62059
Source: unknown	Network traffic detected: HTTP traffic on port 61929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62071
Source: unknown	Network traffic detected: HTTP traffic on port 62006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62073
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62074
Source: unknown	Network traffic detected: HTTP traffic on port 61999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61974 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62066
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62067
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62068
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62069
Source: unknown	Network traffic detected: HTTP traffic on port 61813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62053 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62030 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62007
Source: unknown	Network traffic detected: HTTP traffic on port 62064 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62009
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62001
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62002
Source: unknown	Network traffic detected: HTTP traffic on port 61962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62005
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62006
Source: unknown	Network traffic detected: HTTP traffic on port 62007 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62020
Source: unknown	Network traffic detected: HTTP traffic on port 61950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62019
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62015
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62016
Source: unknown	Network traffic detected: HTTP traffic on port 61812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62017
Source: unknown	Network traffic detected: HTTP traffic on port 62052 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62030
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62031
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62029
Source: unknown	Network traffic detected: HTTP traffic on port 62041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62021
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62022
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62026
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 62028
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61905
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61909
Source: unknown	Network traffic detected: HTTP traffic on port 61937 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61900
Source: unknown	Network traffic detected: HTTP traffic on port 62037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61902
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61903
Source: unknown	Network traffic detected: HTTP traffic on port 62014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61904
Source: unknown	Network traffic detected: HTTP traffic on port 61875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 62025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61917
Source: unknown	Network traffic detected: HTTP traffic on port 61972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 61898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61918
Source: unknown	Network traffic detected: HTTP traffic on port 62060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61910
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61911
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 61915
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49775 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.253.67:443 -> 192.168.2.4:61810 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.253.67:443 -> 192.168.2.4:61858 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.253.67:443 -> 192.168.2.4:61875 version: TLS 1.2

System Summary

Source: classification engine

Classification label: clean0.win@24/179@42/20

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2472 --field-trial-handle=2412,i,11029885246035527170,18197118443821147716,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://sites.google.com/view/htxkoegeteknologi"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2472 --field-trial-handle=2412,i,11029885246035527170,18197118443821147716,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected