Source: global traffic | HTTP traffic detected: GET /public/share/web-034ada86e7d04d74 HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /css/spinner.css HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://totalcanterbury0.sharefile.com/public/share/web-034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=vnGB6Hn28l1EEdBZlX9HYUucr333Ses3S4XSPaX9fwdSJ+0GuBeAQKTq0gu4fNN4URfh2snsdCcnG17rdaeDb19u3+3GVhclhYvlbTckR21BW2fHJeMh+TZMsMjlHdS5RSltDYU/R1dzQaJtl6sQyHSZjhVNXQd3RbDesBAv33af; AWSALBTGCORS=vnGB6Hn28l1EEdBZlX9HYUucr333Ses3S4XSPaX9fwdSJ+0GuBeAQKTq0gu4fNN4URfh2snsdCcnG17rdaeDb19u3+3GVhclhYvlbTckR21BW2fHJeMh+TZMsMjlHdS5RSltDYU/R1dzQaJtl6sQyHSZjhVNXQd3RbDesBAv33af; AWSALB=tjiH6Awzj251hL/ftlPghjzZVyBFSg1/VqfSdcisT/94ttoRPYW36EeUYLZQ/pqeabygfQZJo8XzU7BFtcUnI7PCDQljfxwbEPzyX9GP27DN+j7AXWRuJr03b8Rm; AWSALBCORS=tjiH6Awzj251hL/ftlPghjzZVyBFSg1/VqfSdcisT/94ttoRPYW36EeUYLZQ/pqeabygfQZJo8XzU7BFtcUnI7PCDQljfxwbEPzyX9GP27DN+j7AXWRuJr03b8Rm; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp |
Source: global traffic | HTTP traffic detected: GET /0093b71e39a6/478ed03bbf12/challenge.js HTTP/1.1Host: 0093b71e39a6.us-east-1.sdk.awswaf.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /bundles/index.563cd3fc21b70465916a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/public/share/web-034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=vnGB6Hn28l1EEdBZlX9HYUucr333Ses3S4XSPaX9fwdSJ+0GuBeAQKTq0gu4fNN4URfh2snsdCcnG17rdaeDb19u3+3GVhclhYvlbTckR21BW2fHJeMh+TZMsMjlHdS5RSltDYU/R1dzQaJtl6sQyHSZjhVNXQd3RbDesBAv33af; AWSALBTGCORS=vnGB6Hn28l1EEdBZlX9HYUucr333Ses3S4XSPaX9fwdSJ+0GuBeAQKTq0gu4fNN4URfh2snsdCcnG17rdaeDb19u3+3GVhclhYvlbTckR21BW2fHJeMh+TZMsMjlHdS5RSltDYU/R1dzQaJtl6sQyHSZjhVNXQd3RbDesBAv33af; AWSALB=tjiH6Awzj251hL/ftlPghjzZVyBFSg1/VqfSdcisT/94ttoRPYW36EeUYLZQ/pqeabygfQZJo8XzU7BFtcUnI7PCDQljfxwbEPzyX9GP27DN+j7AXWRuJr03b8Rm; AWSALBCORS=tjiH6Awzj251hL/ftlPghjzZVyBFSg1/VqfSdcisT/94ttoRPYW36EeUYLZQ/pqeabygfQZJo8XzU7BFtcUnI7PCDQljfxwbEPzyX9GP27DN+j7AXWRuJr03b8Rm; .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp |
Source: global traffic | HTTP traffic detected: GET /css/sharefilebrand/sf-spinner.svg HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://totalcanterbury0.sharefile.com/css/spinner.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=V63Kyi9qbiTNPbbmUHgYubefu+DkNZJ+Cx1JSM9SN+BmmkRFTvs05vTndnzjzcsZhPlqPI1zZjOv1RKMPk7Fq6GE6DvPzGCzVVeI8Ud7EXrv0UWapY4luLapNTEy5qQETscsnwCFA0itiTu1F330yMpQn09rAqoqvzxLvO9mRvWQ; AWSALBTGCORS=V63Kyi9qbiTNPbbmUHgYubefu+DkNZJ+Cx1JSM9SN+BmmkRFTvs05vTndnzjzcsZhPlqPI1zZjOv1RKMPk7Fq6GE6DvPzGCzVVeI8Ud7EXrv0UWapY4luLapNTEy5qQETscsnwCFA0itiTu1F330yMpQn09rAqoqvzxLvO9mRvWQ; AWSALB=5CJUtX80uyB/4BHOKHiHArPpaDgzUMXIuyeYcvi31TnExGf9/kkGw9LN8NZ79u4IGn6B6UQ/uPx1i2wGZIUJGj/Ghyr7jfClUpgnRHFXsifR+jSXHqeuCJDeIKsp; AWSALBCORS=5CJUtX80uyB/4BHOKHiHArPpaDgzUMXIuyeYcvi31TnExGf9/kkGw9LN8NZ79u4IGn6B6UQ/uPx1i2wGZIUJGj/Ghyr7jfClUpgnRHFXsifR+jSXHqeuCJDeIKsp |
Source: global traffic | HTTP traffic detected: GET /0093b71e39a6/478ed03bbf12/challenge.js HTTP/1.1Host: 0093b71e39a6.11de9b12.us-east-1.token.awswaf.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /css/sharefilebrand/sf-spinner.svg HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=VhI/ZzXIc3J22GtaE0HRNdMiOLNDtE0BRwiCDXE1uHgZpYf+dM9n5W77ebr9rYue6gTs7kLH/DY7eoN5FugixpVWFsbS3yqWoQ8HhXTNGVUstPczcS89WqwpU+XveQFAkIF3eR5KkyXL6E3PDqGZ/6w/jW8u+3bpnCRxZvXDWDz3; AWSALBTGCORS=VhI/ZzXIc3J22GtaE0HRNdMiOLNDtE0BRwiCDXE1uHgZpYf+dM9n5W77ebr9rYue6gTs7kLH/DY7eoN5FugixpVWFsbS3yqWoQ8HhXTNGVUstPczcS89WqwpU+XveQFAkIF3eR5KkyXL6E3PDqGZ/6w/jW8u+3bpnCRxZvXDWDz3; AWSALB=41TfdFr+TK2ZaXcQIsPmh8kjZ6ZxlkodM96lApiGnlUSye7ajF8LIHsiX+P8YnCIq398ta/YUgOJzrB8wsY9sst7UE06GFYqcYBFFzaQzSIgxBsisGOkvj+5iI5o; AWSALBCORS=41TfdFr+TK2ZaXcQIsPmh8kjZ6ZxlkodM96lApiGnlUSye7ajF8LIHsiX+P8YnCIq398ta/YUgOJzrB8wsY9sst7UE06GFYqcYBFFzaQzSIgxBsisGOkvj+5iI5o |
Source: global traffic | HTTP traffic detected: GET /0093b71e39a6/478ed03bbf12/challenge.js HTTP/1.1Host: 0093b71e39a6.11de9b12.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com |
Source: global traffic | HTTP traffic detected: GET /bundles/index.563cd3fc21b70465916a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=DsOl/dmM/SgSp7azb3JSc1IXxwZyCy/mxXszm0AdDQKcJX281XAwKbPg53Jkc3qMLkJ7Ajm8aP1pwA0NC7DxcGD5zBs799pKYvT+bE71Wjfw8W6KhyvXKKye3gVk4bPN5lFaJvzy1YGHxU3gmNENXTXNEvQonz9M3Jp04s5ikEcH; AWSALBTGCORS=DsOl/dmM/SgSp7azb3JSc1IXxwZyCy/mxXszm0AdDQKcJX281XAwKbPg53Jkc3qMLkJ7Ajm8aP1pwA0NC7DxcGD5zBs799pKYvT+bE71Wjfw8W6KhyvXKKye3gVk4bPN5lFaJvzy1YGHxU3gmNENXTXNEvQonz9M3Jp04s5ikEcH; AWSALB=ITc3gJgjhcZsX0AMtunpz/Wk8S9vi0b4iD73QNIbjnGC+tEMJWzt96VR23rqruEAdqmChRUtKFhp1bgsckbT3vVL2y8FIJZYi+aBZKaNS7a3/OnL9cpjTeWqrg3H; AWSALBCORS=ITc3gJgjhcZsX0AMtunpz/Wk8S9vi0b4iD73QNIbjnGC+tEMJWzt96VR23rqruEAdqmChRUtKFhp1bgsckbT3vVL2y8FIJZYi+aBZKaNS7a3/OnL9cpjTeWqrg3H |
Source: global traffic | HTTP traffic detected: GET /bundles/7ba6967109e88a8ecd8d.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/public/share/web-034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=DsOl/dmM/SgSp7azb3JSc1IXxwZyCy/mxXszm0AdDQKcJX281XAwKbPg53Jkc3qMLkJ7Ajm8aP1pwA0NC7DxcGD5zBs799pKYvT+bE71Wjfw8W6KhyvXKKye3gVk4bPN5lFaJvzy1YGHxU3gmNENXTXNEvQonz9M3Jp04s5ikEcH; AWSALBTGCORS=DsOl/dmM/SgSp7azb3JSc1IXxwZyCy/mxXszm0AdDQKcJX281XAwKbPg53Jkc3qMLkJ7Ajm8aP1pwA0NC7DxcGD5zBs799pKYvT+bE71Wjfw8W6KhyvXKKye3gVk4bPN5lFaJvzy1YGHxU3gmNENXTXNEvQonz9M3Jp04s5ikEcH; AWSALB=ITc3gJgjhcZsX0AMtunpz/Wk8S9vi0b4iD73QNIbjnGC+tEMJWzt96VR23rqruEAdqmChRUtKFhp1bgsckbT3vVL2y8FIJZYi+aBZKaNS7a3/OnL9cpjTeWqrg3H; AWSALBCORS=ITc3gJgjhcZsX0AMtunpz/Wk8S9vi0b4iD73QNIbjnGC+tEMJWzt96VR23rqruEAdqmChRUtKFhp1bgsckbT3vVL2y8FIJZYi+aBZKaNS7a3/OnL9cpjTeWqrg3H |
Source: global traffic | HTTP traffic detected: GET /bundles/92fe442fb8f2d1f7093b.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/public/share/web-034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=DsOl/dmM/SgSp7azb3JSc1IXxwZyCy/mxXszm0AdDQKcJX281XAwKbPg53Jkc3qMLkJ7Ajm8aP1pwA0NC7DxcGD5zBs799pKYvT+bE71Wjfw8W6KhyvXKKye3gVk4bPN5lFaJvzy1YGHxU3gmNENXTXNEvQonz9M3Jp04s5ikEcH; AWSALBTGCORS=DsOl/dmM/SgSp7azb3JSc1IXxwZyCy/mxXszm0AdDQKcJX281XAwKbPg53Jkc3qMLkJ7Ajm8aP1pwA0NC7DxcGD5zBs799pKYvT+bE71Wjfw8W6KhyvXKKye3gVk4bPN5lFaJvzy1YGHxU3gmNENXTXNEvQonz9M3Jp04s5ikEcH; AWSALB=ITc3gJgjhcZsX0AMtunpz/Wk8S9vi0b4iD73QNIbjnGC+tEMJWzt96VR23rqruEAdqmChRUtKFhp1bgsckbT3vVL2y8FIJZYi+aBZKaNS7a3/OnL9cpjTeWqrg3H; AWSALBCORS=ITc3gJgjhcZsX0AMtunpz/Wk8S9vi0b4iD73QNIbjnGC+tEMJWzt96VR23rqruEAdqmChRUtKFhp1bgsckbT3vVL2y8FIJZYi+aBZKaNS7a3/OnL9cpjTeWqrg3H |
Source: global traffic | HTTP traffic detected: GET /agent/static/74b07336-7560-45fc-7cd1-95032a784d52/pendo.js HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Accounts/Branding HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /bundles/af15e31c70fab7cfd55c.woff2 HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://totalcanterbury0.sharefile.com/public/share/web-034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=pdjPtWb0fqK0oYtphHI0aY9HOtEOUV3ncZcoKm/kMZ3OwdciIQtVRZMGyZqNHZdkvMdqYB8Ne8nLd897OcrF6Uigv7iuB/C6fBGyE8C51dqSSWuyxXVhHi0JJ1rztEE9RFo3hAhXMe5q/vJzBoMyAfDjIpn3Csm/lJIuzUBGVwDx; AWSALBTGCORS=pdjPtWb0fqK0oYtphHI0aY9HOtEOUV3ncZcoKm/kMZ3OwdciIQtVRZMGyZqNHZdkvMdqYB8Ne8nLd897OcrF6Uigv7iuB/C6fBGyE8C51dqSSWuyxXVhHi0JJ1rztEE9RFo3hAhXMe5q/vJzBoMyAfDjIpn3Csm/lJIuzUBGVwDx; AWSALB=c3e5bq1rxa2++iLYoFTvejwaYfW0jr2/SkwUo8wsLYAMJ97C/LPWKkayg3hUcKiV5LeSg8OorZs8CZ+SNHeTds3OmvuSMw8eA/aoM2g4u8tIlzIhjC2YYcxkpe+O; AWSALBCORS=c3e5bq1rxa2++iLYoFTvejwaYfW0jr2/SkwUo8wsLYAMJ97C/LPWKkayg3hUcKiV5LeSg8OorZs8CZ+SNHeTds3OmvuSMw8eA/aoM2g4u8tIlzIhjC2YYcxkpe+O |
Source: global traffic | HTTP traffic detected: GET /bundles/7ba6967109e88a8ecd8d.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=pdjPtWb0fqK0oYtphHI0aY9HOtEOUV3ncZcoKm/kMZ3OwdciIQtVRZMGyZqNHZdkvMdqYB8Ne8nLd897OcrF6Uigv7iuB/C6fBGyE8C51dqSSWuyxXVhHi0JJ1rztEE9RFo3hAhXMe5q/vJzBoMyAfDjIpn3Csm/lJIuzUBGVwDx; AWSALBTGCORS=pdjPtWb0fqK0oYtphHI0aY9HOtEOUV3ncZcoKm/kMZ3OwdciIQtVRZMGyZqNHZdkvMdqYB8Ne8nLd897OcrF6Uigv7iuB/C6fBGyE8C51dqSSWuyxXVhHi0JJ1rztEE9RFo3hAhXMe5q/vJzBoMyAfDjIpn3Csm/lJIuzUBGVwDx; AWSALB=c3e5bq1rxa2++iLYoFTvejwaYfW0jr2/SkwUo8wsLYAMJ97C/LPWKkayg3hUcKiV5LeSg8OorZs8CZ+SNHeTds3OmvuSMw8eA/aoM2g4u8tIlzIhjC2YYcxkpe+O; AWSALBCORS=c3e5bq1rxa2++iLYoFTvejwaYfW0jr2/SkwUo8wsLYAMJ97C/LPWKkayg3hUcKiV5LeSg8OorZs8CZ+SNHeTds3OmvuSMw8eA/aoM2g4u8tIlzIhjC2YYcxkpe+O |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-conversations-pilet/1.94.6/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-audit-collector-pilet/0.11.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-workflows-pilet/0.119.14/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-esign-pilet/1.218.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-user-actions-pilet/1.15.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-task-mgt-pilet/1.7.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /api/4506735163932672/envelope/?sentry_key=0be0069dd70d0ce2c63c650418f56fa6&sentry_version=7&sentry_client=sentry.javascript.react%2F7.100.1 HTTP/1.1Host: o49063.ingest.sentry.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /agent/static/74b07336-7560-45fc-7cd1-95032a784d52/pendo.js HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Accounts/Branding HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTGCORS=y3mFLykAQyD3C3PQ6WWnmMS4ECeIzsdOjjRLYcY+XacKIzBjnMSKhC4UEWpWumbwN2mY7KyNfKxnsnPm1ysF3o3xl8EOUkNXUBM/ZCSTbRK5zhf7WrS3wZ8n3Kcfx8k0qYnJnmbrKvWVUf1llzwsG1zwrCWEYa3vfCFeANqbd74S; AWSALBCORS=d807JVFt9An8+dxzpJiQx2DOFRrO6t7qkXxA64ty4Yf1xGqsBabgHmOW4ax8fToXqDHZ/SBj0E+j32eeRILGlpRCR8iX2l+TAFS9PAm5pcx0e76MkDZjuPvWYTPH |
Source: global traffic | HTTP traffic detected: GET /bundles/92fe442fb8f2d1f7093b.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=VWtzZV2r86Up9mrf6SjeLQneEwQHBFDMY3ewWzlwoZyl6G131dXrx8yMddNtX+EpEdyWnFIMOYfWsPI7D174vWvj67gN0zvB+/yFUtCCjjDiaB04xYjm8juJ4T8RArLZleIcaWg6bS28Ap3nch47FXGd3YwLCORyfOlMB01DJ9CK; AWSALBTGCORS=VWtzZV2r86Up9mrf6SjeLQneEwQHBFDMY3ewWzlwoZyl6G131dXrx8yMddNtX+EpEdyWnFIMOYfWsPI7D174vWvj67gN0zvB+/yFUtCCjjDiaB04xYjm8juJ4T8RArLZleIcaWg6bS28Ap3nch47FXGd3YwLCORyfOlMB01DJ9CK; AWSALB=HpAIPXrmmIyJF0NaqDNZ6aEBiWLRnmtcB8xO4Huy8IkPY1qyobbxjcwX8ZOxBqBtY+VZjq1FlscpDxtdrm3UzMkrsw6qTvuezX0ijKoLOnTJ25x0XtYTBGO99oCx; AWSALBCORS=HpAIPXrmmIyJF0NaqDNZ6aEBiWLRnmtcB8xO4Huy8IkPY1qyobbxjcwX8ZOxBqBtY+VZjq1FlscpDxtdrm3UzMkrsw6qTvuezX0ijKoLOnTJ25x0XtYTBGO99oCx; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAqZEabPwUAAAA:ZSRVPJrcZOizJIqkhcDhKwQXl8IKzlc2rPkClyD+O64dkHPseD2P+Gv/qKyc1CeJebbrHwN5OMZPbR4TVrj99k3S7izSM5tCbUazp0BhWSeomiEOziSMlVFZPGprnRr5IaDW7s2QOqGrcB4oP2NT9WlqTfSux7yG0hPUD4V4CLTXLk9BrOBngKXkC1cmRpdmCX2mrPYcfERMJE2Nz1AWf9A= |
Source: global traffic | HTTP traffic detected: GET /0093b71e39a6/478ed03bbf12/verify HTTP/1.1Host: 0093b71e39a6.11de9b12.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-remediation-pilet/1.3.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-templates-pilet/0.108.2/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-threatalert-mgt-pilet/1.14.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-dc-pilet/1.392.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-conversations-pilet/1.94.6/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-task-mgt-pilet/1.7.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-audit-collector-pilet/0.11.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-esign-pilet/1.218.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-task-mgt-pilet/1.7.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-conversations-pilet/1.94.6/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-doc-gen-pilet/1.2.88/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-entitlements-pilet/0.1.54/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-notification-center/0.58.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-publisher-pilet/0.17.11/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-resourcegen-pilet/0.1.36/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-integrations-pilet/0.0.175/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-dc-pilet/1.392.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /0093b71e39a6/478ed03bbf12/telemetry HTTP/1.1Host: 0093b71e39a6.11de9b12.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-user-actions-pilet/1.15.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-audit-collector-pilet/0.11.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-templates-pilet/0.108.2/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-esign-pilet/1.218.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=vhByzrF1ExPNbY7&MD=wgvYytUz HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-package-pilet/0.37.12/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-client-pilet/0.8.16/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-user-act-hist-pilet/1.7.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-workflows-pilet/0.119.14/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-rubicon-pilet/0.33.3/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-remediation-pilet/1.3.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-entitlements-pilet/0.1.54/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-notification-center/0.58.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-publisher-pilet/0.17.11/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-integrations-pilet/0.0.175/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-resourcegen-pilet/0.1.36/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-dc-pilet/1.392.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-templates-pilet/0.108.2/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-threatalert-mgt-pilet/1.14.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-entitlements-pilet/0.1.54/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /0093b71e39a6/478ed03bbf12/telemetry HTTP/1.1Host: 0093b71e39a6.11de9b12.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-doc-gen-pilet/1.2.88/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-notification-center/0.58.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-user-act-hist-pilet/1.7.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-package-pilet/0.37.12/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-publisher-pilet/0.17.11/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-client-pilet/0.8.16/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-integrations-pilet/0.0.175/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-rubicon-pilet/0.33.3/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-resourcegen-pilet/0.1.36/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-doc-gen-pilet/1.2.88/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-user-act-hist-pilet/1.7.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-package-pilet/0.37.12/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-client-pilet/0.8.16/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-billing-pilet/0.1.121/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-fileviewer-pilet/1.29.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-request-list-pilet/1.9.18/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-dynamic-forms-pilet/1.25.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-tenant-mgt-pilet/1.2.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-rubicon-pilet/0.33.3/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-projects-pilet/2.0.29/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-billing-pilet/0.1.121/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-billing-pilet/0.1.121/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-dynamic-forms-pilet/1.25.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-dynamic-forms-pilet/1.25.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-request-list-pilet/1.9.18/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-tenant-mgt-pilet/1.2.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-request-list-pilet/1.9.18/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-tenant-mgt-pilet/1.2.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-projects-pilet/2.0.29/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-projects-pilet/2.0.29/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /0093b71e39a6/478ed03bbf12/telemetry HTTP/1.1Host: 0093b71e39a6.11de9b12.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-fileviewer-pilet/1.29.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-fileviewer-pilet/1.29.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-storage-plugin-pilet/1.280.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /0093b71e39a6/478ed03bbf12/telemetry HTTP/1.1Host: 0093b71e39a6.11de9b12.us-east-1.token.awswaf.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-permissions-pilet/1.118.31/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-view-engine-pilet/1.8.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-client-dashboard/0.164.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-task-aggregator-pilet/1.0.7/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-threatalert-mgt-pilet/1.14.0/package/dist/citrite-citrix-ui.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-storage-plugin-pilet/1.280.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-storage-plugin-pilet/1.280.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-permissions-pilet/1.118.31/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-permissions-pilet/1.118.31/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-task-aggregator-pilet/1.0.7/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-task-aggregator-pilet/1.0.7/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-view-engine-pilet/1.8.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-view-engine-pilet/1.8.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-client-dashboard/0.164.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-client-dashboard/0.164.0/package/dist/index.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-user-actions-pilet/1.15.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-remediation-pilet/1.3.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-threatalert-mgt-pilet/1.14.0/package/dist/main.css HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-threatalert-mgt-pilet/1.14.0/package/dist/citrite-citrix-ui.js HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /bundles/50838dcfa76323d03647.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=pGnr4jWxxiKxZLrIDGi9ARrJHsmUxgm04+yAt4rCc4DqOZ48DWgj063cL5FFi2tEVwk3bOPmAlG26i97+mkg32Mv7jzFu1YFDhePkUyT58A/d2VOU+P2L+BwPL9mRuR+A+nbRSQUh19s+QomADRXKepP0Zg+Aoud/kK1QvvvAyck; AWSALBTGCORS=pGnr4jWxxiKxZLrIDGi9ARrJHsmUxgm04+yAt4rCc4DqOZ48DWgj063cL5FFi2tEVwk3bOPmAlG26i97+mkg32Mv7jzFu1YFDhePkUyT58A/d2VOU+P2L+BwPL9mRuR+A+nbRSQUh19s+QomADRXKepP0Zg+Aoud/kK1QvvvAyck; AWSALB=9oa51b8by9tL7/56PRaEY0p7kv4+yMgR07usimBh2+G8odyOhzECCpdf50vGVHaZfeSnl1IsrJ73KOj7dSSQXLnAOHSE65dsoIdCPTkveFbC4Drs+pwWATlzMXEJ; AWSALBCORS=9oa51b8by9tL7/56PRaEY0p7kv4+yMgR07usimBh2+G8odyOhzECCpdf50vGVHaZfeSnl1IsrJ73KOj7dSSQXLnAOHSE65dsoIdCPTkveFbC4Drs+pwWATlzMXEJ; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg== |
Source: global traffic | HTTP traffic detected: GET /bundles/c3b78c86faf44765071f.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=pGnr4jWxxiKxZLrIDGi9ARrJHsmUxgm04+yAt4rCc4DqOZ48DWgj063cL5FFi2tEVwk3bOPmAlG26i97+mkg32Mv7jzFu1YFDhePkUyT58A/d2VOU+P2L+BwPL9mRuR+A+nbRSQUh19s+QomADRXKepP0Zg+Aoud/kK1QvvvAyck; AWSALBTGCORS=pGnr4jWxxiKxZLrIDGi9ARrJHsmUxgm04+yAt4rCc4DqOZ48DWgj063cL5FFi2tEVwk3bOPmAlG26i97+mkg32Mv7jzFu1YFDhePkUyT58A/d2VOU+P2L+BwPL9mRuR+A+nbRSQUh19s+QomADRXKepP0Zg+Aoud/kK1QvvvAyck; AWSALB=9oa51b8by9tL7/56PRaEY0p7kv4+yMgR07usimBh2+G8odyOhzECCpdf50vGVHaZfeSnl1IsrJ73KOj7dSSQXLnAOHSE65dsoIdCPTkveFbC4Drs+pwWATlzMXEJ; AWSALBCORS=9oa51b8by9tL7/56PRaEY0p7kv4+yMgR07usimBh2+G8odyOhzECCpdf50vGVHaZfeSnl1IsrJ73KOj7dSSQXLnAOHSE65dsoIdCPTkveFbC4Drs+pwWATlzMXEJ; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg== |
Source: global traffic | HTTP traffic detected: GET /bundles/2df17ec2f6eaff4d4417.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; AWSALBTG=pGnr4jWxxiKxZLrIDGi9ARrJHsmUxgm04+yAt4rCc4DqOZ48DWgj063cL5FFi2tEVwk3bOPmAlG26i97+mkg32Mv7jzFu1YFDhePkUyT58A/d2VOU+P2L+BwPL9mRuR+A+nbRSQUh19s+QomADRXKepP0Zg+Aoud/kK1QvvvAyck; AWSALBTGCORS=pGnr4jWxxiKxZLrIDGi9ARrJHsmUxgm04+yAt4rCc4DqOZ48DWgj063cL5FFi2tEVwk3bOPmAlG26i97+mkg32Mv7jzFu1YFDhePkUyT58A/d2VOU+P2L+BwPL9mRuR+A+nbRSQUh19s+QomADRXKepP0Zg+Aoud/kK1QvvvAyck; AWSALB=9oa51b8by9tL7/56PRaEY0p7kv4+yMgR07usimBh2+G8odyOhzECCpdf50vGVHaZfeSnl1IsrJ73KOj7dSSQXLnAOHSE65dsoIdCPTkveFbC4Drs+pwWATlzMXEJ; AWSALBCORS=9oa51b8by9tL7/56PRaEY0p7kv4+yMgR07usimBh2+G8odyOhzECCpdf50vGVHaZfeSnl1IsrJ73KOj7dSSQXLnAOHSE65dsoIdCPTkveFbC4Drs+pwWATlzMXEJ; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg== |
Source: global traffic | HTTP traffic detected: GET /bundles/c3b78c86faf44765071f.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=VuUkHR2wfPrDCyhJWxxPlSkhokx6BDJm1zibuyNLZzTP6/I+ZR83jhWaiDITgg8kv1yGj4UBJ06FImKRrcD0LConDo+h5x9Iw7Z9D3fCcWh9YJpj8Gvky0zGbAOIFXGSuw5NNHz471TR0iFMbrvG4y6tof87ykz3mBMFhvx01AEY; AWSALBTGCORS=VuUkHR2wfPrDCyhJWxxPlSkhokx6BDJm1zibuyNLZzTP6/I+ZR83jhWaiDITgg8kv1yGj4UBJ06FImKRrcD0LConDo+h5x9Iw7Z9D3fCcWh9YJpj8Gvky0zGbAOIFXGSuw5NNHz471TR0iFMbrvG4y6tof87ykz3mBMFhvx01AEY; AWSALB=B8P9JUnCgUWM8sc46is6T7q+K7MpHUpn6Ygx44HRZAzI+d4qkTKrD7q/jbw+NWWwd4tsLnSK0l03BpJur6I1M4SaZYQqC/IQHgst6dGnZYFxY5iJZBC0qkasfT3a; AWSALBCORS=B8P9JUnCgUWM8sc46is6T7q+K7MpHUpn6Ygx44HRZAzI+d4qkTKrD7q/jbw+NWWwd4tsLnSK0l03BpJur6I1M4SaZYQqC/IQHgst6dGnZYFxY5iJZBC0qkasfT3a |
Source: global traffic | HTTP traffic detected: GET /bundles/50838dcfa76323d03647.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=VuUkHR2wfPrDCyhJWxxPlSkhokx6BDJm1zibuyNLZzTP6/I+ZR83jhWaiDITgg8kv1yGj4UBJ06FImKRrcD0LConDo+h5x9Iw7Z9D3fCcWh9YJpj8Gvky0zGbAOIFXGSuw5NNHz471TR0iFMbrvG4y6tof87ykz3mBMFhvx01AEY; AWSALBTGCORS=VuUkHR2wfPrDCyhJWxxPlSkhokx6BDJm1zibuyNLZzTP6/I+ZR83jhWaiDITgg8kv1yGj4UBJ06FImKRrcD0LConDo+h5x9Iw7Z9D3fCcWh9YJpj8Gvky0zGbAOIFXGSuw5NNHz471TR0iFMbrvG4y6tof87ykz3mBMFhvx01AEY; AWSALB=B8P9JUnCgUWM8sc46is6T7q+K7MpHUpn6Ygx44HRZAzI+d4qkTKrD7q/jbw+NWWwd4tsLnSK0l03BpJur6I1M4SaZYQqC/IQHgst6dGnZYFxY5iJZBC0qkasfT3a; AWSALBCORS=B8P9JUnCgUWM8sc46is6T7q+K7MpHUpn6Ygx44HRZAzI+d4qkTKrD7q/jbw+NWWwd4tsLnSK0l03BpJur6I1M4SaZYQqC/IQHgst6dGnZYFxY5iJZBC0qkasfT3a |
Source: global traffic | HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=CQPy4BxELCAkQ68DNmMTyHSWTx5PYs5epaviem6ZXNHnqS9zRJNulto6VOpn9uHQYcXp0XEAaEJrEUNYdDY62eGuNd0ITIg6rYXRMl+y27mgPx/RGwsc6/JW4w0sKL77tbyidpD3q4YsCLwk+ycX0dVtFi+eJ8IfXd/PlOKNgIZw; AWSALBTGCORS=CQPy4BxELCAkQ68DNmMTyHSWTx5PYs5epaviem6ZXNHnqS9zRJNulto6VOpn9uHQYcXp0XEAaEJrEUNYdDY62eGuNd0ITIg6rYXRMl+y27mgPx/RGwsc6/JW4w0sKL77tbyidpD3q4YsCLwk+ycX0dVtFi+eJ8IfXd/PlOKNgIZw; AWSALB=FWlUCwGFT7pNgGRyGgKR2uOQYYo5jS6MX2/nKqb0TZwMVJ1M2T//+JroTEv011PBtzJAXKvbYZ+d06bCcKJSY6pfK8yEXhF7pRdwWQ0fRwUgzsemNI6jnXw+rIu0; AWSALBCORS=FWlUCwGFT7pNgGRyGgKR2uOQYYo5jS6MX2/nKqb0TZwMVJ1M2T//+JroTEv011PBtzJAXKvbYZ+d06bCcKJSY6pfK8yEXhF7pRdwWQ0fRwUgzsemNI6jnXw+rIu0 |
Source: global traffic | HTTP traffic detected: GET /bundles/2df17ec2f6eaff4d4417.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=CQPy4BxELCAkQ68DNmMTyHSWTx5PYs5epaviem6ZXNHnqS9zRJNulto6VOpn9uHQYcXp0XEAaEJrEUNYdDY62eGuNd0ITIg6rYXRMl+y27mgPx/RGwsc6/JW4w0sKL77tbyidpD3q4YsCLwk+ycX0dVtFi+eJ8IfXd/PlOKNgIZw; AWSALBTGCORS=CQPy4BxELCAkQ68DNmMTyHSWTx5PYs5epaviem6ZXNHnqS9zRJNulto6VOpn9uHQYcXp0XEAaEJrEUNYdDY62eGuNd0ITIg6rYXRMl+y27mgPx/RGwsc6/JW4w0sKL77tbyidpD3q4YsCLwk+ycX0dVtFi+eJ8IfXd/PlOKNgIZw; AWSALB=FWlUCwGFT7pNgGRyGgKR2uOQYYo5jS6MX2/nKqb0TZwMVJ1M2T//+JroTEv011PBtzJAXKvbYZ+d06bCcKJSY6pfK8yEXhF7pRdwWQ0fRwUgzsemNI6jnXw+rIu0; AWSALBCORS=FWlUCwGFT7pNgGRyGgKR2uOQYYo5jS6MX2/nKqb0TZwMVJ1M2T//+JroTEv011PBtzJAXKvbYZ+d06bCcKJSY6pfK8yEXhF7pRdwWQ0fRwUgzsemNI6jnXw+rIu0 |
Source: global traffic | HTTP traffic detected: GET /manifest.json HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /nr-spa-1216.min.js HTTP/1.1Host: js-agent.newrelic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=bc4Qmi4y/J4laU0Lu5t5v14nFYP0a4S2FIELR6CItdqIyaW7X6aZ0GI8HrjQD5YIB7U6HNJ+54PIR4qDMiDGQFHy5Zi/9mtPr9le6HwcbFi1emcK9XllTSsWbCH5f6JaByhMHza+mP/kmOC1qxqg2S4h6DGM4nHZwC+Vf+9K1qxk; AWSALBTGCORS=bc4Qmi4y/J4laU0Lu5t5v14nFYP0a4S2FIELR6CItdqIyaW7X6aZ0GI8HrjQD5YIB7U6HNJ+54PIR4qDMiDGQFHy5Zi/9mtPr9le6HwcbFi1emcK9XllTSsWbCH5f6JaByhMHza+mP/kmOC1qxqg2S4h6DGM4nHZwC+Vf+9K1qxk; AWSALB=e2yUD+HARuBx5SyTmNE2Npk/Jq4Aa13j2TWKxwYpYrSPQJlcbhSgnsgaNNKjAKMAuEMLiw5Ef2Q8wCAN5BsUE5D4B/WL/OKDbJDSu05ISYjKrX20peRBi6CCC2WX; AWSALBCORS=e2yUD+HARuBx5SyTmNE2Npk/Jq4Aa13j2TWKxwYpYrSPQJlcbhSgnsgaNNKjAKMAuEMLiw5Ef2Q8wCAN5BsUE5D4B/WL/OKDbJDSu05ISYjKrX20peRBi6CCC2WX |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Accounts/Branding HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveCorrelationId: CHm_ZIiEBDXTEJ3pvz0RwAsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Language: ensec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-SF-ClientCapabilities: HardLock,HardQuota,AthenaSSOAccept: application/json, text/plain, */*X-SF-App: ShareFileWebsec-ch-ua-platform: "Windows"Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brCookie: AWSALBTGCORS=orcK3ZOBiSZ74t+hikuMlxbxJhZT0NPvPPUvRnyW11tDqXORUDl7nzTgA5S9dBomPuE2jTGhMppdPZQ5sAjUrqpz/UdalZMdoVoDvTS7shlxqUZFOHKA2l+5MA3W6fanLMmt28ElhEiGyK3m017qxz1OHfIcihq4efw16HDRWN2W; AWSALBCORS=Sn7Ns0dBdHVUSa16v9WXnqjM+SgPQudF5hAgoiuck8BTXz8pq4Jy0q3isuRE/5cv2aj6tK3IM2RV469UW7tsiUZ4Lv3JjQCSeFtFJpNZ3VdF+l5EqxlDDpFJnlVF |
Source: global traffic | HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=hPDRP3NPIwgVdL+kmaPN6saTqGF3xqUZRTo90HniLqyN/GGDmr5VNJY3a/djAysF/tAn6whF6MLpP89hsMNQNXGo0LprIwFSD97ff333q0zVhlNqTeBodUFjF1GU0BoxNgDB+zgMphh2f9wKpFeO/4THiBsHoRTF5BRo/q/vebxq; AWSALBTGCORS=hPDRP3NPIwgVdL+kmaPN6saTqGF3xqUZRTo90HniLqyN/GGDmr5VNJY3a/djAysF/tAn6whF6MLpP89hsMNQNXGo0LprIwFSD97ff333q0zVhlNqTeBodUFjF1GU0BoxNgDB+zgMphh2f9wKpFeO/4THiBsHoRTF5BRo/q/vebxq; AWSALB=+rk5tuNQNblm8+gPvD1woO1VPFCAwkvZBN9e5qgq3Bt3rLfunl3RmtDSARWW1G3BW6E+cvZ09o1KScAK1xpGgfkz8ehqAoe7rc19TMtFv6Rqzj50HkUA/NzfWw9k; AWSALBCORS=+rk5tuNQNblm8+gPvD1woO1VPFCAwkvZBN9e5qgq3Bt3rLfunl3RmtDSARWW1G3BW6E+cvZ09o1KScAK1xpGgfkz8ehqAoe7rc19TMtFv6Rqzj50HkUA/NzfWw9k |
Source: global traffic | HTTP traffic detected: GET /nr-spa-1216.min.js HTTP/1.1Host: js-agent.newrelic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /1/fd14b65b5e?a=594432325&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=27893&ck=1&ref=https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74&be=1536&fe=26689&dc=6629&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1728877690576,%22n%22:0,%22f%22:4,%22dn%22:38,%22dne%22:44,%22c%22:44,%22s%22:45,%22ce%22:1007,%22rq%22:1008,%22rp%22:1444,%22rpe%22:1620,%22dl%22:1452,%22di%22:6504,%22ds%22:6628,%22de%22:6629,%22dc%22:26687,%22l%22:26687,%22le%22:26699%7D,%22navigation%22:%7B%7D%7D&fp=2168&fcp=2575&jsonp=NREUM.setToken HTTP/1.1Host: bam.nr-data.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /bundles/3aa33bb6fffd83a61c47.svg HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=xMZAPUNKkE4bmAUIsQKABI7lap2miobPGzJ89umv458l+HLAU7akOUYDSoPmn4lwd6MR0tfq2aqCNWMkZrHjsbVIvQiO1e+jg98YB6wqpeBEdQ7XzrrViIdyYdgKGle+WoAr2aSRwprMLeoZKLP/FffAzDZ0qAU+rnhVkYxDMHuy; AWSALBTGCORS=xMZAPUNKkE4bmAUIsQKABI7lap2miobPGzJ89umv458l+HLAU7akOUYDSoPmn4lwd6MR0tfq2aqCNWMkZrHjsbVIvQiO1e+jg98YB6wqpeBEdQ7XzrrViIdyYdgKGle+WoAr2aSRwprMLeoZKLP/FffAzDZ0qAU+rnhVkYxDMHuy; AWSALB=PVpr/K3DAdwiiasSj31EC9hJx1jXO0rdD82TnuLlu21UyFCSMDuM+8b83kp8qpPDsUrCs/cms7f9HChJwzdwaW8o2FNOZykywfOgq4xbdZMkwX7Rbj1Q4uijRSfQ; AWSALBCORS=PVpr/K3DAdwiiasSj31EC9hJx1jXO0rdD82TnuLlu21UyFCSMDuM+8b83kp8qpPDsUrCs/cms7f9HChJwzdwaW8o2FNOZykywfOgq4xbdZMkwX7Rbj1Q4uijRSfQ |
Source: global traffic | HTTP traffic detected: GET /data/guide.json/74b07336-7560-45fc-7cd1-95032a784d52?id=12&jzb=eJyNj09r6zAQxL_LnhNL_hcnvhVSQiG0hb70UorZWGtHIEtGllNMyXfPOoeUXh69rVazM_P7hrMedHD-SUEJ1evj8_al-lftd4k57Nvd1E6wAKxrN9pwk2CDapVk8TJFVS_zo8qXeZbyVOS4WTebIttIPhm9YfEphH4ohQguoKnRBvLH0U8yGk7oqdGGotp14vYSZ01fQqYZKlyvqFAyU0XGVs6o95-OdjRmAR0FlgWE8g4wj_o_EAZtO2JLrCBbHd7gcgebT7Hvt65Dbfn_Vzs-vdn-EbwhDKOnAcoPcOkq5xXZ2k99IEXsb-CTg3sOsOHhHs8rxpm7xamIpUhkMqOfyQ_azZWSKMllFFe9dwoulytG34tQ&v=2.250.1_prod&ct=1728877719178 HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /data/guide.gif/74b07336-7560-45fc-7cd1-95032a784d52?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1728877719179&v=2.250.1_prod HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Accounts/Branding HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=orcK3ZOBiSZ74t+hikuMlxbxJhZT0NPvPPUvRnyW11tDqXORUDl7nzTgA5S9dBomPuE2jTGhMppdPZQ5sAjUrqpz/UdalZMdoVoDvTS7shlxqUZFOHKA2l+5MA3W6fanLMmt28ElhEiGyK3m017qxz1OHfIcihq4efw16HDRWN2W; AWSALB=Sn7Ns0dBdHVUSa16v9WXnqjM+SgPQudF5hAgoiuck8BTXz8pq4Jy0q3isuRE/5cv2aj6tK3IM2RV469UW7tsiUZ4Lv3JjQCSeFtFJpNZ3VdF+l5EqxlDDpFJnlVF; AWSALBTGCORS=XPqYdQgAnEP+bRsfGVSfp6wB+V+VNDUj0XBSrZx5XcvmqtVdxBg0dJ3uNfwWy2Jlv/cnlMYWXQAEILBBfXc5z/zyEoGuQq76yYsyM012Kx7nxKwIv7QsNnTIjIBO6IL7C7Df6odW2HcOhk8b1y9rjfIOg6PaWadmgExWeREthN5O; AWSALBCORS=gpnWU12z77cssPEdjRhwSlX3fGeycStZlYmdJan2san4NOh9Zou7O4Axq/oKdr6UeVqe+xnoQrIb34rMXno+cMUMDUHiRqedfqP3iDUtsQp5/VrJ6XY3lM2xPsMO |
Source: global traffic | HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=xMZAPUNKkE4bmAUIsQKABI7lap2miobPGzJ89umv458l+HLAU7akOUYDSoPmn4lwd6MR0tfq2aqCNWMkZrHjsbVIvQiO1e+jg98YB6wqpeBEdQ7XzrrViIdyYdgKGle+WoAr2aSRwprMLeoZKLP/FffAzDZ0qAU+rnhVkYxDMHuy; AWSALBTGCORS=xMZAPUNKkE4bmAUIsQKABI7lap2miobPGzJ89umv458l+HLAU7akOUYDSoPmn4lwd6MR0tfq2aqCNWMkZrHjsbVIvQiO1e+jg98YB6wqpeBEdQ7XzrrViIdyYdgKGle+WoAr2aSRwprMLeoZKLP/FffAzDZ0qAU+rnhVkYxDMHuy; AWSALB=PVpr/K3DAdwiiasSj31EC9hJx1jXO0rdD82TnuLlu21UyFCSMDuM+8b83kp8qpPDsUrCs/cms7f9HChJwzdwaW8o2FNOZykywfOgq4xbdZMkwX7Rbj1Q4uijRSfQ; AWSALBCORS=PVpr/K3DAdwiiasSj31EC9hJx1jXO0rdD82TnuLlu21UyFCSMDuM+8b83kp8qpPDsUrCs/cms7f9HChJwzdwaW8o2FNOZykywfOgq4xbdZMkwX7Rbj1Q4uijRSfQ |
Source: global traffic | HTTP traffic detected: GET /bundles/b79627b64df3ab63890d.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=49ZA+lo7tNzSoGg/xiac8Z4SNF9vXvkG3bHWj2x4oTyqB4ccxXXhnog+DdkF4w/QKsAoqgayaUtimwhdgPK41SS355QAco68PiorV9qw8Q9zux0Wr5A5ZfYRUXpM3oO8/Ttg3zEnhUQTy1uRwhfLt1W2JhbEnc/3z/36W5K4Dcmu; AWSALBTGCORS=49ZA+lo7tNzSoGg/xiac8Z4SNF9vXvkG3bHWj2x4oTyqB4ccxXXhnog+DdkF4w/QKsAoqgayaUtimwhdgPK41SS355QAco68PiorV9qw8Q9zux0Wr5A5ZfYRUXpM3oO8/Ttg3zEnhUQTy1uRwhfLt1W2JhbEnc/3z/36W5K4Dcmu; AWSALB=z9PYNX+BlYM44+lCtTLwvB36qsR4NUkEEUVY78bYamO1MWQjfQbN3UDl4kl85Iy1LNpu3W1PnLc7stGje/lUQnt8WBBhmBQdPptDTzVa6NV8eX/VCuuN6Hz4QUwC; AWSALBCORS=z9PYNX+BlYM44+lCtTLwvB36qsR4NUkEEUVY78bYamO1MWQjfQbN3UDl4kl85Iy1LNpu3W1PnLc7stGje/lUQnt8WBBhmBQdPptDTzVa6NV8eX/VCuuN6Hz4QUwC |
Source: global traffic | HTTP traffic detected: GET /bundles/1c992ae0c14e95098d9a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=49ZA+lo7tNzSoGg/xiac8Z4SNF9vXvkG3bHWj2x4oTyqB4ccxXXhnog+DdkF4w/QKsAoqgayaUtimwhdgPK41SS355QAco68PiorV9qw8Q9zux0Wr5A5ZfYRUXpM3oO8/Ttg3zEnhUQTy1uRwhfLt1W2JhbEnc/3z/36W5K4Dcmu; AWSALBTGCORS=49ZA+lo7tNzSoGg/xiac8Z4SNF9vXvkG3bHWj2x4oTyqB4ccxXXhnog+DdkF4w/QKsAoqgayaUtimwhdgPK41SS355QAco68PiorV9qw8Q9zux0Wr5A5ZfYRUXpM3oO8/Ttg3zEnhUQTy1uRwhfLt1W2JhbEnc/3z/36W5K4Dcmu; AWSALB=z9PYNX+BlYM44+lCtTLwvB36qsR4NUkEEUVY78bYamO1MWQjfQbN3UDl4kl85Iy1LNpu3W1PnLc7stGje/lUQnt8WBBhmBQdPptDTzVa6NV8eX/VCuuN6Hz4QUwC; AWSALBCORS=z9PYNX+BlYM44+lCtTLwvB36qsR4NUkEEUVY78bYamO1MWQjfQbN3UDl4kl85Iy1LNpu3W1PnLc7stGje/lUQnt8WBBhmBQdPptDTzVa6NV8eX/VCuuN6Hz4QUwC |
Source: global traffic | HTTP traffic detected: GET /bundles/b69d9728d2dbe0747c8a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=49ZA+lo7tNzSoGg/xiac8Z4SNF9vXvkG3bHWj2x4oTyqB4ccxXXhnog+DdkF4w/QKsAoqgayaUtimwhdgPK41SS355QAco68PiorV9qw8Q9zux0Wr5A5ZfYRUXpM3oO8/Ttg3zEnhUQTy1uRwhfLt1W2JhbEnc/3z/36W5K4Dcmu; AWSALBTGCORS=49ZA+lo7tNzSoGg/xiac8Z4SNF9vXvkG3bHWj2x4oTyqB4ccxXXhnog+DdkF4w/QKsAoqgayaUtimwhdgPK41SS355QAco68PiorV9qw8Q9zux0Wr5A5ZfYRUXpM3oO8/Ttg3zEnhUQTy1uRwhfLt1W2JhbEnc/3z/36W5K4Dcmu; AWSALB=z9PYNX+BlYM44+lCtTLwvB36qsR4NUkEEUVY78bYamO1MWQjfQbN3UDl4kl85Iy1LNpu3W1PnLc7stGje/lUQnt8WBBhmBQdPptDTzVa6NV8eX/VCuuN6Hz4QUwC; AWSALBCORS=z9PYNX+BlYM44+lCtTLwvB36qsR4NUkEEUVY78bYamO1MWQjfQbN3UDl4kl85Iy1LNpu3W1PnLc7stGje/lUQnt8WBBhmBQdPptDTzVa6NV8eX/VCuuN6Hz4QUwC |
Source: global traffic | HTTP traffic detected: GET /bundles/4229061ac836f0f16eea.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=49ZA+lo7tNzSoGg/xiac8Z4SNF9vXvkG3bHWj2x4oTyqB4ccxXXhnog+DdkF4w/QKsAoqgayaUtimwhdgPK41SS355QAco68PiorV9qw8Q9zux0Wr5A5ZfYRUXpM3oO8/Ttg3zEnhUQTy1uRwhfLt1W2JhbEnc/3z/36W5K4Dcmu; AWSALBTGCORS=49ZA+lo7tNzSoGg/xiac8Z4SNF9vXvkG3bHWj2x4oTyqB4ccxXXhnog+DdkF4w/QKsAoqgayaUtimwhdgPK41SS355QAco68PiorV9qw8Q9zux0Wr5A5ZfYRUXpM3oO8/Ttg3zEnhUQTy1uRwhfLt1W2JhbEnc/3z/36W5K4Dcmu; AWSALB=z9PYNX+BlYM44+lCtTLwvB36qsR4NUkEEUVY78bYamO1MWQjfQbN3UDl4kl85Iy1LNpu3W1PnLc7stGje/lUQnt8WBBhmBQdPptDTzVa6NV8eX/VCuuN6Hz4QUwC; AWSALBCORS=z9PYNX+BlYM44+lCtTLwvB36qsR4NUkEEUVY78bYamO1MWQjfQbN3UDl4kl85Iy1LNpu3W1PnLc7stGje/lUQnt8WBBhmBQdPptDTzVa6NV8eX/VCuuN6Hz4QUwC |
Source: global traffic | HTTP traffic detected: GET /bundles/5be3ba1b444ac539eaf5.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=xMZAPUNKkE4bmAUIsQKABI7lap2miobPGzJ89umv458l+HLAU7akOUYDSoPmn4lwd6MR0tfq2aqCNWMkZrHjsbVIvQiO1e+jg98YB6wqpeBEdQ7XzrrViIdyYdgKGle+WoAr2aSRwprMLeoZKLP/FffAzDZ0qAU+rnhVkYxDMHuy; AWSALBTGCORS=xMZAPUNKkE4bmAUIsQKABI7lap2miobPGzJ89umv458l+HLAU7akOUYDSoPmn4lwd6MR0tfq2aqCNWMkZrHjsbVIvQiO1e+jg98YB6wqpeBEdQ7XzrrViIdyYdgKGle+WoAr2aSRwprMLeoZKLP/FffAzDZ0qAU+rnhVkYxDMHuy; AWSALB=PVpr/K3DAdwiiasSj31EC9hJx1jXO0rdD82TnuLlu21UyFCSMDuM+8b83kp8qpPDsUrCs/cms7f9HChJwzdwaW8o2FNOZykywfOgq4xbdZMkwX7Rbj1Q4uijRSfQ; AWSALBCORS=PVpr/K3DAdwiiasSj31EC9hJx1jXO0rdD82TnuLlu21UyFCSMDuM+8b83kp8qpPDsUrCs/cms7f9HChJwzdwaW8o2FNOZykywfOgq4xbdZMkwX7Rbj1Q4uijRSfQ |
Source: global traffic | HTTP traffic detected: GET /1/fd14b65b5e?a=594432325&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=27893&ck=1&ref=https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74&be=1536&fe=26689&dc=6629&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1728877690576,%22n%22:0,%22f%22:4,%22dn%22:38,%22dne%22:44,%22c%22:44,%22s%22:45,%22ce%22:1007,%22rq%22:1008,%22rp%22:1444,%22rpe%22:1620,%22dl%22:1452,%22di%22:6504,%22ds%22:6628,%22de%22:6629,%22dc%22:26687,%22l%22:26687,%22le%22:26699%7D,%22navigation%22:%7B%7D%7D&fp=2168&fcp=2575&jsonp=NREUM.setToken HTTP/1.1Host: bam.nr-data.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=43964618b2e2cdd7 |
Source: global traffic | HTTP traffic detected: GET /data/guide.gif/74b07336-7560-45fc-7cd1-95032a784d52?jzb=eJwFwIEIAAAAwDDQd3-N1QABFQC5&ct=1728877719179&v=2.250.1_prod HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /bundles/3aa33bb6fffd83a61c47.svg HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=gTJCK7oYnnMJjoE/yHX7KjFVR28suN+eCYHrqwL1XQ1ptqKR2FwIEu5SeAXviL1qxozerliipF19IBzpxDn0ZVxrY8rriog7y5SOuOQ2W/0sRxFo1vCUaCbMQnQQj/qV9X8Pa4/9QN6zjSMA2XVpczm0KQmQ/1qF8XGxLRrbScM4; AWSALBTGCORS=gTJCK7oYnnMJjoE/yHX7KjFVR28suN+eCYHrqwL1XQ1ptqKR2FwIEu5SeAXviL1qxozerliipF19IBzpxDn0ZVxrY8rriog7y5SOuOQ2W/0sRxFo1vCUaCbMQnQQj/qV9X8Pa4/9QN6zjSMA2XVpczm0KQmQ/1qF8XGxLRrbScM4; AWSALB=SaCD9bXk8Choz/3qpR1GM9mcMHu1228BdT+Aa756/VUN4h+vNkNfoWnDVFUElVM4khPU9kMDzPQYquQs0lhx7r2UmM2IRfeGl4ty9xMcSIL8pmAJlToQCuIamzYA; AWSALBCORS=SaCD9bXk8Choz/3qpR1GM9mcMHu1228BdT+Aa756/VUN4h+vNkNfoWnDVFUElVM4khPU9kMDzPQYquQs0lhx7r2UmM2IRfeGl4ty9xMcSIL8pmAJlToQCuIamzYA |
Source: global traffic | HTTP traffic detected: GET /bundles/b79627b64df3ab63890d.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=8p7loPz8TDNMKcmU/f0V4DOUNvOjq9TR524ybcRjmVUDX6yOk6Oo0hQsQEXRX5acFmowhDR1NgLquwSdSHgsuiY78rhd31Enzvd3uSA+KFMkbgBw5+BP3N97EhzUh+oCCzQGYtxHaJz179hqSLoIJ0FA/AtCTm31aqH0s4AQ4fDc; AWSALBTGCORS=8p7loPz8TDNMKcmU/f0V4DOUNvOjq9TR524ybcRjmVUDX6yOk6Oo0hQsQEXRX5acFmowhDR1NgLquwSdSHgsuiY78rhd31Enzvd3uSA+KFMkbgBw5+BP3N97EhzUh+oCCzQGYtxHaJz179hqSLoIJ0FA/AtCTm31aqH0s4AQ4fDc; AWSALB=G8FCHNNSPiOZ9yQqNipoBxrsfuPehUAzJf+nefqMF0bX/PD28cre+/cP/0UYSNApSAtsxN1/P8GEgYiFkOJ99AtI7C9+dvrugtKiRFMxXqaOhbiAiPlGvfWqmB53; AWSALBCORS=G8FCHNNSPiOZ9yQqNipoBxrsfuPehUAzJf+nefqMF0bX/PD28cre+/cP/0UYSNApSAtsxN1/P8GEgYiFkOJ99AtI7C9+dvrugtKiRFMxXqaOhbiAiPlGvfWqmB53 |
Source: global traffic | HTTP traffic detected: GET /data/ptm.gif/74b07336-7560-45fc-7cd1-95032a784d52?v=2.250.1_prod&ct=1728877719176&jzb=eJzVUt1v2jAQ_1_8DMRxPuGNrRObQNtQafdQVdERO8GaEwfHAUUV_3vPhUXtC9qkTVPzFPt8d7-vhydi-0aQGZFc1FYWPRmRrdHHVpjMygorfsLSNEkSf-pHyYgcZCutNpnk2JR9__T15lu2yVYLpu5W5aIv3QDIc93V9vwGCuAxC_1xADwfR1sejaMwwL8kgmlaTJNwSrGnMwof76xt2pnnWW1B5VBbYbad6emk3YERhVRikuvKezl5BymOHg1C4JDGIuE05EmIoxqjm5bMnohWPPsdvO7da8x1p9S_YnpCfAi-thvYfhl22fOBxD0rb42cL5e7al7el7iiMFCJl-ICPv_8mJb5ar9bLo_3cyy2Yt-JOkebKPrWW4G8w2h6Gg2-VsLCNU9jbHxPnl6wut9rcBXUZQelU0DU2d2t0_1CwbVC09zoCmSN9TcwsPVPGBYCbGec6g9EB3GEV2iH6RsruMD5ijwOhs-H9XjFwTpsfuD51GOUOY4HYVqpHSQ2YRGd-Bmy5n89Ma1bci7_0Dzcr9ebbk2l7D68CZQ_BCpK6atAKQ38aqDY-wqU43NhweI4ZZOE_vr8_yQ9KniRPojj0-MzPInJfA HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /data/guide.json/74b07336-7560-45fc-7cd1-95032a784d52?id=12&jzb=eJyNj09r6zAQxL_LnhNL_hcnvhVSQiG0hb70UorZWGtHIEtGllNMyXfPOoeUXh69rVazM_P7hrMedHD-SUEJ1evj8_al-lftd4k57Nvd1E6wAKxrN9pwk2CDapVk8TJFVS_zo8qXeZbyVOS4WTebIttIPhm9YfEphH4ohQguoKnRBvLH0U8yGk7oqdGGotp14vYSZ01fQqYZKlyvqFAyU0XGVs6o95-OdjRmAR0FlgWE8g4wj_o_EAZtO2JLrCBbHd7gcgebT7Hvt65Dbfn_Vzs-vdn-EbwhDKOnAcoPcOkq5xXZ2k99IEXsb-CTg3sOsOHhHs8rxpm7xamIpUhkMqOfyQ_azZWSKMllFFe9dwoulytG34tQ&v=2.250.1_prod&ct=1728877719178 HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /guide.-323232.1622565221517.css HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /bundles/b69d9728d2dbe0747c8a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALBTGCORS=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALB=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l; AWSALBCORS=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l |
Source: global traffic | HTTP traffic detected: GET /bundles/5be3ba1b444ac539eaf5.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALBTGCORS=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALB=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l; AWSALBCORS=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l |
Source: global traffic | HTTP traffic detected: GET /io/public/Shares(034ada86e7d04d74)?%24expand=Items%2CItems%2FBundle%2CUser%2CUser%2FPreferences%2CCreator%2CCreator%2FAccount%2CItems%2FZone&includeExpired=false HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"tracestate: 3347059@nr=0-1-294030-30142649-9f48823f905290ea----1728877720234traceparent: 00-abada73e58dde84a0e0bff1b72381ee7-9f48823f905290ea-01Accept-Language: ensec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI5NDAzMCIsImFwIjoiMzAxNDI2NDkiLCJpZCI6IjlmNDg4MjNmOTA1MjkwZWEiLCJ0ciI6ImFiYWRhNzNlNThkZGU4NGEwZTBiZmYxYjcyMzgxZWU3IiwidGkiOjE3Mjg4Nzc3MjAyMzQsInRrIjoiMzM0NzA1OSJ9fQ==X-BFF-CSRF: trueAccept: application/json, text/plain, */*X-SF-App: ShareFileWebsec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brCookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALBTGCORS=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALB=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l; AWSALBCORS=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l |
Source: global traffic | HTTP traffic detected: GET /bundles/1c992ae0c14e95098d9a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALBTGCORS=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALB=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l; AWSALBCORS=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l |
Source: global traffic | HTTP traffic detected: GET /bundles/4229061ac836f0f16eea.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALBTGCORS=cCO8MnIIEEL2bEGQdl/Fmt2ZVH8IaHWVsk0GJntg33wsOOhYqO5FYvFHsHhyZRpHN5Fsmhlj9D6jyEMVD9vry5+LUz60hWc7382z9E82EKhBgJxzwEuIAvZroFin1187Dbclw2f67cLo4JBq0KOPhAcH2lZqHFZUGefU/YPmb+Jq; AWSALB=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l; AWSALBCORS=/zGDyMEUARg4lURHpUOdVAkNQd04wqAtxbd7T5GcyxYME22QeqYTA4B0DcnrKjnTnLkVR9NYKv3/WdkKRWkfxM3L1SRGGMQl3IjDBxY2pKpFqHhtW6WUKXteYb1l |
Source: global traffic | HTTP traffic detected: GET /data/ptm.gif/74b07336-7560-45fc-7cd1-95032a784d52?v=2.250.1_prod&ct=1728877719176&jzb=eJzVUt1v2jAQ_1_8DMRxPuGNrRObQNtQafdQVdERO8GaEwfHAUUV_3vPhUXtC9qkTVPzFPt8d7-vhydi-0aQGZFc1FYWPRmRrdHHVpjMygorfsLSNEkSf-pHyYgcZCutNpnk2JR9__T15lu2yVYLpu5W5aIv3QDIc93V9vwGCuAxC_1xADwfR1sejaMwwL8kgmlaTJNwSrGnMwof76xt2pnnWW1B5VBbYbad6emk3YERhVRikuvKezl5BymOHg1C4JDGIuE05EmIoxqjm5bMnohWPPsdvO7da8x1p9S_YnpCfAi-thvYfhl22fOBxD0rb42cL5e7al7el7iiMFCJl-ICPv_8mJb5ar9bLo_3cyy2Yt-JOkebKPrWW4G8w2h6Gg2-VsLCNU9jbHxPnl6wut9rcBXUZQelU0DU2d2t0_1CwbVC09zoCmSN9TcwsPVPGBYCbGec6g9EB3GEV2iH6RsruMD5ijwOhs-H9XjFwTpsfuD51GOUOY4HYVqpHSQ2YRGd-Bmy5n89Ma1bci7_0Dzcr9ebbk2l7D68CZQ_BCpK6atAKQ38aqDY-wqU43NhweI4ZZOE_vr8_yQ9KniRPojj0-MzPInJfA HTTP/1.1Host: citrix-sharefile-data.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWADnkufXgGqv6M-p2xBSYIU/xBPyrN0M2r6IFxno71T0shlp-Qc.dom.json?sha256=OG9P3pymuWfB-ZaKqljhBPBaH2alktLkYBmVTjLKrSQ HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /io/public/Shares(034ada86e7d04d74)?%24expand=Items%2CItems%2FBundle%2CUser%2CUser%2FPreferences%2CCreator%2CCreator%2FAccount%2CItems%2FZone&includeExpired=false HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=ZyaxKVc9I8JVUS981o3PXbYzeo/jPNWWNEH3kLuBJDslgonkoGqnf/2Kbs0Z9uBQJz61zMb93nhJ8fnNsNDKHXDCjWk+UhDmTUNF8c8KAWLr7ZqORmMGQgj7GjirjHhxv4ZaxY1dfchWDV+2q98f1NRTkkjUTyUV1yGtZiCA51ZQrf3QZYIBr/pTC2RjUFslnEEj/69lfd1Zh47G0Ka5krLAVOypyYqtz1ulOOnaeM6OED/mff40sqFFYzJtiiMq; AWSALBTGCORS=ZyaxKVc9I8JVUS981o3PXbYzeo/jPNWWNEH3kLuBJDslgonkoGqnf/2Kbs0Z9uBQJz61zMb93nhJ8fnNsNDKHXDCjWk+UhDmTUNF8c8KAWLr7ZqORmMGQgj7GjirjHhxv4ZaxY1dfchWDV+2q98f1NRTkkjUTyUV1yGtZiCA51ZQrf3QZYIBr/pTC2RjUFslnEEj/69lfd1Zh47G0Ka5krLAVOypyYqtz1ulOOnaeM6OED/mff40sqFFYzJtiiMq; AWSALB=O5yaWddrSJnJxkdX9TTjqaC2bj5BFLHJCTCbKtQ4x6hsZ1IHD6aVHD2VOBbPw/0yW1FX1kHGfFwukacFhDGmwveNRmUSnNL8+aBwzUxREaUSrCmUMGk5UgJdFp5D; AWSALBCORS=O5yaWddrSJnJxkdX9TTjqaC2bj5BFLHJCTCbKtQ4x6hsZ1IHD6aVHD2VOBbPw/0yW1FX1kHGfFwukacFhDGmwveNRmUSnNL8+aBwzUxREaUSrCmUMGk5UgJdFp5D |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-dynamic-forms-pilet/1.25.0/package/dist/af15e31c70fab7cfd55c.woff2 HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://piletfeed-cdn.sharefile.io/sharefile-web/sharefiledev-dynamic-forms-pilet/1.25.0/package/dist/main.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-dynamic-forms-pilet/1.25.0/package/dist/402b74053d26323596b3.woff2 HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://piletfeed-cdn.sharefile.io/sharefile-web/sharefiledev-dynamic-forms-pilet/1.25.0/package/dist/main.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /guide-content/eWI7aCe5RTaQQM3QzyK1rqqWcVM/XNJ1F6ATudKnb82a7viL5T2TM6g/E7DHnb1hOIm90y1iNNrpyuqjzow.dom.json?sha256=tTDEghJvK4ZEfjp-b5MZyPzNBxZZo7r5FOjFFYmu8iA HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWADnkufXgGqv6M-p2xBSYIU/xBPyrN0M2r6IFxno71T0shlp-Qc.dom.json?sha256=OG9P3pymuWfB-ZaKqljhBPBaH2alktLkYBmVTjLKrSQ HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /guide-content/eWI7aCe5RTaQQM3QzyK1rqqWcVM/XNJ1F6ATudKnb82a7viL5T2TM6g/E7DHnb1hOIm90y1iNNrpyuqjzow.dom.json?sha256=tTDEghJvK4ZEfjp-b5MZyPzNBxZZo7r5FOjFFYmu8iA HTTP/1.1Host: citrix-sharefile-content.customer.pendo.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Items/ContentViewer HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=wxpgc9Xq4NpZcesrKHOSZrd10G3/dNWvLuFYZzxma/GDWsClSRMgguNkdMWD0KgTMX6v9++obBK3YczNPaCkaXzDN7i+Z+PLmxdG9GyX7qka5wQNNfsVCZDlD+fz3iQdx0pnLgwh7ipz2mGg5ksr4InWwbvUZRFblz5mTAOGMQJH; AWSALB=VbUHkpU+HbF7rgCQJi/iM5ZfufzmnmUtyhexcvLWFx88NhDIzJ2JzVOSvgla1kWov10ZOgsNQXM7Co9BqNAQuUbsXm2alZZO7ohHfGQMZD0jnZnlq+T1INFoUJOv; AWSALBTGCORS=QXEgGYqkRqs97d95DGxInRW8NwHsoud+eRwLxpxhowzJjSPTszkhJL5MNQNTSmR+dCUrlZKcFYr0hhI83OTSawgKl2evGUPbAit1S5/BVvIigr9eoYfR8eFbMlcZ5Xd8d/nCVM/GSXuSbr89qlVEMl5pUcl9RqhYg0SsUFiZwlzA; AWSALBCORS=YMG8MUK8LTpwpKtPlja/Q7ZYrYN5RXUJcBOGgk0EsMKjvEPmmXtWyfY2X9WxxQS+sybiQwI9yj7q+HICsmyXWHS2hpP2CpiMpsllIPbTi45umYb7mu1pGI8bN90Y |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Capabilities HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveCorrelationId: OfM6-qi4b5_CYiePGaGRAwsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Language: ensec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-SF-ClientCapabilities: HardLock,HardQuota,AthenaSSOAccept: application/json, text/plain, */*X-SF-App: ShareFileWebsec-ch-ua-platform: "Windows"Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brCookie: AWSALBTGCORS=QXEgGYqkRqs97d95DGxInRW8NwHsoud+eRwLxpxhowzJjSPTszkhJL5MNQNTSmR+dCUrlZKcFYr0hhI83OTSawgKl2evGUPbAit1S5/BVvIigr9eoYfR8eFbMlcZ5Xd8d/nCVM/GSXuSbr89qlVEMl5pUcl9RqhYg0SsUFiZwlzA; AWSALBCORS=YMG8MUK8LTpwpKtPlja/Q7ZYrYN5RXUJcBOGgk0EsMKjvEPmmXtWyfY2X9WxxQS+sybiQwI9yj7q+HICsmyXWHS2hpP2CpiMpsllIPbTi45umYb7mu1pGI8bN90Y |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Shares(034ada86e7d04d74)/Items(fi8c6938-d1a4-c0cd-2bbc-70c3a69e272f)?canCreateRootFolder=false&fileBox=false HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveCorrelationId: BtmWnaPo6Nvh2DE1ECO2_Asec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Language: ensec-ch-ua-mobile: ?0Authorization: Captcha eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJTdGF0ZSI6InM3NDRjN2NhODE4MTE0YTFhYmYwMTY3ZDQ5ODgyMDc1MSIsIkV4cGlyZXMiOjE3Mjg4Nzk1MjF9.-G5rG9WwkXeHth6oX6c9RtUqS3x-QI2e813PYQTmiS4User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-SF-ClientCapabilities: HardLock,HardQuota,AthenaSSOAccept: application/json, text/plain, */*X-SF-App: ShareFileWebsec-ch-ua-platform: "Windows"Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brCookie: AWSALBTGCORS=QXEgGYqkRqs97d95DGxInRW8NwHsoud+eRwLxpxhowzJjSPTszkhJL5MNQNTSmR+dCUrlZKcFYr0hhI83OTSawgKl2evGUPbAit1S5/BVvIigr9eoYfR8eFbMlcZ5Xd8d/nCVM/GSXuSbr89qlVEMl5pUcl9RqhYg0SsUFiZwlzA; AWSALBCORS=YMG8MUK8LTpwpKtPlja/Q7ZYrYN5RXUJcBOGgk0EsMKjvEPmmXtWyfY2X9WxxQS+sybiQwI9yj7q+HICsmyXWHS2hpP2CpiMpsllIPbTi45umYb7mu1pGI8bN90Y |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Shares(034ada86e7d04d74)?%24expand=Items&includeExpired=false HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveCorrelationId: aLoUM51piCvgJITr6OXtbQsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Language: ensec-ch-ua-mobile: ?0Authorization: Captcha eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJTdGF0ZSI6InM3NDRjN2NhODE4MTE0YTFhYmYwMTY3ZDQ5ODgyMDc1MSIsIkV4cGlyZXMiOjE3Mjg4Nzk1MjF9.-G5rG9WwkXeHth6oX6c9RtUqS3x-QI2e813PYQTmiS4User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-SF-ClientCapabilities: HardLock,HardQuota,AthenaSSOAccept: application/json, text/plain, */*X-SF-App: ShareFileWebsec-ch-ua-platform: "Windows"Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brCookie: AWSALBTGCORS=QXEgGYqkRqs97d95DGxInRW8NwHsoud+eRwLxpxhowzJjSPTszkhJL5MNQNTSmR+dCUrlZKcFYr0hhI83OTSawgKl2evGUPbAit1S5/BVvIigr9eoYfR8eFbMlcZ5Xd8d/nCVM/GSXuSbr89qlVEMl5pUcl9RqhYg0SsUFiZwlzA; AWSALBCORS=YMG8MUK8LTpwpKtPlja/Q7ZYrYN5RXUJcBOGgk0EsMKjvEPmmXtWyfY2X9WxxQS+sybiQwI9yj7q+HICsmyXWHS2hpP2CpiMpsllIPbTi45umYb7mu1pGI8bN90Y |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Capabilities HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=GCoQKYYkCV1pk7JKysXKweYeZDsMyjkbkWjBJcXSIw/gx0A8QGRlLgSCm7qmcOhKqj2RmpMhxAv063771hWb/NihVVfHKvpaPDIwxc2mAkSMSFqVdb500qAAj5z7xA71fA/N64SP2pAHVkMFCBxPAp9X+qHR92cHD4ak0dilzznz; AWSALB=PZXVmzBeHTA+OS5IxPZUyFMx+G7noINMb9bh6LXM76BjB8ECBAXzqxLYv581V17hT9gT7PhlDwjLiZD6Rgn9ZSpOacaurQErm/MLKys5DlACphrKRGjerP1an3/e; AWSALBTGCORS=xfF3y4E6OkoP4TbrO5wkGsNDsr0kvxcSVkryuj48rqxQE+2ODLO1AH/jwaGaaDFXJd1AmsnEz3IR8uZamcQM6b+X0G3cubFpMcLTrWoJuaZxnwWh3/dcO82x5ZcBn9od8VlRGgNzcfAG2oX8DDqgtaNjalxiZed+TRFJluzNkOc9; AWSALBCORS=LMFgWjwuaLNJJXq6FRedbnPjPEF4jDxU1Wq9OxQ89dvLvOdvkki9YsAoOvVlczktsz2+m/eLnp1HZV0HHKFpe8wc0QXVHsaIUF6V83hQ8z9pnt/ZGuG7cFvzd/lR |
Source: global traffic | HTTP traffic detected: GET /bundles/ba7dfd1a6326f1b75478.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=3tOtBJD2Yv9S36NSfmIE+LOSDRYGXk0IowJnJGGFY9P+FoTQg/dCqdVa2UV3nEQtcRti+zOsTtBfbzXszXZDftnCITglli7T+duIAd+5GrQiZQcTBLj+tSHEl1YClPdPwzDiLUq5H8C8ZwLWYY0ScjfIm+DmwoTBtsEIQgEEhyloXJlv17u01LpnVr8jrOpScIOkdHu0X5fqBD9rz0aqSjuQ0SFzDuvqEkCE52JKmjdWhSfEAA+5HaJ5foFq5d6Y; AWSALBTGCORS=3tOtBJD2Yv9S36NSfmIE+LOSDRYGXk0IowJnJGGFY9P+FoTQg/dCqdVa2UV3nEQtcRti+zOsTtBfbzXszXZDftnCITglli7T+duIAd+5GrQiZQcTBLj+tSHEl1YClPdPwzDiLUq5H8C8ZwLWYY0ScjfIm+DmwoTBtsEIQgEEhyloXJlv17u01LpnVr8jrOpScIOkdHu0X5fqBD9rz0aqSjuQ0SFzDuvqEkCE52JKmjdWhSfEAA+5HaJ5foFq5d6Y; AWSALB=gLzEB+3jev1ADcx0Yi9acD1TJz+9IcWst/fWF0saMm1cv3w2fU/haNYAai2+1Va2cNo4DkbV1UIJkHzNALDcFcl3mAHe7Cs7IYahGSKOzhpelDRWoIqAemaYtRmZ; AWSALBCORS=gLzEB+3jev1ADcx0Yi9acD1TJz+9IcWst/fWF0saMm1cv3w2fU/haNYAai2+1Va2cNo4DkbV1UIJkHzNALDcFcl3mAHe7Cs7IYahGSKOzhpelDRWoIqAemaYtRmZ |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Shares(034ada86e7d04d74)?%24expand=Items&includeExpired=false HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=GCoQKYYkCV1pk7JKysXKweYeZDsMyjkbkWjBJcXSIw/gx0A8QGRlLgSCm7qmcOhKqj2RmpMhxAv063771hWb/NihVVfHKvpaPDIwxc2mAkSMSFqVdb500qAAj5z7xA71fA/N64SP2pAHVkMFCBxPAp9X+qHR92cHD4ak0dilzznz; AWSALB=PZXVmzBeHTA+OS5IxPZUyFMx+G7noINMb9bh6LXM76BjB8ECBAXzqxLYv581V17hT9gT7PhlDwjLiZD6Rgn9ZSpOacaurQErm/MLKys5DlACphrKRGjerP1an3/e; AWSALBTGCORS=Sig2JvwyrvjN/KJynvFFnvsDsYzCLRejIBrfq8LCq9/yeXxbC3+pvBwkkeYUyz6bWPjbfVYWE138SYKVUDQr4Bj0UHb+H18OZqdUQLlvKvRqbyX4A46gDPzmsUOuh9PTpg6bDo4Sd+o61yWqiQx/H9a+QQHaciAHu+GclXFoVCcL; AWSALBCORS=yn9glf5WVmugCu0df0ZESxCQrfoVXScbfwQLakhjmkdcMVUydEwUsCPTM7sjL6zuuuCC9dDQmOaBOrm67JJYg4Lg1QrnKUd+A8G19jTv6rM4woqSKX+zaOk2XKie |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Shares(034ada86e7d04d74)/Items(fi8c6938-d1a4-c0cd-2bbc-70c3a69e272f)?canCreateRootFolder=false&fileBox=false HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=GCoQKYYkCV1pk7JKysXKweYeZDsMyjkbkWjBJcXSIw/gx0A8QGRlLgSCm7qmcOhKqj2RmpMhxAv063771hWb/NihVVfHKvpaPDIwxc2mAkSMSFqVdb500qAAj5z7xA71fA/N64SP2pAHVkMFCBxPAp9X+qHR92cHD4ak0dilzznz; AWSALB=PZXVmzBeHTA+OS5IxPZUyFMx+G7noINMb9bh6LXM76BjB8ECBAXzqxLYv581V17hT9gT7PhlDwjLiZD6Rgn9ZSpOacaurQErm/MLKys5DlACphrKRGjerP1an3/e; AWSALBTGCORS=Sig2JvwyrvjN/KJynvFFnvsDsYzCLRejIBrfq8LCq9/yeXxbC3+pvBwkkeYUyz6bWPjbfVYWE138SYKVUDQr4Bj0UHb+H18OZqdUQLlvKvRqbyX4A46gDPzmsUOuh9PTpg6bDo4Sd+o61yWqiQx/H9a+QQHaciAHu+GclXFoVCcL; AWSALBCORS=yn9glf5WVmugCu0df0ZESxCQrfoVXScbfwQLakhjmkdcMVUydEwUsCPTM7sjL6zuuuCC9dDQmOaBOrm67JJYg4Lg1QrnKUd+A8G19jTv6rM4woqSKX+zaOk2XKie |
Source: global traffic | HTTP traffic detected: GET /service/contentviewer/launchrequest HTTP/1.1Host: sf-cv.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /bundles/2efeefafc2bb68a97d33.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALBTGCORS=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALB=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3; AWSALBCORS=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3 |
Source: global traffic | HTTP traffic detected: GET /bundles/ba7dfd1a6326f1b75478.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALBTGCORS=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALB=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3; AWSALBCORS=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3 |
Source: global traffic | HTTP traffic detected: GET /bundles/b5bef5c91ec3b83469e0.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALBTGCORS=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALB=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3; AWSALBCORS=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3 |
Source: global traffic | HTTP traffic detected: GET /bundles/d178f6eceb0126b1e292.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALBTGCORS=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALB=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3; AWSALBCORS=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3 |
Source: global traffic | HTTP traffic detected: GET /bundles/22a601d65471e8503ea9.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALBTGCORS=kWeRRC+xVq6Ij/tTnn/F7cQBKdMpnvi2NWwy4Vaid6/zDhbgI1QoKIRpowtPv4DTkm9ty93Ro0Wn+qNgJk8TSdhbsTxdYEYsyPOHhcwa5+FgU4ikUBK58c97nqviQS8MVisbUh1MUDfWYZQL6JDW/n1u9KRv316LyhmmKMbbNKtKnyCnkTzagMX0lLOEzSFA7tOMC7xRI39dErSVEBCwQjOo0KxSmR+DBsgcQsAUsZKPtHFqWUsM3pRH4DH7iUGF; AWSALB=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3; AWSALBCORS=GRoqs1HyQd6RFX3wmmNfoOenR3gSAOeEdgnM0ucOr6vgonuP9j0MmCs+W4t5l6rBCttVHTy4TzniN9zUBmXIxxP34vyuewOjce8U0c9MFIL63OZXEsxMyTR440Z3 |
Source: global traffic | HTTP traffic detected: GET /bundles/2efeefafc2bb68a97d33.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=x16qaIInvx2BtSxEM4GX9dtD9ogmLHMhv6g4G6m1Prxk9PJkMmpfnIYGGJ8YPzGLHNR8Zwt54KOTF4dcw4P3g/T/95mrqFPmcNxDPvt1xeJqRMTkv1M2EZznMa+zlgbXYN9caabEKQ1lK8r9DX/mnrvBvTcaXlDqVeIiRSL2z8dHcNEitGlgvD6o2QqZOoOcrsWFokgV+MzxD49WDpknt2De6s4aNIil5iVbQtDVZIi/cxtSE27x0tmr8tdE6Hza; AWSALBTGCORS=x16qaIInvx2BtSxEM4GX9dtD9ogmLHMhv6g4G6m1Prxk9PJkMmpfnIYGGJ8YPzGLHNR8Zwt54KOTF4dcw4P3g/T/95mrqFPmcNxDPvt1xeJqRMTkv1M2EZznMa+zlgbXYN9caabEKQ1lK8r9DX/mnrvBvTcaXlDqVeIiRSL2z8dHcNEitGlgvD6o2QqZOoOcrsWFokgV+MzxD49WDpknt2De6s4aNIil5iVbQtDVZIi/cxtSE27x0tmr8tdE6Hza; AWSALB=LG7g5kC8FH89p4hEKIyVNIwVanCGbt8gZQHQlFgldNJzss+YLmfYPlDOgk67I8+AHveCkfP9V4msM3L3Gm/t2HR5k80NaonCPjA3tA4QbXRGPfFjZdXn4sfjdJQI; AWSALBCORS=LG7g5kC8FH89p4hEKIyVNIwVanCGbt8gZQHQlFgldNJzss+YLmfYPlDOgk67I8+AHveCkfP9V4msM3L3Gm/t2HR5k80NaonCPjA3tA4QbXRGPfFjZdXn4sfjdJQI |
Source: global traffic | HTTP traffic detected: GET /bundles/22a601d65471e8503ea9.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=CXhB3XrA/CnJOcy3M9AxHnNZvAeHPQLIe1bg+4J0nQkVbyacmVKtu79K/zloLw7MLkHCj2sDlZux18nGz7DrqqR3A+k17xUmiKn0JP+ZR29FV9GG8V1f3VCVvyW1wCLqRUU1L6QnPV9VKnAQ8CtM3zrkmYUe37liCtS95ri/5AaUPvPb6BpFVhMvVIMfCbsBWRB6cmkzDyRFpRiElpEO6n06A5TX9MpgWDR7301XcqAZmnWBnzZFzJLoK/7xMVjz; AWSALBTGCORS=CXhB3XrA/CnJOcy3M9AxHnNZvAeHPQLIe1bg+4J0nQkVbyacmVKtu79K/zloLw7MLkHCj2sDlZux18nGz7DrqqR3A+k17xUmiKn0JP+ZR29FV9GG8V1f3VCVvyW1wCLqRUU1L6QnPV9VKnAQ8CtM3zrkmYUe37liCtS95ri/5AaUPvPb6BpFVhMvVIMfCbsBWRB6cmkzDyRFpRiElpEO6n06A5TX9MpgWDR7301XcqAZmnWBnzZFzJLoK/7xMVjz; AWSALB=RkHj1Eu+kywETnLzUbKzFd0V9wwOz20s10EX3E1CRZnZuSYLOmNNjHC7LiSOuCNbcwLJthDCwu9Qlim7B6dxNP/Fb7vBjmhqzkIIAFTkI3wyDlGy+a4VJGLKWpOM; AWSALBCORS=RkHj1Eu+kywETnLzUbKzFd0V9wwOz20s10EX3E1CRZnZuSYLOmNNjHC7LiSOuCNbcwLJthDCwu9Qlim7B6dxNP/Fb7vBjmhqzkIIAFTkI3wyDlGy+a4VJGLKWpOM |
Source: global traffic | HTTP traffic detected: GET /bundles/d178f6eceb0126b1e292.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=CXhB3XrA/CnJOcy3M9AxHnNZvAeHPQLIe1bg+4J0nQkVbyacmVKtu79K/zloLw7MLkHCj2sDlZux18nGz7DrqqR3A+k17xUmiKn0JP+ZR29FV9GG8V1f3VCVvyW1wCLqRUU1L6QnPV9VKnAQ8CtM3zrkmYUe37liCtS95ri/5AaUPvPb6BpFVhMvVIMfCbsBWRB6cmkzDyRFpRiElpEO6n06A5TX9MpgWDR7301XcqAZmnWBnzZFzJLoK/7xMVjz; AWSALBTGCORS=CXhB3XrA/CnJOcy3M9AxHnNZvAeHPQLIe1bg+4J0nQkVbyacmVKtu79K/zloLw7MLkHCj2sDlZux18nGz7DrqqR3A+k17xUmiKn0JP+ZR29FV9GG8V1f3VCVvyW1wCLqRUU1L6QnPV9VKnAQ8CtM3zrkmYUe37liCtS95ri/5AaUPvPb6BpFVhMvVIMfCbsBWRB6cmkzDyRFpRiElpEO6n06A5TX9MpgWDR7301XcqAZmnWBnzZFzJLoK/7xMVjz; AWSALB=RkHj1Eu+kywETnLzUbKzFd0V9wwOz20s10EX3E1CRZnZuSYLOmNNjHC7LiSOuCNbcwLJthDCwu9Qlim7B6dxNP/Fb7vBjmhqzkIIAFTkI3wyDlGy+a4VJGLKWpOM; AWSALBCORS=RkHj1Eu+kywETnLzUbKzFd0V9wwOz20s10EX3E1CRZnZuSYLOmNNjHC7LiSOuCNbcwLJthDCwu9Qlim7B6dxNP/Fb7vBjmhqzkIIAFTkI3wyDlGy+a4VJGLKWpOM |
Source: global traffic | HTTP traffic detected: GET /bundles/b5bef5c91ec3b83469e0.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=CXhB3XrA/CnJOcy3M9AxHnNZvAeHPQLIe1bg+4J0nQkVbyacmVKtu79K/zloLw7MLkHCj2sDlZux18nGz7DrqqR3A+k17xUmiKn0JP+ZR29FV9GG8V1f3VCVvyW1wCLqRUU1L6QnPV9VKnAQ8CtM3zrkmYUe37liCtS95ri/5AaUPvPb6BpFVhMvVIMfCbsBWRB6cmkzDyRFpRiElpEO6n06A5TX9MpgWDR7301XcqAZmnWBnzZFzJLoK/7xMVjz; AWSALBTGCORS=CXhB3XrA/CnJOcy3M9AxHnNZvAeHPQLIe1bg+4J0nQkVbyacmVKtu79K/zloLw7MLkHCj2sDlZux18nGz7DrqqR3A+k17xUmiKn0JP+ZR29FV9GG8V1f3VCVvyW1wCLqRUU1L6QnPV9VKnAQ8CtM3zrkmYUe37liCtS95ri/5AaUPvPb6BpFVhMvVIMfCbsBWRB6cmkzDyRFpRiElpEO6n06A5TX9MpgWDR7301XcqAZmnWBnzZFzJLoK/7xMVjz; AWSALB=RkHj1Eu+kywETnLzUbKzFd0V9wwOz20s10EX3E1CRZnZuSYLOmNNjHC7LiSOuCNbcwLJthDCwu9Qlim7B6dxNP/Fb7vBjmhqzkIIAFTkI3wyDlGy+a4VJGLKWpOM; AWSALBCORS=RkHj1Eu+kywETnLzUbKzFd0V9wwOz20s10EX3E1CRZnZuSYLOmNNjHC7LiSOuCNbcwLJthDCwu9Qlim7B6dxNP/Fb7vBjmhqzkIIAFTkI3wyDlGy+a4VJGLKWpOM |
Source: global traffic | HTTP traffic detected: GET /sharefile-web/sharefiledev-dynamic-forms-pilet/1.25.0/package/dist/d8fcf3851ba79b1d138a.woff2 HTTP/1.1Host: piletfeed-cdn.sharefile.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://totalcanterbury0.sharefile.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://piletfeed-cdn.sharefile.io/sharefile-web/sharefiledev-dynamic-forms-pilet/1.25.0/package/dist/main.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Shares(034ada86e7d04d74)/Items(st34081c-405f-4373-86dd-16fb3f758152)/ProtocolLinks(Web)?action=View HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveCorrelationId: yJCC6CGTogsUIuqqaTVhRQsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Language: ensec-ch-ua-mobile: ?0Authorization: Captcha eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJTdGF0ZSI6InM3NDRjN2NhODE4MTE0YTFhYmYwMTY3ZDQ5ODgyMDc1MSIsIkV4cGlyZXMiOjE3Mjg4Nzk1MjF9.-G5rG9WwkXeHth6oX6c9RtUqS3x-QI2e813PYQTmiS4User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36X-SF-ClientCapabilities: HardLock,HardQuota,AthenaSSOAccept: application/json, text/plain, */*X-SF-App: ShareFileWebsec-ch-ua-platform: "Windows"Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brCookie: AWSALBTGCORS=KiTUJtMlfixuRiThXjw0TZMzEG7+Udtp8w5YzFLMhvD4crubkRuWo0hhCYApc2C39tz84aJFTtnKnygn9wf2WJLXDYI8XEYKd3wHn/uQKZkGDBTxtoKCgMCedUzytlcLjBKngpxoKzvmgNZ2Z79AfE40BJ82wHUo8PpWazlILe2s; AWSALBCORS=SBc1k4dCvd3fywhxLzArSiSB53xqo9Wgroh7zzDnk++QH6wcyJscr1jgb6VrSJw3neMAEbgoJfRNf0EBKVDTkE1m+6LZn9X3sIEX/bFqGVBU3lWTi6dkBD4UNWu7 |
Source: global traffic | HTTP traffic detected: GET /bundles/2c61db7618456a4b4ea2.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=OAlqOPIu2JydCXUfApGcs5vIdYfTXWqpLT0tORNmTabWeE1V3Zw/BcgAYrC6nvcVK9xcOquBT2b7cegCFSTdQrgblmr7GM4hqhSPO99KCkXqAxwZn7RsOSlY6C5ACmunh8R+k5G0Ht1+e9js9CJCoufh/7bWes9YCm30qO9E5rPx5ZL3R5eVSxMvfMkHmEutJ86dg/klpSx2/OC+s47kKV6Yrypo/ooThmwRb98SSQi98QM+MZijI84SNB3H6PKk; AWSALBTGCORS=OAlqOPIu2JydCXUfApGcs5vIdYfTXWqpLT0tORNmTabWeE1V3Zw/BcgAYrC6nvcVK9xcOquBT2b7cegCFSTdQrgblmr7GM4hqhSPO99KCkXqAxwZn7RsOSlY6C5ACmunh8R+k5G0Ht1+e9js9CJCoufh/7bWes9YCm30qO9E5rPx5ZL3R5eVSxMvfMkHmEutJ86dg/klpSx2/OC+s47kKV6Yrypo/ooThmwRb98SSQi98QM+MZijI84SNB3H6PKk; AWSALB=AaEqPo7QqTBuCn/q5SGWiTdLkYz0064WCDORTI0Ep5LAg+0WgZ2DlMcjq/BE4wRf/FYIv2VIBXu2nbGLaymc9bC020TboMO7liDjcswC/EITFUB5pqtHbG7Ld6Sp; AWSALBCORS=AaEqPo7QqTBuCn/q5SGWiTdLkYz0064WCDORTI0Ep5LAg+0WgZ2DlMcjq/BE4wRf/FYIv2VIBXu2nbGLaymc9bC020TboMO7liDjcswC/EITFUB5pqtHbG7Ld6Sp |
Source: global traffic | HTTP traffic detected: GET /bundles/d5a7899d41651404accd.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=OAlqOPIu2JydCXUfApGcs5vIdYfTXWqpLT0tORNmTabWeE1V3Zw/BcgAYrC6nvcVK9xcOquBT2b7cegCFSTdQrgblmr7GM4hqhSPO99KCkXqAxwZn7RsOSlY6C5ACmunh8R+k5G0Ht1+e9js9CJCoufh/7bWes9YCm30qO9E5rPx5ZL3R5eVSxMvfMkHmEutJ86dg/klpSx2/OC+s47kKV6Yrypo/ooThmwRb98SSQi98QM+MZijI84SNB3H6PKk; AWSALBTGCORS=OAlqOPIu2JydCXUfApGcs5vIdYfTXWqpLT0tORNmTabWeE1V3Zw/BcgAYrC6nvcVK9xcOquBT2b7cegCFSTdQrgblmr7GM4hqhSPO99KCkXqAxwZn7RsOSlY6C5ACmunh8R+k5G0Ht1+e9js9CJCoufh/7bWes9YCm30qO9E5rPx5ZL3R5eVSxMvfMkHmEutJ86dg/klpSx2/OC+s47kKV6Yrypo/ooThmwRb98SSQi98QM+MZijI84SNB3H6PKk; AWSALB=AaEqPo7QqTBuCn/q5SGWiTdLkYz0064WCDORTI0Ep5LAg+0WgZ2DlMcjq/BE4wRf/FYIv2VIBXu2nbGLaymc9bC020TboMO7liDjcswC/EITFUB5pqtHbG7Ld6Sp; AWSALBCORS=AaEqPo7QqTBuCn/q5SGWiTdLkYz0064WCDORTI0Ep5LAg+0WgZ2DlMcjq/BE4wRf/FYIv2VIBXu2nbGLaymc9bC020TboMO7liDjcswC/EITFUB5pqtHbG7Ld6Sp |
Source: global traffic | HTTP traffic detected: GET /bundles/102a12cf4db82175eb4a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=OAlqOPIu2JydCXUfApGcs5vIdYfTXWqpLT0tORNmTabWeE1V3Zw/BcgAYrC6nvcVK9xcOquBT2b7cegCFSTdQrgblmr7GM4hqhSPO99KCkXqAxwZn7RsOSlY6C5ACmunh8R+k5G0Ht1+e9js9CJCoufh/7bWes9YCm30qO9E5rPx5ZL3R5eVSxMvfMkHmEutJ86dg/klpSx2/OC+s47kKV6Yrypo/ooThmwRb98SSQi98QM+MZijI84SNB3H6PKk; AWSALBTGCORS=OAlqOPIu2JydCXUfApGcs5vIdYfTXWqpLT0tORNmTabWeE1V3Zw/BcgAYrC6nvcVK9xcOquBT2b7cegCFSTdQrgblmr7GM4hqhSPO99KCkXqAxwZn7RsOSlY6C5ACmunh8R+k5G0Ht1+e9js9CJCoufh/7bWes9YCm30qO9E5rPx5ZL3R5eVSxMvfMkHmEutJ86dg/klpSx2/OC+s47kKV6Yrypo/ooThmwRb98SSQi98QM+MZijI84SNB3H6PKk; AWSALB=AaEqPo7QqTBuCn/q5SGWiTdLkYz0064WCDORTI0Ep5LAg+0WgZ2DlMcjq/BE4wRf/FYIv2VIBXu2nbGLaymc9bC020TboMO7liDjcswC/EITFUB5pqtHbG7Ld6Sp; AWSALBCORS=AaEqPo7QqTBuCn/q5SGWiTdLkYz0064WCDORTI0Ep5LAg+0WgZ2DlMcjq/BE4wRf/FYIv2VIBXu2nbGLaymc9bC020TboMO7liDjcswC/EITFUB5pqtHbG7Ld6Sp |
Source: global traffic | HTTP traffic detected: GET /bundles/5626aad50bfaf67fedc0.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=OAlqOPIu2JydCXUfApGcs5vIdYfTXWqpLT0tORNmTabWeE1V3Zw/BcgAYrC6nvcVK9xcOquBT2b7cegCFSTdQrgblmr7GM4hqhSPO99KCkXqAxwZn7RsOSlY6C5ACmunh8R+k5G0Ht1+e9js9CJCoufh/7bWes9YCm30qO9E5rPx5ZL3R5eVSxMvfMkHmEutJ86dg/klpSx2/OC+s47kKV6Yrypo/ooThmwRb98SSQi98QM+MZijI84SNB3H6PKk; AWSALBTGCORS=OAlqOPIu2JydCXUfApGcs5vIdYfTXWqpLT0tORNmTabWeE1V3Zw/BcgAYrC6nvcVK9xcOquBT2b7cegCFSTdQrgblmr7GM4hqhSPO99KCkXqAxwZn7RsOSlY6C5ACmunh8R+k5G0Ht1+e9js9CJCoufh/7bWes9YCm30qO9E5rPx5ZL3R5eVSxMvfMkHmEutJ86dg/klpSx2/OC+s47kKV6Yrypo/ooThmwRb98SSQi98QM+MZijI84SNB3H6PKk; AWSALB=AaEqPo7QqTBuCn/q5SGWiTdLkYz0064WCDORTI0Ep5LAg+0WgZ2DlMcjq/BE4wRf/FYIv2VIBXu2nbGLaymc9bC020TboMO7liDjcswC/EITFUB5pqtHbG7Ld6Sp; AWSALBCORS=AaEqPo7QqTBuCn/q5SGWiTdLkYz0064WCDORTI0Ep5LAg+0WgZ2DlMcjq/BE4wRf/FYIv2VIBXu2nbGLaymc9bC020TboMO7liDjcswC/EITFUB5pqtHbG7Ld6Sp |
Source: global traffic | HTTP traffic detected: GET /bundles/2c61db7618456a4b4ea2.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=+A2fjqLjTOw86TLD8ElS6l+lerZDExnviPCzpv+eTq08xLmjKaWGAKF0Q7/Mg3h8MnmSPtUnGhCth7SjHVVUrK+HR11KVFuVQKSqppO1nNVPkjkZq9LE37zoFhBPRrfjm8RlqqYW3NMtLtIbWpYykIB/YwoPH94Zw3axSBSQSzGmqpklPrS1srnrtoeVnTh/AUvn6+92+WS1qdNkAtnyLay0PINaKB7FE9dN+8FQhv/gZhVFatKnlba4Pdz1y23l; AWSALBTGCORS=+A2fjqLjTOw86TLD8ElS6l+lerZDExnviPCzpv+eTq08xLmjKaWGAKF0Q7/Mg3h8MnmSPtUnGhCth7SjHVVUrK+HR11KVFuVQKSqppO1nNVPkjkZq9LE37zoFhBPRrfjm8RlqqYW3NMtLtIbWpYykIB/YwoPH94Zw3axSBSQSzGmqpklPrS1srnrtoeVnTh/AUvn6+92+WS1qdNkAtnyLay0PINaKB7FE9dN+8FQhv/gZhVFatKnlba4Pdz1y23l; AWSALB=QGk2uwYwfqmh/AjkwCC5vkqzkflxWoKoRx4vCl5Xl5SGEKbpxtO76jKV4icYA5AP+jLtwA/EBgwLqcGZcdfeOt5RnBNC7Ex4HTwYtyQwIvxlObquEbNLlJcmZV4t; AWSALBCORS=QGk2uwYwfqmh/AjkwCC5vkqzkflxWoKoRx4vCl5Xl5SGEKbpxtO76jKV4icYA5AP+jLtwA/EBgwLqcGZcdfeOt5RnBNC7Ex4HTwYtyQwIvxlObquEbNLlJcmZV4t |
Source: global traffic | HTTP traffic detected: GET /sf/v3/Shares(034ada86e7d04d74)/Items(st34081c-405f-4373-86dd-16fb3f758152)/ProtocolLinks(Web)?action=View HTTP/1.1Host: totalcanterbury0.sf-api.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALBTG=KiTUJtMlfixuRiThXjw0TZMzEG7+Udtp8w5YzFLMhvD4crubkRuWo0hhCYApc2C39tz84aJFTtnKnygn9wf2WJLXDYI8XEYKd3wHn/uQKZkGDBTxtoKCgMCedUzytlcLjBKngpxoKzvmgNZ2Z79AfE40BJ82wHUo8PpWazlILe2s; AWSALB=SBc1k4dCvd3fywhxLzArSiSB53xqo9Wgroh7zzDnk++QH6wcyJscr1jgb6VrSJw3neMAEbgoJfRNf0EBKVDTkE1m+6LZn9X3sIEX/bFqGVBU3lWTi6dkBD4UNWu7; AWSALBTGCORS=GjU2WKE7tsYadO8WlR65Mx8Kdy5ZjskqtT/EZUM6dIewFAbbexoYpcivGWfmDosfGBMA/dZj3a1ov8bsXpVQlrubt595y/QkLWwQwrJRVvwAiNmbnLiMmVGjG/rzP24TR2TzjQiJL5MEXGUT84/SY7qtgnxIb7xBKpEmPgzxnB1J; AWSALBCORS=f+mN1soxfbyDbskKBxrAz1MJtWyX1PygaX+BucGlsxF9hm06LdMbSpoXxxuaO/eLvjrI1XLIgh3dWeghW0GFB2AmZ1m9KdQEo4lS9BVhbbc+OpspQdtpfKfUStk6 |
Source: global traffic | HTTP traffic detected: GET /bundles/5626aad50bfaf67fedc0.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=ssXSSVD49YsNANaIrlShKQVFQWEvBZAx2m6UAY+NO5kffTOEO8/GqIujVhzldbBsrV3OG65cp6ysQarhGZMIoYH51gs9nb4qGDshYEp8DBbcOGAZjim4zUc50glZoJf9+S7i13nrjK5rDDwCODYxkXNYZeXDK3P1lj44+BQHQMP2soQDAVOVxVsCc0T8Syt5t9WLhrBFViRPLtI2I+f6NGQHDHx070gYP6Aw4X4+3chtpbUJHoekll7vlCNj4wUJ; AWSALBTGCORS=ssXSSVD49YsNANaIrlShKQVFQWEvBZAx2m6UAY+NO5kffTOEO8/GqIujVhzldbBsrV3OG65cp6ysQarhGZMIoYH51gs9nb4qGDshYEp8DBbcOGAZjim4zUc50glZoJf9+S7i13nrjK5rDDwCODYxkXNYZeXDK3P1lj44+BQHQMP2soQDAVOVxVsCc0T8Syt5t9WLhrBFViRPLtI2I+f6NGQHDHx070gYP6Aw4X4+3chtpbUJHoekll7vlCNj4wUJ; AWSALB=pB+iibjvE0hiNl0UE6nFx7w2ozPaEwz1pJ+Ljb31yOOe4KZP1OwVPiiMRnCZj8YpgxR0ZF4OVy9AhLqDbXaB3lHEw+LjtuZXUDSiXvCawhRCGDv1TUhBEa49Zjud; AWSALBCORS=pB+iibjvE0hiNl0UE6nFx7w2ozPaEwz1pJ+Ljb31yOOe4KZP1OwVPiiMRnCZj8YpgxR0ZF4OVy9AhLqDbXaB3lHEw+LjtuZXUDSiXvCawhRCGDv1TUhBEa49Zjud |
Source: global traffic | HTTP traffic detected: GET /events/1/fd14b65b5e?a=594432325&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=37896&ck=1&ref=https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74 HTTP/1.1Host: bam.nr-data.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=43964618b2e2cdd7 |
Source: global traffic | HTTP traffic detected: GET /bundles/d5a7899d41651404accd.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=ssXSSVD49YsNANaIrlShKQVFQWEvBZAx2m6UAY+NO5kffTOEO8/GqIujVhzldbBsrV3OG65cp6ysQarhGZMIoYH51gs9nb4qGDshYEp8DBbcOGAZjim4zUc50glZoJf9+S7i13nrjK5rDDwCODYxkXNYZeXDK3P1lj44+BQHQMP2soQDAVOVxVsCc0T8Syt5t9WLhrBFViRPLtI2I+f6NGQHDHx070gYP6Aw4X4+3chtpbUJHoekll7vlCNj4wUJ; AWSALBTGCORS=ssXSSVD49YsNANaIrlShKQVFQWEvBZAx2m6UAY+NO5kffTOEO8/GqIujVhzldbBsrV3OG65cp6ysQarhGZMIoYH51gs9nb4qGDshYEp8DBbcOGAZjim4zUc50glZoJf9+S7i13nrjK5rDDwCODYxkXNYZeXDK3P1lj44+BQHQMP2soQDAVOVxVsCc0T8Syt5t9WLhrBFViRPLtI2I+f6NGQHDHx070gYP6Aw4X4+3chtpbUJHoekll7vlCNj4wUJ; AWSALB=pB+iibjvE0hiNl0UE6nFx7w2ozPaEwz1pJ+Ljb31yOOe4KZP1OwVPiiMRnCZj8YpgxR0ZF4OVy9AhLqDbXaB3lHEw+LjtuZXUDSiXvCawhRCGDv1TUhBEa49Zjud; AWSALBCORS=pB+iibjvE0hiNl0UE6nFx7w2ozPaEwz1pJ+Ljb31yOOe4KZP1OwVPiiMRnCZj8YpgxR0ZF4OVy9AhLqDbXaB3lHEw+LjtuZXUDSiXvCawhRCGDv1TUhBEa49Zjud |
Source: global traffic | HTTP traffic detected: GET /bundles/102a12cf4db82175eb4a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=RTgXc3I0txfyFHWTpyUu6iR5y1qokCcuGaXkgpcytfyhgYIvBzlcs0wyN7JeZkjyf4t6NiKpr95T4KpPe5+CgE7YstMvmdY9xKjDp/EklgPQQu4XMRKV2oh98I0WYuMF8yJFc8UviLRumKA+MkNxVSqiC7q281GjZRhLY/URMbzhcWlA6MdcgL+G5uEsTb+evVFAkTH7duDkvTpaytxYBRJVuRATiqt8TLzBs968wy0lBSaJ46IaldErKyFn8HMd; AWSALBTGCORS=RTgXc3I0txfyFHWTpyUu6iR5y1qokCcuGaXkgpcytfyhgYIvBzlcs0wyN7JeZkjyf4t6NiKpr95T4KpPe5+CgE7YstMvmdY9xKjDp/EklgPQQu4XMRKV2oh98I0WYuMF8yJFc8UviLRumKA+MkNxVSqiC7q281GjZRhLY/URMbzhcWlA6MdcgL+G5uEsTb+evVFAkTH7duDkvTpaytxYBRJVuRATiqt8TLzBs968wy0lBSaJ46IaldErKyFn8HMd; AWSALB=qeHYg8TQc/qqCR/L1izQVzwAJHPNUh81iM4G7N1zjCHQqnUpqGKXbkqN+QS0wPYAAb/i4P7jXuSRHKuQ01GgzwrhAal2NaayxDyi81VjmXqwgrlJOtiF4t3xdJcb; AWSALBCORS=qeHYg8TQc/qqCR/L1izQVzwAJHPNUh81iM4G7N1zjCHQqnUpqGKXbkqN+QS0wPYAAb/i4P7jXuSRHKuQ01GgzwrhAal2NaayxDyi81VjmXqwgrlJOtiF4t3xdJcb |
Source: global traffic | HTTP traffic detected: GET /?format=json HTTP/1.1Host: api.ipify.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /service/contentviewer/document/sessionurl HTTP/1.1Host: sf-cv.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /?format=json HTTP/1.1Host: api.ipify.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /service/rendering/api/render/pdf?token=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..wBHWk1CNe89dCPJRGExwKw.CY6l7d3Nj0WXD1dcs7ZlVMjtDDZxf3VOd6QicS-ILNnpgjfbh6J17VHTd_-C2W2stMXuGr5PaX7B3viha_YTk_VNyqaTO1fMQnmC1XChl2hEkOdjQkKVwQbmqCkLERGpx71Gj3d-SG6mOEu4dCcMgGnWSPqg5pPF700wjpBnIwVRya42ek-3md4yRzmlDD0Em98WEvzRWwxNyf5N-AU_HnDwO3vvBy5-ZlsUhx9ba-DocmowGu5-WmMrGGLSEsrySFwxK3dmKZgKVyAS19AqfhXMV8a4oxSsHWeyc3_7UnhXT8Y56clfETyeibuSnvfulKzbwd10e_SlE8LFVMsQUSb0fc1bzD7QlMPm0bdiMLEvO8YMCLhmGA8zgENEm0e1_glNWnvSS6dmEdBEQ8Uqb537KQCiEJjGzcOVn2gPY8-4fzwdsrDGMSN7mMsBNB78hopsPkOXcWJEgDgeN_C9IOHyc9Yxb5CByurTrj0lqBwIp7aX5wuLtWO_NhEnVrJChig2ad5sHv5yVLlPQV4tD9hrNDOmNZgtbFX5bA8Xux-jHoxsY7Jy3L4JlEM5wJB_VS39ESr4VSwo5qH1dqHImWEJt-6TnMN0TKfb8vuD4mSOspHtD9ZrUIn2y-wcy_J0lJ3D0WRG5q1Lh8vFRBo2u6SuZiFyr-cKc3euo7lwyl0WYOLucFGIMysFDruUe0M3P9PWTz4XtUr7S7Ggikr5ov7OH74Uoq6prQfjvAdnrl5ISXJIo89jt567tIOz6R_MfXuhwcNy3q8vnJJ_kDisvly0gpP4PPcDoooLLVAGSILvwridOpr2WR3FyMtRUdpU-uu3GgVKhPYO_BNQMj7mUPUi05SkckmP6CloUQ9wPF1s7mLVvu_ZdWz4qoB0OiQnEB3Y5EbIhcisrUHrTxV59hHXL6sgGfiWtuPskb7P51eW7zOmh6zIGm44qL-C_pWDXp4ZW-GK4F7VThLRTwTeBQGx7mfsGjNywW1hZEyWNvMj63yEofqYTJdq14jTjHgWtdj2wALMvzIQxeXDmSpjsP0D4OrH094g0R-a0afGfs9L5cGr03kPxZOJe08qau7h62T2OX6G9Jpt0Ns86_Q4HKoVEB0j6Wmrz4pVMQ_dcj8vOieEDVzkGZpvPC-4t5Xeq8vkIFeuIDfyerFyUdxMH6wIJWK2gS63f39iQUdLIQ7K0RdTKCXqgp7qKEL1Gd-nT8_jbXfMPgDtC7UMMNlCLk92Eknw6pYF-TVFyMLsHdTQVT53faHRoNHkr86eZ4Aq85FZOKbHF0ECp4q5s8fF8UC0A42I2zr8fwlkIh4pn4WGraTdTHvvZsPFTPEXJZF40x7w-PH9Fhr-JJdJnAHIXNDNRx6xmPQJJxdbAKbkCc9BSHJVGJxFeHPdx0BEdFqH9EYEsCZv45T6mq_GGg-sqO-cT81JQxPhv33TnGoJ_3jVAGke-IFR6jxsuLCXvnEmOSDeBKziAl6FxEB6v19Q36HAAG3QTOgpPaS9aKcrZ5HmewuE753gYF_45kKzHf70fiaBwUGJkwaCXbWOweBfHl1tMwVu-N143611OhtnSAQkR5HSlVVuuyxsw-96IohDvOnpZjeXFbvkoKIxnnnkmards1YTt9Z9TKScu3xCv-2n-CiWA2rqSHhyl6x-MQCZVYiXNiPl7d3qJHdJtGX1KevhNfExF2UgicV8pkLNl5fNLHsdFWJ7XgeNLcU4B1AOcSxBu1LwJisjdfcPdiORcKIoxYN94vdfEpf_gMmKupMo8GKkEgE3oi-JObTd8i2d_7by2REBwWVNb7w0ThX9fLNzYr4D96fOpJF3Q56OZq0kDOS_iwFpmsm3BNM6q9jd3fPfk5VsupvmsGCXJaPBMg.GnpfxIAvhbLpGGhEyBCjig HTTP/1.1Host: sf-renderx-us-east-1.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /bundles/pdfworker.71b2fed3d97c2433b14536a2de71ac7a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=EQw0OdL9m80Nc181bg3cIrXOyD0i3CL6NIa0XAoxRWuxAgZmxIvpaZUVtQF9C7oq7R8X6TE4dfOr6Za0pDmqba1+5+AEKMZ4hbf8GALtRfiGfjB4xTZB3vFJr18K5k0i9lOSLQ5dtm32Q4r5PiQ61pj827q7vywfZ8rO0Dt/BohtnCRdMzsx3Ta9dwNfkwACA/sJRza703aiIW6yGiH2xfwi6j4GYac29vDq4d5VVuNJFj6y8ItrP1nf9ycfrBeC; AWSALBTGCORS=EQw0OdL9m80Nc181bg3cIrXOyD0i3CL6NIa0XAoxRWuxAgZmxIvpaZUVtQF9C7oq7R8X6TE4dfOr6Za0pDmqba1+5+AEKMZ4hbf8GALtRfiGfjB4xTZB3vFJr18K5k0i9lOSLQ5dtm32Q4r5PiQ61pj827q7vywfZ8rO0Dt/BohtnCRdMzsx3Ta9dwNfkwACA/sJRza703aiIW6yGiH2xfwi6j4GYac29vDq4d5VVuNJFj6y8ItrP1nf9ycfrBeC; AWSALB=rGsH05G0IIwdTb88bC4HQtGedx7lCd9o91QVPeygY17WNsZsTy+Sdhwtm18HxUu//LoFBfMr0lcylYkPrxB1OOXkGJjBIBRUJzKiLxyLBV7Vnu/ZjZzWuAm/j3G9; AWSALBCORS=rGsH05G0IIwdTb88bC4HQtGedx7lCd9o91QVPeygY17WNsZsTy+Sdhwtm18HxUu//LoFBfMr0lcylYkPrxB1OOXkGJjBIBRUJzKiLxyLBV7Vnu/ZjZzWuAm/j3G9 |
Source: global traffic | HTTP traffic detected: GET /service/contentviewer/eventpipeline/preview?r=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..B2aVGXdwQELWM5zpldm8RA.D0SqzqVCoVEmm5nrmtYRUpSxdvbkV-kozB2t42aKeolSvyFtvpL4Cf-lc7ykmn3be3zVhmiD5nxrQgfbT-LEZmrye-Ik0Qk8jenFcr8YNFB4V8w8ullDnKE5g9LncYoUiiDzJVD6ljxN_jfPafXZdpzLi8P75TUzvPuB0I8nCuFP3iEizpTm8E-KLBnhvSnFpQbNMnoZfW6jU0nnOi63SWrV8LsRLHFAmUEVDhi0AEm7JOY-ooGhP-6DDALy9ojky8gslV_kRkPZ8vHXSBATUHP4V3ZIq2FvKiqQ1FPaGMmq9ofN4LMlsmq6Q9VZqtXy89BYadpZer4YyqWCP3D33Efd1YMn-mOILPlb5lJfHZvCV4qe7g3zaZS60HDVR64QSCVQnQnGB4ge-149oY2CAKYx6iANfCOXmZDXzLdgUihGleEYEPr5TNRr1SKTiow7.oii1bhU1Lby7x5CKv1nKlQ HTTP/1.1Host: sf-cv.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic | HTTP traffic detected: GET /bundles/pdfworker.71b2fed3d97c2433b14536a2de71ac7a.js HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=14mRXilXSw/R+HLkK++/PeEnaw4h7tU470KfUxCtTMEAtycxewuZ1qoxqU3nLkfZiiJOv2PWXL2mDHrvRGKQFhbzTN88yWY+Oi9S76Z8xXSB6ET/MXU5nkJ0bnThVNPw1tMqGv4rtxVH4tso454Ye+0N0fqfsFWqIbI7q1pE2E85GdAL4q+m9AqKRZzEPLl/DGT56UgGCyBmXrxQRgwOZjFhYSIIlhvvSSMifLcxrBqbEG416J7TCD24nkSSWs/9; AWSALBTGCORS=14mRXilXSw/R+HLkK++/PeEnaw4h7tU470KfUxCtTMEAtycxewuZ1qoxqU3nLkfZiiJOv2PWXL2mDHrvRGKQFhbzTN88yWY+Oi9S76Z8xXSB6ET/MXU5nkJ0bnThVNPw1tMqGv4rtxVH4tso454Ye+0N0fqfsFWqIbI7q1pE2E85GdAL4q+m9AqKRZzEPLl/DGT56UgGCyBmXrxQRgwOZjFhYSIIlhvvSSMifLcxrBqbEG416J7TCD24nkSSWs/9; AWSALB=Wefp3cyip/4Up1QfQXkcVHTyrClaOzcz/Tr7ksj0L1GT/ceL6ZVSC0rMuqLeLkL6K0JuIviJKdrVSoQrpnSw1C/gg9GQsVHrifEtHuAQSA9uUB9Ub7ZWRuIyMl30; AWSALBCORS=Wefp3cyip/4Up1QfQXkcVHTyrClaOzcz/Tr7ksj0L1GT/ceL6ZVSC0rMuqLeLkL6K0JuIviJKdrVSoQrpnSw1C/gg9GQsVHrifEtHuAQSA9uUB9Ub7ZWRuIyMl30 |
Source: global traffic | HTTP traffic detected: GET /renderx/RenderOutput/afad6241-3adc-5bd5-543c-575a98f97490/VOWithPDFSecurity/e83bb7643ac0d1f4099d27743cdd3d54?AWSAccessKeyId=ASIAWSHYYC7R75LXCNRK&Expires=1728881033&x-amz-security-token=IQoJb3JpZ2luX2VjEHQaCXVzLWVhc3QtMSJHMEUCIQDnk%2FZ8CbYRQfmJwKy5mPChCIbntDEGyVmTtSvRrIcf1QIgCD2NZaySmsfu7BDk5%2Beso%2BeZRKAmXAQ2UK3jYO6T4T8qxAUIzf%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FARAAGgw0NTE0OTMyMzg3NTUiDAlDstNqU3YZiK0l5SqYBT3%2BnPrVb6W8GMOilWEXz0CvsOcvj4ECjP%2FOpyUj6oZ38kBOpd8otv0C8oGuPIaBMXOcuXTtdQ6R70emC%2FQB%2BGF4GCc3IlYqOqXwZtzvvUXsLKMDa1F7LRegzKhu8zPWQ3v%2BDJ0GZC0NguzWJ%2Bx0%2BW%2BYxuaxR6vYmLo4ltBi1V4WDOFAxYdeLsZi7qEtrOmS03Ab%2FsH%2B3fOQD%2F6XTwzRdlgGeTGewYzLpWZQ1JQYlHufgB4EfSTZsYBjTOIFQOFYJhTTMY7s%2FnxLUCaS1gKDrirHoM40H1xjkN6q5ir%2BmPq2wnCHQLe%2BknkcVcYA3kk9zfEp21SRwAubw2YfBN4jvWZVdaXjzBgs52ppW2MkgQFIC%2F%2BLx9ugW1ciwApyYg1tMY5fzXi9Ucg6L5WMybpf8eqNU4uOsgs8xElmAIuD%2FSTxzQ6p6X%2FdVorutpCn%2F28lq%2BuB1ghD8s5uPVkYFC3wtwdeZaxOuuEz5ErbCYvHBZa59UkuntR8V9MIR%2F7rUPurqDC681RjALoDHf7DQtMORpK3V5%2BqXsUenZ3Mf2s23kkjZXrv2NsAxb9sEUk7GWnISfuoqA4KL8NOm9%2BmWjWg%2FWodBKyU6nSFhzYZMoieIKHr4q%2FQnWo%2BvN4U1HuI9wLI2o%2BhvcHQSLMDMOsbLKksgmVte3f%2BuXbwEPPiAGvDvVVZoghLs4O1F7m6hGy63I1a8vNpIThQFLLAAuiZyUPKHcgae3Uq6w%2F0MzyRiI5GqH6p019f2XOzb8RVT7THOB7GTX2DvbRA6wMgLbc6fHmZEAeL5hvvnO%2F8CklAicOdAnXhzGev3VDwN9rVfW4mQ8675XFGGvIWiCjbEGtF164PDHhx%2BvOYsH%2BgI81EP7TW2DQMOdZuUQx8khcwj6OyuAY6sQHxED0aJ%2BoPWgJOCvdJpG763MHSJ8w9%2FpI%2BCjl7WG8jAhQDRztFA%2BeEV1vn5R1QKMOMEQvnw3wks2HwX4KUZkVwE5AiJXrxZ3VzSANCz1Rwj92BK4g%2BHEmfbi7XL2wBP0zPsWQK6hsputES8iO1FzDwgrYJJQjpdRnXmShAywETrA653H5NEXiXrosGNaafqR3c9HpGH2jMHi49AIH9KhervS6INrPAvl9GSWse%2FBq%2FwFQ%3D&Signature=TaN9mgZypC0IQyoasiIGJJ2uIUY%3D HTTP/1.1Host: sf-temp-us-east-1-production.s3.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: identityAccept-Language: en-US,en;q=0.9Range: bytes=0-65535 |
Source: global traffic | HTTP traffic detected: GET /renderx/RenderOutput/afad6241-3adc-5bd5-543c-575a98f97490/VOWithPDFSecurity/e83bb7643ac0d1f4099d27743cdd3d54?AWSAccessKeyId=ASIAWSHYYC7R75LXCNRK&Expires=1728881033&x-amz-security-token=IQoJb3JpZ2luX2VjEHQaCXVzLWVhc3QtMSJHMEUCIQDnk%2FZ8CbYRQfmJwKy5mPChCIbntDEGyVmTtSvRrIcf1QIgCD2NZaySmsfu7BDk5%2Beso%2BeZRKAmXAQ2UK3jYO6T4T8qxAUIzf%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FARAAGgw0NTE0OTMyMzg3NTUiDAlDstNqU3YZiK0l5SqYBT3%2BnPrVb6W8GMOilWEXz0CvsOcvj4ECjP%2FOpyUj6oZ38kBOpd8otv0C8oGuPIaBMXOcuXTtdQ6R70emC%2FQB%2BGF4GCc3IlYqOqXwZtzvvUXsLKMDa1F7LRegzKhu8zPWQ3v%2BDJ0GZC0NguzWJ%2Bx0%2BW%2BYxuaxR6vYmLo4ltBi1V4WDOFAxYdeLsZi7qEtrOmS03Ab%2FsH%2B3fOQD%2F6XTwzRdlgGeTGewYzLpWZQ1JQYlHufgB4EfSTZsYBjTOIFQOFYJhTTMY7s%2FnxLUCaS1gKDrirHoM40H1xjkN6q5ir%2BmPq2wnCHQLe%2BknkcVcYA3kk9zfEp21SRwAubw2YfBN4jvWZVdaXjzBgs52ppW2MkgQFIC%2F%2BLx9ugW1ciwApyYg1tMY5fzXi9Ucg6L5WMybpf8eqNU4uOsgs8xElmAIuD%2FSTxzQ6p6X%2FdVorutpCn%2F28lq%2BuB1ghD8s5uPVkYFC3wtwdeZaxOuuEz5ErbCYvHBZa59UkuntR8V9MIR%2F7rUPurqDC681RjALoDHf7DQtMORpK3V5%2BqXsUenZ3Mf2s23kkjZXrv2NsAxb9sEUk7GWnISfuoqA4KL8NOm9%2BmWjWg%2FWodBKyU6nSFhzYZMoieIKHr4q%2FQnWo%2BvN4U1HuI9wLI2o%2BhvcHQSLMDMOsbLKksgmVte3f%2BuXbwEPPiAGvDvVVZoghLs4O1F7m6hGy63I1a8vNpIThQFLLAAuiZyUPKHcgae3Uq6w%2F0MzyRiI5GqH6p019f2XOzb8RVT7THOB7GTX2DvbRA6wMgLbc6fHmZEAeL5hvvnO%2F8CklAicOdAnXhzGev3VDwN9rVfW4mQ8675XFGGvIWiCjbEGtF164PDHhx%2BvOYsH%2BgI81EP7TW2DQMOdZuUQx8khcwj6OyuAY6sQHxED0aJ%2BoPWgJOCvdJpG763MHSJ8w9%2FpI%2BCjl7WG8jAhQDRztFA%2BeEV1vn5R1QKMOMEQvnw3wks2HwX4KUZkVwE5AiJXrxZ3VzSANCz1Rwj92BK4g%2BHEmfbi7XL2wBP0zPsWQK6hsputES8iO1FzDwgrYJJQjpdRnXmShAywETrA653H5NEXiXrosGNaafqR3c9HpGH2jMHi49AIH9KhervS6INrPAvl9GSWse%2FBq%2FwFQ%3D&Signature=TaN9mgZypC0IQyoasiIGJJ2uIUY%3D HTTP/1.1Host: sf-temp-us-east-1-production.s3.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://totalcanterbury0.sharefile.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: identityAccept-Language: en-US,en;q=0.9Range: bytes=65536-99256If-Range: "102f2460e4fd2bff54305335f7318409" |
Source: global traffic | HTTP traffic detected: GET /bundles/2bd6acf87747a8fbd76a.gif HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=9sWw/ESRXXdl6oiPBnoOonakZ1ye8nIuxWehEndVWlRi79uKFa6mEWYY1jttk2ElyoWT0kvRlSK8zEbezgknO8VMYeTWytpdqjBQuh8DaGSXQoWiHms9MkqvVcsIK4pNDkJzG9E90KpJ82To1+uI0Lg9nQO1ArCe1qF8wq49Gm9ERpHCZtB1dJEAqjwEbZPyMjCwzQtuMes6goj3+TGsas6TYd4otK8Habl9IIPvIq3n8qR5ZZN3Tsy3HivOpKGN; AWSALBTGCORS=9sWw/ESRXXdl6oiPBnoOonakZ1ye8nIuxWehEndVWlRi79uKFa6mEWYY1jttk2ElyoWT0kvRlSK8zEbezgknO8VMYeTWytpdqjBQuh8DaGSXQoWiHms9MkqvVcsIK4pNDkJzG9E90KpJ82To1+uI0Lg9nQO1ArCe1qF8wq49Gm9ERpHCZtB1dJEAqjwEbZPyMjCwzQtuMes6goj3+TGsas6TYd4otK8Habl9IIPvIq3n8qR5ZZN3Tsy3HivOpKGN; AWSALB=oJqzyb8cW5dhKRMD8jiSGs0zNGEpeNyGnJ95vprX2IlN5mEhr4UViaBU7H7+V40abW6SmvJ96bwRXCrooPa08Xo72t+oxaidjQRnQxBVnesaF0RLzlwnrW69aUj9; AWSALBCORS=oJqzyb8cW5dhKRMD8jiSGs0zNGEpeNyGnJ95vprX2IlN5mEhr4UViaBU7H7+V40abW6SmvJ96bwRXCrooPa08Xo72t+oxaidjQRnQxBVnesaF0RLzlwnrW69aUj9 |
Source: global traffic | HTTP traffic detected: GET /bundles/2bd6acf87747a8fbd76a.gif HTTP/1.1Host: totalcanterbury0.sharefile.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: .AspNetCore.Session=CfDJ8OCkC%2F7n4glIrxyAxDPzfZtF%2Fr1q0C9lA5Zzkpw4TX46Q1DDHrzCPcfNGmlu5qJhC%2Bt6N%2BsBSY%2FmkVNsbJLHgCTXiE%2Ff70xQaSpoDHIpldWdqXncTmqY2Sz3sAfLhvBH51LbrG4CF3cTL8RusB5FtfPL7wA8pB3GnbIuEwT%2BESgp; aws-waf-token=4adfd233-961b-48fd-9d08-1cf5b8115e95:EQoAgrIZOH2mAAAA:oCOLW6glqF6hKD5H1QUPjiscrHQdx1i+W1sgali94eRNi4Ioh/iDVWDp2f92gZe9t1oLFSI9qt65z8Md3aP96zdz7x2KBDkUn9jTedWUe8tPxBh3gey1x5RGwKheBSVaWUOPt8HmhUWPvxrqtD56KT5EU0wHlJBiicX0rLdJIoOT2rh1PYDo/im9SQSsXL9WaTa6NjIH/fUyyVsytjwQ9I+OaEZiRccPLxBZGXLoUmeKniTH37ojbkBSailagMxGe7UmycCiYg==; AWSALBTG=gxdvGGMpfhFLzuDO1J425KwL+KZcAf16E0Krpt55hr+vYZWA8azQtVIrZviksIRjUkqgQ6eCB8taAmaLZZQJgMeV0kgIDbfjoWuLCcOY9QL7aC8f6/xYupB8aA/03fA89IcVPvGCi3NMou3nGWsE8+9kWNqjLl2vYe/umvLH++Kx+6VyKVcgcZZXFNca5fzF/o03sWVWpXlRf1iAQofdLoeS0/9g2uxJ8wosKy1v7sh5vEhzYVUcR2lQ9cxqg7pC; AWSALBTGCORS=gxdvGGMpfhFLzuDO1J425KwL+KZcAf16E0Krpt55hr+vYZWA8azQtVIrZviksIRjUkqgQ6eCB8taAmaLZZQJgMeV0kgIDbfjoWuLCcOY9QL7aC8f6/xYupB8aA/03fA89IcVPvGCi3NMou3nGWsE8+9kWNqjLl2vYe/umvLH++Kx+6VyKVcgcZZXFNca5fzF/o03sWVWpXlRf1iAQofdLoeS0/9g2uxJ8wosKy1v7sh5vEhzYVUcR2lQ9cxqg7pC; AWSALB=M5rSIczDNDa5CdD7PaH/erZ4i1SsKjk4Y65BfCZNgWFKfKqxzFMtERwqSve5Ej0zfggllBf55y+WdTTnRkp2BKwHy2DPmd5izjSEAvgTZS4ZoEkgOcT/cHgxFAXU; AWSALBCORS=M5rSIczDNDa5CdD7PaH/erZ4i1SsKjk4Y65BfCZNgWFKfKqxzFMtERwqSve5Ej0zfggllBf55y+WdTTnRkp2BKwHy2DPmd5izjSEAvgTZS4ZoEkgOcT/cHgxFAXU |
Source: global traffic | HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=vhByzrF1ExPNbY7&MD=wgvYytUz HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com |
Source: global traffic | HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: global traffic | HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: http://b.c2r.ts.cdn.office.net/pr |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: http://f.c2r.ts.cdn.office.net/pr |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: http://olkflt.edog.officeapps.live.com/olkflt/outlookflighting.svc/api/glides |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: http://test-exp-s2s.msedge.net/ab/ |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: http://test-exp-s2s.msedge.net/ab/780dddc8-18a1-5781-895a-a690464fa89ccacheFileFullNotificationPerce |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: http://test-exp-s2s.msedge.net/ab/chttp://test-exp-s2s.msedge.net/ab/c( |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: http://test-exp-s2s.msedge.net/ab/ge |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: http://test-exp-s2s.msedge.net/ab/gecacheFileFullNotificationPercentagehttp://test-exp-s2s.msedge.ne |
Source: chromecache_205.2.dr, chromecache_169.2.dr | String found in binary or memory: http://totalcanterbury0.sharefile.com/share/view/034ada86e7d04d74 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: http://weather.service.msn.com/data.aspx |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinsinstallation.store.office.com/app/acquisitionlogging |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinsinstallation.store.office.com/app/download |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinsinstallation.store.office.com/appinstall/authenticated |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinsinstallation.store.office.com/appinstall/preinstalled |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinsinstallation.store.office.com/appinstall/unauthenticated |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinsinstallation.store.office.com/orgid/appinstall/authenticated |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinslicensing.store.office.com/apps/remove |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinslicensing.store.office.com/commerce/query |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinslicensing.store.office.com/entitlement/query |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinslicensing.store.office.com/orgid/apps/remove |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://addinslicensing.store.office.com/orgid/entitlement/query |
Source: chromecache_228.2.dr, chromecache_173.2.dr | String found in binary or memory: https://agent.pendo.io/licenses |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://analysis.windows.net/powerbi/api |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://apc.learningtools.onenote.com/learningtoolsapi/v2.0/getfreeformspeech |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.aadrm.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.aadrm.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.addins.omex.office.net/api/addins/search |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.addins.omex.office.net/appinfo/query |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.addins.omex.office.net/appstate/query |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.addins.store.office.com/addinstemplate |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.addins.store.office.com/app/query |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.addins.store.officeppe.com/addinstemplate |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.cortana.ai |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.diagnostics.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.diagnosticssdf.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.diagnosticssdf.office.com/v2/feedback |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.diagnosticssdf.office.com/v2/file |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.microsoftstream.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.microsoftstream.com/api/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.office.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.officescripts.microsoftusercontent.com/api |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.onedrive.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.powerbi.com/beta/myorg/imports |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.powerbi.com/v1.0/myorg/datasets |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.powerbi.com/v1.0/myorg/groups |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://api.scheduler. |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp, 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://apis.live.net/v5.0/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://apis.mobile.m365.svc.cloud.microsoft |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://app.powerbi.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://arc.msn.com/v4/api/selection |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://asgsmsproxyapi.azurewebsites.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://augloop.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://augloop.office.com/v2 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://augloop.office.com;https://augloop-int.officeppe.com;https://augloop-dogfood.officeppe.com;h |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://autodiscover-s.outlook.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://autodiscover-s.outlook.com/autodiscover/autodiscover.xml |
Source: HxAccounts.exe, 0000000C.00000002.2544685622.0000021460200000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://az804205.vo.msecnd.net/ |
Source: HxAccounts.exe, 0000000C.00000002.2544685622.0000021460200000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://az804205.vo.msecnd.net/f |
Source: HxAccounts.exe, 0000000C.00000002.2544685622.0000021460200000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://az815563.vo.msecnd.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://canary.designerapp. |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cdn.designerapp.osi.office.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cdn.designerapp.osi.office.net/designer-mobile |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cdn.designerapp.osi.office.net/designerapp/fonts |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cdn.designerapp.osi.office.net/designerapp/mobile-assets |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cdn.designerapp.osi.office.net/designerapp/mobile-dynamic-strings |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cdn.designerapp.osi.office.net/designerapp/mobile-home-screen |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cdn.entity. |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cdn.hubblecontent.osi.office.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cdn.int.designerapp.osi.office.net/fonts |
Source: chromecache_228.2.dr, chromecache_173.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/agent/static/74b07336-7560-45fc-7cd1-95032a784d52 |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/DGXiXepNeRvpgcvqVVwgerMyl9c/FzHL74W |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/RKXGQO-T4hA-4ZEVZHET-2hQSkA/2qzaI4Q |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/WPvkzGkOrfIvp3qkN5N54f_1PEk/YiOA-0Y |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/eWI7aCe5RTaQQM3QzyK1rqqWcVM/XNJ1F6A |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/freMllnYvBAwsP7Q8plLkQuQk9o/iIvmdJJ |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/jfhRXEM-T3XDOIl2P_kjewAdeGc/LhZTKWo |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/kRiIYerdgZdzqYlUiCx61iLjnBU/vJf7TMD |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/mfS2ulYoG7dN1QSakrLPIk6LA7Q/4_xFPLt |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/moENhVNGkRpdnhKRCzqkG8MUQPk/Mp9uRb2 |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/njPoQ1-6YEZw5vUbZJ0_GVUQ91Y |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/qgx_AaYBkGN6StQWJLhgBhCmZsY/ZEFqtCH |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/u6RYL2wEa9xrpUJMTeOXl41AeJI/qrJmWAD |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/wotSbq5SNToNGIBxeYKbdsIn35Q |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide-content/z6GAMp5KCypHWLnasLOIn0RVcPQ/vzuAMPt |
Source: chromecache_169.2.dr | String found in binary or memory: https://citrix-sharefile-content.customer.pendo.io/guide.-323232.1622565221517.css |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://client-office365-tas.msedge.net/ab |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://clients.config.office.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://clients.config.office.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://clients.config.office.net/c2r/v1.0/DeltaAdvisory |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://clients.config.office.net/c2r/v1.0/InteractiveInstallation |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://clients.config.office.net/user/v1.0/android/policies |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://clients.config.office.net/user/v1.0/ios |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://clients.config.office.net/user/v1.0/mac |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://clients.config.office.net/user/v1.0/tenantassociationkey |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cloudfiles.onenote.com/upload.aspx |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://config.edge.skype.com/config/v1/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://config.edge.skype.com/config/v1/Office |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://config.edge.skype.com/config/v1/blocklowlabelimageloadsdevicecapabilitycamera |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://config.edge.skype.com/config/v1/controlflowguardhttps://config.edge.skype.net/config/v1/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://config.edge.skype.com/config/v2/Office |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://config.edge.skype.net/config/v1/ |
Source: HxAccounts.exe, 0000000C.00000002.2544763182.000002146022B000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://config.edge.skype.net/config/v1/P |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://consent.config.office.com/consentcheckin/v1.0/consents |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://consent.config.office.com/consentweb/v1.0/consents |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cortana.ai |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cortana.ai/api |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://cr.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://d.docs.live.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://dataservice.o365filtering.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://dataservice.o365filtering.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://dataservice.o365filtering.com/PolicySync/PolicySync.svc/SyncFile |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://dataservice.protection.outlook.com/PolicySync/PolicySync.svc/SyncFile |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://dataservice.protection.outlook.com/PsorWebService/v1/ClientSyncFile/MipPolicies |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://designerapp.azurewebsites.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://designerappservice.officeapps.live.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://dev.cortana.ai |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://dev.virtualearth.net/REST/V1/GeospatialEndpoint/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://dev0-api.acompli.net/autodetect |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://devnull.onenote.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://directory.services. |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ecs.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ecs.office.com/config/v1/Designer |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ecs.office.com/config/v2/Office |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://edge.skype.com/registrar/prod |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://edge.skype.com/rps |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/Refresh/v1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/Resolve/v1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/Search/v1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/StockHistory/v1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/ipcheck/v1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/web/Metadata/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/web/Metadata/metadata.json |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/web/view/desktop/main.cshtml |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://enrichment.osi.office.net/OfficeEnrichment/web/view/web/main.cshtml |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://entitlement.diagnostics.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://entitlement.diagnosticssdf.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://eur.learningtools.onenote.com/learningtoolsapi/v2.0/getfreeformspeech |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://excel.uservoice.com/forums/304936-excel-for-mobile-devices-tablets-phones-android |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://globaldisco.crm.dynamics.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://graph.ppe.windows.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://graph.ppe.windows.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://graph.windows.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://graph.windows.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/api/pivots/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/api/telemetry |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/browse?cp=remix3d |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/browse?secureurl=1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/microsoftcontent?initpivot=icons&premium=1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/microsoftcontent?initpivot=stockimages&premium=1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/microsoftcontent?initpivot=stockvideos&premium=1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://hubblecontent.osi.office.net/contentsvc/microsofticon? |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ic3.teams.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://incidents.diagnostics.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://incidents.diagnosticssdf.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://inclient.store.office.com/gyro/client |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://inclient.store.office.com/gyro/clientstore |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://insertmedia.bing.office.net/images/hosted?host=office&adlt=strict&hostType=Immersive |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Bing |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=ClipArt |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Facebook |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Flickr |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=OneDrive |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://insertmedia.bing.office.net/odc/insertmedia |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://invites.office.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://learningtools.onenote.com/learningtoolsapi/v2.0/GetFreeformSpeech |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://learningtools.onenote.com/learningtoolsapi/v2.0/Getvoices |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://lifecycle.office.com |
Source: HxAccounts.exe, 0000000C.00000002.2547769814.00000214625F5000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://login.live.com |
Source: HxAccounts.exe, 0000000C.00000002.2547769814.00000214625F5000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://login.live.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://login.microsoftonline.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://login.microsoftonline.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://login.microsoftonline.com/organizations |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://login.windows-ppe.net/common/oauth2/authorize |
Source: HxAccounts.exe, 0000000C.00000002.2548308478.000002146747E000.00000004.00000020.00020000.00000000.sdmp, 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://login.windows.local |
Source: HxAccounts.exe, 0000000C.00000002.2548308478.000002146747E000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://login.windows.local/ |
Source: HxAccounts.exe, 0000000C.00000002.2548308478.000002146747E000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://login.windows.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://login.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/oauth2/authorize |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://login.windows.net/common/oauth2/authorize |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://loki.delve.office.com/api/v1/configuration/officewin32/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://lookup.onenote.com/lookup/geolocation/v1 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://make.powerautomate.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://management.azure.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://management.azure.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://messagebroker.mobile.m365.svc.cloud.microsoft |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://messaging.action.office.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://messaging.action.office.com/setcampaignaction |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://messaging.action.office.com/setuseraction16 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://messaging.engagement.office.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://messaging.engagement.office.com/campaignmetadataaggregator |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://messaging.lifecycle.office.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://messaging.lifecycle.office.com/getcustommessage16 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://messaging.office.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://metadata.templates.cdn.office.net/client/log |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://mss.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://my.microsoftpersonalcontent.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://nam.learningtools.onenote.com/learningtoolsapi/v2.0/getfreeformspeech |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ncus.contentsync. |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ncus.pagecontentsync. |
Source: HxAccounts.exe, 0000000C.00000002.2544718905.0000021460213000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://nexus.officeapps.live.com |
Source: HxAccounts.exe, 0000000C.00000002.2544718905.0000021460213000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://nexusrules.officeapps.live.comP# |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://o365auditrealtimeingestion.manage.office.com/api/userauditrecord |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ocos-office365-s2s.msedge.net/ab |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://odc.officeapps.live.com/odc/stat/images/OneDriveUpsell.png |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://odc.officeapps.live.com/odc/xml?resource=OneDriveSignUpUpsell |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://odc.officeapps.live.com/odc/xml?resource=OneDriveSyncClientUpsell |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ods-diagnostics-ppe.trafficmanager.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ofcrecsvcapi-int.azurewebsites.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://officeapps.live.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://officeci.azurewebsites.net/api/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://officemobile.uservoice.com/forums/929800-office-app-ios-and-ipad-asks |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://officepyservice.office.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://officepyservice.office.net/service.functionality |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://officesetup.getmicrosoftkey.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ogma.osi.office.net/TradukoApi/api/v1.0/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://omex.cdn.office.net/addinclassifier/officeentities |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://omex.cdn.office.net/addinclassifier/officeentitiesupdated |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://omex.cdn.office.net/addinclassifier/officesharedentities |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://omex.cdn.office.net/addinclassifier/officesharedentitiesupdated |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://onedrive.live.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://onedrive.live.com/about/download/?windows10SyncClientInstalled=false |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://onedrive.live.com/embed? |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://otelrules.azureedge.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://otelrules.svc.static.microsoft |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://outlook.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://outlook.office.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://outlook.office.com/autosuggest/api/v1/init?cvid= |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://outlook.office365.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://outlook.office365.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://outlook.office365.com/api/v1.0/me/Activities |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://outlook.office365.com/autodiscover/autodiscover.json |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://outlook.office365.com/connectors |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://ovisualuiapp.azurewebsites.net/pbiagave/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://pages.store.office.com/appshome.aspx?productgroup=Outlook |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://pages.store.office.com/review/query |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://pages.store.office.com/webapplandingpage.aspx |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://partnerservices.getmicrosoftkey.com/PartnerProvisioning.svc/v1/subscriptions |
Source: chromecache_228.2.dr, chromecache_173.2.dr | String found in binary or memory: https://pendo-static-5352587489443840.storage.googleapis.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://pf.directory.live.com/profile/mine/System.ShortCircuitProfile.json |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://pf.directory.live.com/profile/mine/WLX.Profiles.IC.json |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://portal.office.com/account/?ref=ClientMeControl |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://posarprodcssservice.accesscontrol.windows.net/v2/OAuth2-13 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://powerlift-frontdesk.acompli.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://powerlift.acompli.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://powerpoint.uservoice.com/forums/288952-powerpoint-for-ipad-iphone-ios |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://prod-global-autodetect.acompli.net/autodetect |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://prod.mds.office.com/mds/api/v1.0/clientmodeldirectory |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://pushchannel.1drv.ms |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://r4.res.office365.com/footprintconfig/v1.7/scripts/fpconfig.json |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://res.cdn.office.net |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://res.cdn.office.net/mro1cdnstorage/fonts/prod/4.40 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://res.cdn.office.net/polymer/models |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://res.getmicrosoftkey.com/api/redemptionevents |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://rpsticket.partnerservices.getmicrosoftkey.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://safelinks.protection.outlook.com/api/GetPolicy |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://service.officepy.microsoftusercontent.com/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://service.powerapps.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://settings.outlook.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://shell.suite.office.com:1443 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://skyapi.live.net/Activity/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://sr.outlook.office.net/ws/speech/recognize/assistant/work |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://staging.cortana.ai |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://storage.live.com/clientlogs/uploadlocation |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://store.office.cn/addinstemplate |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://store.office.de/addinstemplate |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://substrate.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://substrate.office.com/Notes-Internal.ReadWrite |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://substrate.office.com/search/api/v1/SearchHistory |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://substrate.office.com/search/api/v2/init |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://syncservice.protection.outlook.com/PolicySync/PolicySync.svc/SyncFile |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://tasks.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://templatesmetadata.office.net/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://uci.cdn.office.net/mirrored/smartlookup/current/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://uci.officeapps.live.com/OfficeInsights/web/views/insights.desktop.html |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://uci.officeapps.live.com/OfficeInsights/web/views/insights.immersive.html |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://useraudit.o365auditrealtimeingestion.manage.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://visio.uservoice.com/forums/368202-visio-on-devices |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://web.microsoftstream.com/video/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://webdir.online.lync.com/autodiscover/autodiscoverservice.svc/root/ |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://webshell.suite.office.com |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://word-edit.officeapps.live.com/we/rrdiscovery.ashx |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://word.uservoice.com/forums/304948-word-for-ipad-iphone-ios |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://wus2.contentsync. |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://wus2.pagecontentsync. |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://www.bingapis.com/api/v7/urlpreview/search?appid=E93048236FE27D972F67C5AF722136866DF65FA2 |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://www.odwebp.svc.ms |
Source: 3B28D87C-1702-4267-8E30-2F7FAA6BA453.7.dr | String found in binary or memory: https://www.yammer.com |
Source: HxAccounts.exe, 0000000C.00000002.2548308478.000002146747E000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://xsts.auth.xboxlive.com |
Source: HxAccounts.exe, 0000000C.00000002.2548308478.000002146747E000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://xsts.auth.xboxlive.com/https://login.windows.net |
Source: HxAccounts.exe, 0000000C.00000002.2548308478.000002146747E000.00000004.00000020.00020000.00000000.sdmp | String found in binary or memory: https://xsts.auth.xboxlive.com50 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49744 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49986 |
Source: unknown | Network traffic detected: HTTP traffic on port 49817 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49743 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49985 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49742 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49984 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49741 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49983 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49740 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49982 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49981 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49980 |
Source: unknown | Network traffic detected: HTTP traffic on port 49932 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49898 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49852 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50131 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49737 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49979 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49736 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49978 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49735 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49977 |
Source: unknown | Network traffic detected: HTTP traffic on port 49772 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49976 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49975 |
Source: unknown | Network traffic detected: HTTP traffic on port 50085 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49973 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49972 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49971 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49970 |
Source: unknown | Network traffic detected: HTTP traffic on port 50165 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49784 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50004 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49909 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49969 |
Source: unknown | Network traffic detected: HTTP traffic on port 49978 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49886 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49968 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49967 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49966 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49965 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49964 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49963 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49962 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49961 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49960 |
Source: unknown | Network traffic detected: HTTP traffic on port 49966 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49760 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50108 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50073 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50028 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49805 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49959 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49958 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49957 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49956 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49955 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49954 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49953 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49952 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49951 |
Source: unknown | Network traffic detected: HTTP traffic on port 49839 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49864 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49950 |
Source: unknown | Network traffic detected: HTTP traffic on port 49944 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49910 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50051 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49796 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50153 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49949 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49948 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49947 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49946 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49945 |
Source: unknown | Network traffic detected: HTTP traffic on port 49737 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49944 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49943 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49788 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49787 |
Source: unknown | Network traffic detected: HTTP traffic on port 50061 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49786 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49785 |
Source: unknown | Network traffic detected: HTTP traffic on port 49922 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49784 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49783 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49782 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49781 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49780 |
Source: unknown | Network traffic detected: HTTP traffic on port 49968 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50026 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49807 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49759 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49779 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49778 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49777 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49776 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49775 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49774 |
Source: unknown | Network traffic detected: HTTP traffic on port 49862 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49773 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49772 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49770 |
Source: unknown | Network traffic detected: HTTP traffic on port 50095 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49830 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50155 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49991 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49769 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49768 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49766 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49765 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49764 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49763 |
Source: unknown | Network traffic detected: HTTP traffic on port 50038 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49762 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49761 |
Source: unknown | Network traffic detected: HTTP traffic on port 50143 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49760 |
Source: unknown | Network traffic detected: HTTP traffic on port 49840 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49896 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49770 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49956 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49759 |
Source: unknown | Network traffic detected: HTTP traffic on port 50083 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49757 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49999 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49756 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49998 |
Source: unknown | Network traffic detected: HTTP traffic on port 50121 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49754 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49996 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49753 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49995 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49752 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49994 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49751 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49993 |
Source: unknown | Network traffic detected: HTTP traffic on port 50016 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49750 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49992 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49991 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49990 |
Source: unknown | Network traffic detected: HTTP traffic on port 49786 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49874 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49747 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49934 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49748 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49747 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49746 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49745 |
Source: unknown | Network traffic detected: HTTP traffic on port 50036 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49672 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50151 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50116 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49769 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49803 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50071 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49849 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49900 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50106 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50105 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50108 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50107 |
Source: unknown | Network traffic detected: HTTP traffic on port 49837 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50109 |
Source: unknown | Network traffic detected: HTTP traffic on port 49929 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50100 |
Source: unknown | Network traffic detected: HTTP traffic on port 49872 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50102 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50101 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50104 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50103 |
Source: unknown | Network traffic detected: HTTP traffic on port 49964 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50128 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49798 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49735 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50117 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50116 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50119 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50118 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50111 |
Source: unknown | Network traffic detected: HTTP traffic on port 49930 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50110 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50113 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50112 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50115 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50114 |
Source: unknown | Network traffic detected: HTTP traffic on port 49745 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49986 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49850 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49757 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50128 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49798 |
Source: unknown | Network traffic detected: HTTP traffic on port 50012 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50127 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49797 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49796 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50129 |
Source: unknown | Network traffic detected: HTTP traffic on port 49952 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49794 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49793 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49792 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49791 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50120 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49790 |
Source: unknown | Network traffic detected: HTTP traffic on port 50093 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50122 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50121 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50124 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50123 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50126 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50125 |
Source: unknown | Network traffic detected: HTTP traffic on port 50048 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49825 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49884 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49907 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49789 |
Source: unknown | Network traffic detected: HTTP traffic on port 49779 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49859 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49894 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50106 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49942 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50081 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49919 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49954 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50014 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49788 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49827 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50046 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49882 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50141 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49976 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50118 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49815 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50024 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50163 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49860 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49998 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50058 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50002 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49920 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49926 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50054 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50053 |
Source: unknown | Network traffic detected: HTTP traffic on port 49789 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50056 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50055 |
Source: unknown | Network traffic detected: HTTP traffic on port 49766 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50058 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50057 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50059 |
Source: unknown | Network traffic detected: HTTP traffic on port 49961 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50061 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50060 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50063 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50062 |
Source: unknown | Network traffic detected: HTTP traffic on port 50102 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50045 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50148 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50065 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50064 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50067 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50066 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50069 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50068 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50070 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50072 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50071 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50074 |
Source: unknown | Network traffic detected: HTTP traffic on port 49823 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50073 |
Source: unknown | Network traffic detected: HTTP traffic on port 50080 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49790 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49869 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50076 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50075 |
Source: unknown | Network traffic detected: HTTP traffic on port 50057 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50078 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50077 |
Source: unknown | Network traffic detected: HTTP traffic on port 50114 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49892 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50079 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50081 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50080 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50083 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50082 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50085 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50084 |
Source: unknown | Network traffic detected: HTTP traffic on port 49904 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49847 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50087 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50086 |
Source: unknown | Network traffic detected: HTTP traffic on port 49870 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50089 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50088 |
Source: unknown | Network traffic detected: HTTP traffic on port 50079 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50090 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50092 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50091 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50094 |
Source: unknown | Network traffic detected: HTTP traffic on port 50136 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49983 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50093 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50096 |
Source: unknown | Network traffic detected: HTTP traffic on port 49938 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50095 |
Source: unknown | Network traffic detected: HTTP traffic on port 49811 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49754 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50018 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50017 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50019 |
Source: unknown | Network traffic detected: HTTP traffic on port 49951 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50010 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50012 |
Source: unknown | Network traffic detected: HTTP traffic on port 49916 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50055 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50011 |
Source: unknown | Network traffic detected: HTTP traffic on port 50090 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50014 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50013 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50016 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50015 |
Source: unknown | Network traffic detected: HTTP traffic on port 50161 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49776 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49845 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50029 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50028 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50021 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50020 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50022 |
Source: unknown | Network traffic detected: HTTP traffic on port 49742 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50025 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50024 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50027 |
Source: unknown | Network traffic detected: HTTP traffic on port 49780 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49879 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50026 |
Source: unknown | Network traffic detected: HTTP traffic on port 49985 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50021 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50030 |
Source: unknown | Network traffic detected: HTTP traffic on port 50138 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50067 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50039 |
Source: unknown | Network traffic detected: HTTP traffic on port 49995 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50011 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49928 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50032 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50031 |
Source: unknown | Network traffic detected: HTTP traffic on port 49857 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50034 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50033 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50036 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50035 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50038 |
Source: unknown | Network traffic detected: HTTP traffic on port 49764 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50037 |
Source: unknown | Network traffic detected: HTTP traffic on port 49801 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50041 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50040 |
Source: unknown | Network traffic detected: HTTP traffic on port 50104 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50089 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49973 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50033 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50171 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50043 |
Source: unknown | Network traffic detected: HTTP traffic on port 49835 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50042 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50045 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50044 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50047 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50046 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50049 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50048 |
Source: unknown | Network traffic detected: HTTP traffic on port 49880 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50050 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50052 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50051 |
Source: unknown | Network traffic detected: HTTP traffic on port 50126 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49792 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49890 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50168 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50122 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49912 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49958 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49889 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49946 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50018 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50077 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50134 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49855 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50053 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49981 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49752 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49924 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50099 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49831 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50031 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50156 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50043 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50100 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49774 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49782 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49740 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49808 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50006 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50065 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49867 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49865 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49942 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49941 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49940 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50098 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50097 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 50099 |
Source: unknown | Network traffic detected: HTTP traffic on port 50112 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49762 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50075 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50158 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49833 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49939 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49938 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49937 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49936 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49935 |
Source: unknown | Network traffic detected: HTTP traffic on port 49902 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49934 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49933 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49932 |
Source: unknown | Network traffic detected: HTTP traffic on port 50087 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49931 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49930 |
Source: unknown | Network traffic detected: HTTP traffic on port 50008 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49971 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49936 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49794 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49929 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49928 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49927 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49926 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49925 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49924 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49923 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49922 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49921 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49920 |
Source: unknown | Network traffic detected: HTTP traffic on port 50063 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50124 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49821 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49877 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49914 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49919 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49918 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49917 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49916 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49915 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49914 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49913 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49912 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49911 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49910 |
Source: unknown | Network traffic detected: HTTP traffic on port 49948 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50041 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49843 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50146 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49899 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50097 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49909 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49908 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49907 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49906 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49905 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49904 |
Source: unknown | Network traffic detected: HTTP traffic on port 49750 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49993 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49903 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49902 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49901 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49900 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49865 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49864 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49863 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49862 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49861 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49860 |
Source: unknown | Network traffic detected: HTTP traffic on port 49875 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 50154 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 49990 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49859 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49858 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49857 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49856 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49855 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49854 |
Source: unknown | Network traffic detected: HTTP traffic on port 49841 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49853 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49852 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49851 |
Source: unknown | Network traffic detected: HTTP traffic on port 50039 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 49850 |
Source: unknown | Network traffic detected: HTTP traffic on port 49967 -> 443 |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: apphelp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: microsoft.applications.telemetry.windows.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: vccorlib140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: msvcp140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: vcruntime140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: vcruntime140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: msvcp140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: vcruntime140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: msoimm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mso40uiimm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mso30imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mso20imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: office.ui.xaml.core.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: office.ui.xaml.word.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mso20imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mso98imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mso50imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mso20imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mso98imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: kernel.appcore.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: hxoutlook.model.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.storage.applicationdata.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: twinapi.appcore.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: wintypes.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: hxcomm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: cryptsp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.applicationmodel.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.globalization.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: bcp47langs.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: bcp47mrm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: onecorecommonproxystub.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: profapi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.staterepositorycore.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.networking.connectivity.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.networking.hostname.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.energy.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: rmclient.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.storage.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: wldp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: propsys.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: rometadata.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.system.diagnostics.telemetry.platformtelemetryclient.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: hxoutlook.view.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: office.ui.xaml.hxshared.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: hxoutlook.viewmodel.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: clipc.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: hxoutlook.resources.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: logoncli.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.ui.xaml.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: coremessaging.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: iertutil.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: dcomp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: onecoreuapcommonproxystub.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.ui.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windowmanagementapi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: textinputframework.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: coreuicomponents.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: ntmarta.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: inputhost.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: uxtheme.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: urlmon.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: srvcli.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: netutils.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: dxgi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: resourcepolicyclient.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mrmcorer.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.staterepositoryclient.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: d3d11.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: d3d10warp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: dxcore.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: d2d1.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: dwrite.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: textshaping.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.shell.servicehostbuilder.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: execmodelproxy.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: uiamanager.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.ui.core.textinput.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.ui.immersive.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: dataexchange.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: cryptbase.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: userenv.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: profext.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: office.ui.xaml.hx.mail.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: threadpoolwinrt.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.graphics.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: twinapi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: office.ui.xaml.hxcalendar.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.system.remotedesktop.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: winsta.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.ui.xaml.controls.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: directmanipulation.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.system.profile.systemid.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.system.profile.retailinfo.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: msxml6.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: wininet.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: sspicli.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: ondemandconnroutehelper.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: winhttp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mswsock.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: iphlpapi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: winnsi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: winrttracing.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: dnsapi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: rasadhlp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: fwpuclnt.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: schannel.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.staterepositoryps.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windowscodecs.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: photometadatahandler.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: ploptin.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: mskeyprotect.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: ntasn1.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: ncrypt.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: ncryptsslp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: msasn1.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: dpapi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: rsaenh.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: gpapi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: webservices.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: userdataaccountapis.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: userdataplatformhelperutil.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: windows.accountscontrol.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: xmllite.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: accountsrt.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: aphostclient.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxOutlook.exe | Section loaded: uiautomationcore.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: apphelp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: hxoutlook.model.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: microsoft.applications.telemetry.windows.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: mso20imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: vccorlib140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: vcruntime140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: msvcp140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: mso30imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: mso20imm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: vccorlib140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: vcruntime140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: msvcp140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: vccorlib140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: msvcp140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: vcruntime140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: vcruntime140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: msvcp140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: vcruntime140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: msvcp140_app.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: kernel.appcore.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.ui.xaml.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: coremessaging.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: bcp47langs.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: iertutil.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: dcomp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: twinapi.appcore.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: wintypes.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.staterepositorycore.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.ui.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windowmanagementapi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: textinputframework.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: inputhost.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: coreuicomponents.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: propsys.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: coreuicomponents.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: ntmarta.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: onecoreuapcommonproxystub.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: uxtheme.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: urlmon.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: srvcli.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: netutils.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: office.ui.xaml.hxaccounts.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: dxgi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: resourcepolicyclient.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.storage.applicationdata.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: hxcomm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: cryptsp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.applicationmodel.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.globalization.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: bcp47mrm.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: d3d11.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: d3d10warp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: dxcore.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: d2d1.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: dwrite.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: textshaping.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: onecorecommonproxystub.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: profapi.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.networking.connectivity.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.networking.hostname.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.energy.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: rmclient.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.storage.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: wldp.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: rometadata.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.system.diagnostics.telemetry.platformtelemetryclient.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: mrmcorer.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.staterepositoryclient.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.shell.servicehostbuilder.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: execmodelproxy.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: uiamanager.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.ui.core.textinput.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.ui.immersive.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: dataexchange.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: cryptbase.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.accountscontrol.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: xmllite.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.security.authentication.web.core.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.ui.xaml.controls.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: vaultcli.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: directmanipulation.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: userenv.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: profext.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: winrttracing.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: hxoutlook.resources.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: msftedit.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: globinputhost.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windowscodecs.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: windows.graphics.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: wuceffects.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: threadpoolwinrt.dll | Jump to behavior |
Source: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\HxAccounts.exe | Section loaded: uiautomationcore.dll | Jump to behavior |