Windows Analysis Report
https://gthr.uk/e8c3

Overview

General Information

Sample URL:	https://gthr.uk/e8c3
Analysis ID:	1544771
Infos:

Detection

Score:	52
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

AI detected suspicious URL

HTML page contains suspicious base64 encoded javascript

Phishing site detected (based on favicon image match)

Detected non-DNS traffic on DNS port

Form action URLs do not match main URL

HTML body contains low number of good links

HTML page contains hidden javascript code

HTML title does not match URL

Classification

Signatures

Phishing

HTML page contains suspicious base64 encoded javascript

Source: https://gthr.uk/e8c3

HTTP Parser: Base64 decoded: <script>

Phishing site detected (based on favicon image match)

Source: https://gthr.uk	Matcher: Template: sbi matched with high similarity
Source: https://gthr.uk/e8c3	Matcher: Template: sbi matched with high similarity

Form action URLs do not match main URL

Source: https://gthr.uk/e8c3	HTTP Parser: Form action: //translate.googleapis.com/translate_voting?client=te gthr googleapis
Source: https://gthr.uk/e8c3	HTTP Parser: Form action: //translate.googleapis.com/translate_voting?client=te gthr googleapis

HTML body contains low number of good links

Source: https://gthr.uk/e8c3

HTTP Parser: Number of links: 0

HTML page contains hidden javascript code

Source: https://gthr.uk/e8c3

HTTP Parser: Base64 decoded: <!DOCTYPE html><body><script>(function(){'use strict';var f=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,c,b){if(a==Array.prototype||a==Object.prototype)return a;a[c]=b.value;return a};function g(a){a=["object"==typeof globa...

HTML title does not match URL

Source: https://gthr.uk/e8c3

HTTP Parser: Title: Leavers Questionnaire does not match URL

Source: https://gthr.uk/e8c3

HTTP Parser: Iframe src: data:text/html;charset=UTF-8;base64,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

Source: https://gthr.uk/e8c3

HTTP Parser: No favicon

Source: https://gthr.uk/e8c3	HTTP Parser: No <meta name="author".. found
Source: https://gthr.uk/e8c3	HTTP Parser: No <meta name="author".. found

Source: https://gthr.uk/e8c3	HTTP Parser: No <meta name="copyright".. found
Source: https://gthr.uk/e8c3	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49716 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49198 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49300 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49390 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49475 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.6:49172 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45

Source: global traffic	HTTP traffic detected: GET /e8c3 HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/bootstrap.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/font-awesome/css/font-awesome.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/datatables/datatables.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1Host: translate.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/AdminLTE.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /css/skins/skin-blue.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/square/blue.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/line/blue.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /css/custom.css?v=1 HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/image-picker/image-picker.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/sweetalert-master/dist/sweetalert.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/select2/select2.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1Host: translate.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/hopscotch-master/dist/css/hopscotch.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/datepicker/datepicker3.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/clockpicker/bootstrap-clockpicker.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/material-datetimepicker/css/bootstrap-material-datetimepicker.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/floatingactionbutton/css/index.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /plugins/accessibility/jbility/css/jbility.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/dhuft.svg HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/jQuery/jQuery-1.12.4.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/bootstrap.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/app.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/select2/select2.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/icheck.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /js/app.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/dhuft.svg HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /js/bootstrap.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/accessibility/jbility/js/jbility.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/clockpicker/bootstrap-clockpicker.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/datepicker/bootstrap-datepicker.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/select2/select2.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/momentjs/moment.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/material-datetimepicker/js/bootstrap-material-datetimepicker.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/jQuery/jQuery-1.12.4.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/icheck.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/autosize-master/dist/autosize.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /fonts/roboto/Roboto-Regular.ttf HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gthr.uksec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gthr.uk/css/AdminLTE.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/accessibility/jbility/js/jbility.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/clockpicker/bootstrap-clockpicker.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.1 HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gthr.uksec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gthr.uk/plugins/font-awesome/css/font-awesome.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/datepicker/bootstrap-datepicker.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/material-datetimepicker/js/bootstrap-material-datetimepicker.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /plugins/autosize-master/dist/autosize.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /plugins/momentjs/moment.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/line/line.png HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gthr.uk/plugins/iCheck/line/blue.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/line/line.png HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704001v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704000v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703301v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703300v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120128v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120603v8s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120607v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230157v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230104v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230158v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230162v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230164v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230165v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230166v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230167v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230169v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230168v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230171v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230170v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230174v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230173v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230172v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120119v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704101v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704100v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704201v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704200v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704151v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704150v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule226009v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: global traffic	DNS traffic detected: DNS query: gthr.uk
Source: global traffic	DNS traffic detected: DNS query: translate.google.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com

Source: chromecache_179.2.dr, chromecache_149.2.dr	String found in binary or memory: http://bootstrap-datepicker.readthedocs.org/
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: http://docs.closure-library.googlecode.com/git/closure_goog_date_date.js.source.html
Source: chromecache_179.2.dr, chromecache_149.2.dr	String found in binary or memory: http://eternicode.github.io/bootstrap-datepicker/
Source: chromecache_171.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_171.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_175.2.dr, chromecache_195.2.dr	String found in binary or memory: http://fronteed.com
Source: chromecache_161.2.dr, chromecache_142.2.dr	String found in binary or memory: http://getbootstrap.com)
Source: chromecache_175.2.dr, chromecache_195.2.dr	String found in binary or memory: http://git.io/arlzeA
Source: chromecache_154.2.dr	String found in binary or memory: http://github.danielcardoso.net/load-awesome/)
Source: chromecache_197.2.dr, chromecache_187.2.dr	String found in binary or memory: http://opensource.org/licenses/MIT
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: http://stackoverflow.com/questions/181348/instantiating-a-javascript-object-by-calling-prototype-con
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: http://stackoverflow.com/questions/3561493/is-there-a-regexp-escape-function-in-javascript
Source: chromecache_185.2.dr, chromecache_166.2.dr, chromecache_143.2.dr	String found in binary or memory: http://weareoutman.github.io/clockpicker/)
Source: chromecache_197.2.dr, chromecache_187.2.dr	String found in binary or memory: http://www.almsaeedstudio.com
Source: chromecache_179.2.dr, chromecache_174.2.dr, chromecache_149.2.dr, chromecache_145.2.dr, chromecache_169.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_174.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0Roboto
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_179.2.dr, chromecache_149.2.dr	String found in binary or memory: http://www.eyecon.ro/bootstrap-datepicker
Source: chromecache_159.2.dr, chromecache_150.2.dr	String found in binary or memory: http://www.jacklmoore.com/autosize
Source: chromecache_160.2.dr	String found in binary or memory: https://datatables.net/download
Source: chromecache_160.2.dr	String found in binary or memory: https://datatables.net/download/#bs/jszip-2.5.0/pdfmake-0.1.18/dt-1.10.12/b-1.2.2/b-colvis-1.2.2/b-f
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_191.2.dr	String found in binary or memory: https://fonts.googleapis.com/icon?family=Material
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
Source: chromecache_170.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2)
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/dordille/moment-isoduration/blob/master/moment.isoduration.js
Source: chromecache_179.2.dr, chromecache_149.2.dr	String found in binary or memory: https://github.com/eternicode/bootstrap-datepicker/
Source: chromecache_144.2.dr	String found in binary or memory: https://github.com/lipis/bootstrap-social
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/1407
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/1423
Source: chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/1548
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/1779
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/2166
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/2978
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/pull/1871
Source: chromecache_161.2.dr, chromecache_142.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_178.2.dr, chromecache_184.2.dr	String found in binary or memory: https://github.com/urielcaire/jBility
Source: chromecache_162.2.dr	String found in binary or memory: https://github.com/urielcaire/jbility
Source: chromecache_178.2.dr, chromecache_184.2.dr	String found in binary or memory: https://github.com/urielcaire/jscookie
Source: chromecache_185.2.dr, chromecache_166.2.dr, chromecache_143.2.dr	String found in binary or memory: https://github.com/weareoutman/clockpicker/blob/gh-pages/LICENSE)
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/css/AdminLTE.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/css/bootstrap.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/css/custom.css?v=1
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/css/skins/skin-blue.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/e8c3
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/genealabs/laravel-caffeine/drip
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/img/dhuft.png
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/img/dhuft.svg
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/img/dhuftexport.png
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/js/app.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/js/bootstrap.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/accessibility/jbility/css/jbility.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/accessibility/jbility/js/jbility.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/autosize-master/dist/autosize.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/clockpicker/bootstrap-clockpicker.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/clockpicker/bootstrap-clockpicker.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/datatables/datatables.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/datepicker/bootstrap-datepicker.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/datepicker/datepicker3.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/floatingactionbutton/css/index.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/font-awesome/css/font-awesome.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/hopscotch-master/dist/css/hopscotch.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/iCheck/icheck.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/iCheck/line/blue.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/iCheck/square/blue.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/image-picker/image-picker.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/jQuery/jQuery-1.12.4.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/material-datetimepicker/css/bootstrap-material-datetimepicker.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/material-datetimepicker/js/bootstrap-material-datetimepicker.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/momentjs/moment.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/select2/select2.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/select2/select2.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/sweetalert-master/dist/sweetalert.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/records
Source: chromecache_191.2.dr	String found in binary or memory: https://oss.maxcdn.com/html5shiv/3.7.2/html5shiv.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://oss.maxcdn.com/respond/1.4.2/respond.min.js
Source: chromecache_148.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_148.2.dr	String found in binary or memory: https://translate.google.com
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://translate.googleapis.com/element/log?format=json&hasfast=true
Source: chromecache_148.2.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://www.google.com/support/translate
Source: chromecache_148.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/1x/translate_24dp.png

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49256 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49176 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49451 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 49199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49428 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49188 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49463 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49371 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49404 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 49244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49278 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49383 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49304
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49425
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49424
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49423
Source: unknown	Network traffic detected: HTTP traffic on port 49290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49301
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49422
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49300
Source: unknown	Network traffic detected: HTTP traffic on port 49406 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49421
Source: unknown	Network traffic detected: HTTP traffic on port 49269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49420
Source: unknown	Network traffic detected: HTTP traffic on port 49200 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49246 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49281 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49426 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49438 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49419
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49418
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49361 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49417
Source: unknown	Network traffic detected: HTTP traffic on port 49346 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49416
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49415
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49414
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49413
Source: unknown	Network traffic detected: HTTP traffic on port 49350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49412
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49411
Source: unknown	Network traffic detected: HTTP traffic on port 49323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49410
Source: unknown	Network traffic detected: HTTP traffic on port 49415 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49449 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49198 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49473 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49312 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49409
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49408
Source: unknown	Network traffic detected: HTTP traffic on port 49234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49407
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49406
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49405
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49404
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49403
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49402
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49401
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49400
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49427 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49334 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49395 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49472 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49212 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 49268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 49291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49300 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49373 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49450 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49416 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 49362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49227
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49469
Source: unknown	Network traffic detected: HTTP traffic on port 49185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49468
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49225
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49467
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49224
Source: unknown	Network traffic detected: HTTP traffic on port 49265 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49345
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49466
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49223
Source: unknown	Network traffic detected: HTTP traffic on port 49288 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49344
Source: unknown	Network traffic detected: HTTP traffic on port 49431 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49465
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49464
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49221
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49342
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49463
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49220
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49462
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49460
Source: unknown	Network traffic detected: HTTP traffic on port 49242 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49207 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49219
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49218
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49339
Source: unknown	Network traffic detected: HTTP traffic on port 49380 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49217
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49338
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49459
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49216
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49337
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49458
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49215
Source: unknown	Network traffic detected: HTTP traffic on port 49327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49336
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49457
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49456
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49334
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49455
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49212
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49454
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49453
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49452
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49330
Source: unknown	Network traffic detected: HTTP traffic on port 49407 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49451
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49450
Source: unknown	Network traffic detected: HTTP traffic on port 49379 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49316 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49368 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49208
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49329
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49207
Source: unknown	Network traffic detected: HTTP traffic on port 49230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49449
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49206
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49448
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49205
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49447
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49204
Source: unknown	Network traffic detected: HTTP traffic on port 49219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49446
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49203
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49324
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49445
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49202
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49323
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49444
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49201
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49200
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49321
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49442
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49320
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49441
Source: unknown	Network traffic detected: HTTP traffic on port 49391 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49231 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49338 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49443 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49174 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49319
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49318
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49439
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49438
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49316
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49437
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49436
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49314
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49435
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49313
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49434
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49312
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49433
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49311
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49432
Source: unknown	Network traffic detected: HTTP traffic on port 49304 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49431
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49430
Source: unknown	Network traffic detected: HTTP traffic on port 49465 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49208 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49309
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49429
Source: unknown	Network traffic detected: HTTP traffic on port 49253 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49307
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49428
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49306
Source: unknown	Network traffic detected: HTTP traffic on port 49349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49427
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49426
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49326 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49269
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49268
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49389
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49388
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49387
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49386
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49385
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49384
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49262
Source: unknown	Network traffic detected: HTTP traffic on port 49370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49383
Source: unknown	Network traffic detected: HTTP traffic on port 49393 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49382
Source: unknown	Network traffic detected: HTTP traffic on port 49429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49260
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49381
Source: unknown	Network traffic detected: HTTP traffic on port 49464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49380
Source: unknown	Network traffic detected: HTTP traffic on port 49195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49441 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49259
Source: unknown	Network traffic detected: HTTP traffic on port 49220 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49258
Source: unknown	Network traffic detected: HTTP traffic on port 49266 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49379
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49257
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49378
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49377
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49255
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49376
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49254
Source: unknown	Network traffic detected: HTTP traffic on port 49287 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49375
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49253
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49374
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49373
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49372
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49250
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49371
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49370
Source: unknown	Network traffic detected: HTTP traffic on port 49337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49358 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49418 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49381 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49249
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49248
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49246
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49367
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49245
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49244
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49365
Source: unknown	Network traffic detected: HTTP traffic on port 49183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49243
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49364
Source: unknown	Network traffic detected: HTTP traffic on port 49408 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49242
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49240
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49361
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49360
Source: unknown	Network traffic detected: HTTP traffic on port 49221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49254 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49453 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49239
Source: unknown	Network traffic detected: HTTP traffic on port 49348 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49382 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49358
Source: unknown	Network traffic detected: HTTP traffic on port 49325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49357
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49356
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49234
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49233
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49475
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49232
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49353
Source: unknown	Network traffic detected: HTTP traffic on port 49430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49474
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49231
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49473
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49230
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49351
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49472
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49471
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49470
Source: unknown	Network traffic detected: HTTP traffic on port 49314 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49299 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49475 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49228
Source: unknown	Network traffic detected: HTTP traffic on port 49232 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49349
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49189
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49188
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49187
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49185
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49183
Source: unknown	Network traffic detected: HTTP traffic on port 49227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49204 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49181
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49468 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49445 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49388 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49342 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49411 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49457 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49179
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49177
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49176
Source: unknown	Network traffic detected: HTTP traffic on port 49297 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49175
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49174
Source: unknown	Network traffic detected: HTTP traffic on port 49262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49295
Source: unknown	Network traffic detected: HTTP traffic on port 49319 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49173
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49294
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49293
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49292
Source: unknown	Network traffic detected: HTTP traffic on port 49354 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49290
Source: unknown	Network traffic detected: HTTP traffic on port 49194 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49251 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49399 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49456 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49330 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49288
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49287
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49285
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49284
Source: unknown	Network traffic detected: HTTP traffic on port 49286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49283
Source: unknown	Network traffic detected: HTTP traffic on port 49318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49280
Source: unknown	Network traffic detected: HTTP traffic on port 49239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49216 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49409 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49279
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49278
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49399
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49277

Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49716 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49198 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49300 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49390 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49475 version: TLS 1.2

Source: classification engine

Classification label: mal52.phis.win@21/102@10/6

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2096 --field-trial-handle=2000,i,18067291500579562211,3919196223148191013,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://gthr.uk/e8c3"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2096 --field-trial-handle=2000,i,18067291500579562211,3919196223148191013,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Persistence and Installation Behavior

AI detected suspicious URL

Source: Email	JoeBoxAI: AI detected Brand spoofing attempt in URL: URL: https://gthr.uk/e8c3
Source: Email	JoeBoxAI: AI detected Typosquatting in URL: URL: https://gthr.uk/e8c3

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
142.250.186.78	unknown	United States	15169	GOOGLEUS	false
142.250.185.228	www.google.com	United States	15169	GOOGLEUS	false
142.250.185.110	www3.l.google.com	United States	15169	GOOGLEUS	false
51.89.232.103	gthr.uk	France	16276	OVHFR	true
239.255.255.250	unknown	Reserved	unknown	unknown	false

Private

IP
192.168.2.6

Contacted Domains

Name	IP	Active
www3.l.google.com	142.250.185.110	true
www.google.com	142.250.185.228	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
gthr.uk	51.89.232.103	true
translate.google.com	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://gthr.uk/e8c3	true	unknown
https://gthr.uk/js/bootstrap.min.js	true	unknown
https://gthr.uk/plugins/accessibility/jbility/css/jbility.css	true	unknown
https://gthr.uk/js/app.min.js	true	unknown
https://gthr.uk/plugins/clockpicker/bootstrap-clockpicker.min.js	true	unknown
https://gthr.uk/plugins/autosize-master/dist/autosize.min.js	true	unknown
https://gthr.uk/plugins/iCheck/icheck.min.js	true	unknown
https://gthr.uk/plugins/select2/select2.min.js	true	unknown
https://gthr.uk/favicon-32x32.png	true	unknown
https://gthr.uk/plugins/iCheck/square/blue.css	true	unknown
https://gthr.uk/plugins/material-datetimepicker/css/bootstrap-material-datetimepicker.css	true	unknown
https://gthr.uk/plugins/sweetalert-master/dist/sweetalert.min.css	true	unknown
https://gthr.uk/plugins/clockpicker/bootstrap-clockpicker.min.css	true	unknown
https://gthr.uk/css/skins/skin-blue.css	true	unknown
https://gthr.uk/plugins/datepicker/bootstrap-datepicker.js	true	unknown
https://gthr.uk/plugins/hopscotch-master/dist/css/hopscotch.min.css	true	unknown
https://gthr.uk/plugins/datatables/datatables.min.css	true	unknown
https://gthr.uk/plugins/floatingactionbutton/css/index.css	true	unknown
https://gthr.uk/plugins/iCheck/line/blue.css	true	unknown
https://gthr.uk/plugins/datepicker/datepicker3.css	true	unknown
https://gthr.uk/plugins/font-awesome/css/font-awesome.min.css	true	unknown
https://gthr.uk/css/custom.css?v=1	true	unknown
https://gthr.uk/fonts/roboto/Roboto-Regular.ttf	true	unknown
https://gthr.uk/plugins/select2/select2.min.css	true	unknown
https://gthr.uk/plugins/iCheck/line/line.png	true	unknown
https://gthr.uk/css/bootstrap.min.css	true	unknown
https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit	false	unknown
https://gthr.uk/plugins/material-datetimepicker/js/bootstrap-material-datetimepicker.js	true	unknown
https://gthr.uk/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.1	true	unknown
https://gthr.uk/img/dhuft.svg	true	unknown
https://gthr.uk/plugins/jQuery/jQuery-1.12.4.min.js	true	unknown
https://gthr.uk/plugins/accessibility/jbility/js/jbility.js	true	unknown
https://gthr.uk/plugins/momentjs/moment.js	true	unknown
https://gthr.uk/css/AdminLTE.css	true	unknown
https://gthr.uk/plugins/image-picker/image-picker.css	true	unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 139	Algol 68 source, ASCII text	A04210D73E4259B9728735B9BC3D2BB2	F5F0C6707879B8EBC82E158AAB45AE248AFBD3F1	2B4B2181DF3354EBD90F04AD95742FE254FD437307E34C529B1EA55BF760A759
Chrome Cache Entry: 140	ASCII text	99CDDADFCBB00DE2802E6611DA13E2B5	358F8C9B73EE37FFEC3542BF5BE748662D8E15C8	C317BD4396543323359244F0A08247DF11832F872E41F17C78AA32945F5C70E2
Chrome Cache Entry: 141	SVG Scalable Vector Graphics image	C706F36D92878EA9D127C58B75D57B1E	227081DFDD0E8B33441811B618C19551431616D2	D2C329129EFC655ABF40D2D595D7D6C55F4B2CEF5882CED9B53CCD6FB42C0389
Chrome Cache Entry: 142	ASCII text, with very long lines (32148)	B6D6C550CB657155FEB06FDCD34B73CB	27947C0C0FA837DA9BDFDFC36F649C25F54BD1C0	267A83092A5FD6EC5FB746BCE12D440ABD37F1D649C072F653E17D0C800EB647
Chrome Cache Entry: 143	Unicode text, UTF-8 text, with very long lines (10953)	D25D9E41F486972994261114F443E372	14FE2E41995EF12DB81377D057857FAF3675C012	B701DDAEE15ABD82E0BAA360F2D4047551778D636264C41AC99F1806C74108C1
Chrome Cache Entry: 144	ASCII text	C219A301128A8DE6C4090D1A7D531720	C03A1D7BB929028C9CC9DA5329F420501F27A316	D277123974A40C73110F4231F3FD1ADAA2E152A0D804B6D1D9541D2F5EF45758
Chrome Cache Entry: 145	ASCII text	185B4069DB0D02C35F29DABCDAB2050B	E656ABB52F27CEC11A257F5FA048014C82952BB5	70438C52B83AEE2485D277EB6BAC6A1DB3365782A3B850DA51D083D669E13FC6
Chrome Cache Entry: 146	ASCII text, with very long lines (2694)	22967D458B788CF128070C3CDAC143B2	8DC984C23C7FC6D3493CAEF81862121AF7EE8CF6	7F67A00398FD26EF3809716B5C18573780120E1EF67B2A24BBA512DAEBF748F6
Chrome Cache Entry: 147	ASCII text	37FD35194ED2735B31D71B8B8C063898	D18ACF65E95E79A0329D7CAE5204897B79A68699	467FEFB5320F85AF9C3DD29605D3A6F33CF29048143AE24DC2BDB1F345B16228
Chrome Cache Entry: 148	ASCII text, with very long lines (2694)	22967D458B788CF128070C3CDAC143B2	8DC984C23C7FC6D3493CAEF81862121AF7EE8CF6	7F67A00398FD26EF3809716B5C18573780120E1EF67B2A24BBA512DAEBF748F6
Chrome Cache Entry: 149	ASCII text	B214F48B279656C04C4CBDECCF691A8B	0D3375E841471D11EDCA86C3952811D02B8BAF1E	AA064CFEA0251DC217370E185AF66FE9B3EE37175CBBD7BA359E9FE54B704032
Chrome Cache Entry: 150	ASCII text, with very long lines (3507)	AD0656589D34C18CD55206D4FD2BC0D7	D7137CF274043EBE83187ABF4605BF5E85FFE435	756F2EE1DBC42834E1269591C0B806BA06C04670373B6C2A05C55EAE583D2CC7
Chrome Cache Entry: 151	Algol 68 source, ASCII text	A04210D73E4259B9728735B9BC3D2BB2	F5F0C6707879B8EBC82E158AAB45AE248AFBD3F1	2B4B2181DF3354EBD90F04AD95742FE254FD437307E34C529B1EA55BF760A759
Chrome Cache Entry: 152	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced	C69C796362406F9E11C7F4BF5BB628DA	E489CE95AB56208090868882113D7416ABF46775	4DAC0026FBFA2615DCE30C0AF12830863FE885F84387A0147B9E338F548D5D82
Chrome Cache Entry: 153	ASCII text, with CRLF line terminators	EC4EC1848D44701579B7CF0240D6417E	29E879C9396761D7C7BCA4738B8E18CD9142CA59	2AE984529AFB297FC6E0F8FA1F70F7BCC2D07A43A25EF8EE00E13E34D947FC23
Chrome Cache Entry: 154	ASCII text, with very long lines (13331)	B9C7C7A42B627FAA421D4520CD7280FC	977B20F5214C28F4D2F8A1EB3B841626C0B9FBC6	BECC53F1D32906EE443828AE6489DEF7DC1FFA6150154FADB696A271FACCFC9C
Chrome Cache Entry: 155	PNG image data, 60 x 13, 8-bit/color RGBA, non-interlaced	C446571504944686CF647FA3E2310B27	62D5FDADB678645CC530604016C1FA4A21CF3142	53F72F0F63F7B9D795FEFF387F3F76E9634F147604A43DCC9D67091B62F1CF43
Chrome Cache Entry: 156	PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced	EFA6BB2BFE459BC6F4BDAFA3DB0383F6	52D15CE52FE50643E542C17812DE43F4ED1B6EE0	6318394F737C66F0E2CCFCD88E3935C6667633A1B95FA29FBA2B75431D55EEF2
Chrome Cache Entry: 157	PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced	EFA6BB2BFE459BC6F4BDAFA3DB0383F6	52D15CE52FE50643E542C17812DE43F4ED1B6EE0	6318394F737C66F0E2CCFCD88E3935C6667633A1B95FA29FBA2B75431D55EEF2
Chrome Cache Entry: 158	ASCII text, with very long lines (364), with CRLF line terminators	9A2A8E930ACC0BC0F544287E282CE7C3	3CE9678190FBA99C51DA896B5CCFA285D9D7A310	6FE4D7624F7C1C99B1268E08F30D88B645970003804B42EF29F8C60047AD4EE5
Chrome Cache Entry: 159	ASCII text, with very long lines (3507)	AD0656589D34C18CD55206D4FD2BC0D7	D7137CF274043EBE83187ABF4605BF5E85FFE435	756F2EE1DBC42834E1269591C0B806BA06C04670373B6C2A05C55EAE583D2CC7
Chrome Cache Entry: 160	ASCII text, with very long lines (4215)	BD7F95A15C14231641C8B5CE1FC0E280	F8914B74E6741207720C1AE4E684D54B2FA991FE	CBACCF5DDDC7E1391249C7D32537836B174367C754A187C80D3B583198897E63
Chrome Cache Entry: 161	ASCII text, with very long lines (32148)	B6D6C550CB657155FEB06FDCD34B73CB	27947C0C0FA837DA9BDFDFC36F649C25F54BD1C0	267A83092A5FD6EC5FB746BCE12D440ABD37F1D649C072F653E17D0C800EB647
Chrome Cache Entry: 162	ASCII text	1ABAC3F2FD019CF35145700E69648799	291F5BD5B7AA293463D61F801C6794998F8AC934	987975910E2632299D9DD6EC62145E904614547663B4F70CEBBF4EB38B20E35D
Chrome Cache Entry: 163	ASCII text, with very long lines (32077)	0FCA26B5A37A66D68D0F4406976BE4B5	EE000EB654B3BD37185665D3901E93B34CE1AA52	8C2812DED6436715279F8FD8DB58DE307AA39AB0296FE3CF0E879067C51E9B18
Chrome Cache Entry: 164	ASCII text	A8CEBA8FEEBED3B5A735B4512413EF5A	99AD4EFA8DAF9F02F04B5F084425B2906DA007C8	EAAABAA3A4AE5C52C2D617ED5059E605A1AC8246903F057E3ACA7B489DE35CE8
Chrome Cache Entry: 165	ASCII text, with very long lines (14909), with no line terminators	138258AAAB4E7C37905ABE04F22843EF	5BECE56A93A9DA46180FBDB4ADFCD1CA0C9CA285	6657A7D3AC4506CE3B0CA9234DF4F63B6BFF8E94E92F21F9D77921B166FC6925
Chrome Cache Entry: 166	Unicode text, UTF-8 text, with very long lines (10953)	D25D9E41F486972994261114F443E372	14FE2E41995EF12DB81377D057857FAF3675C012	B701DDAEE15ABD82E0BAA360F2D4047551778D636264C41AC99F1806C74108C1
Chrome Cache Entry: 167	SVG Scalable Vector Graphics image	2BD5C073A88B83ED74DB88282A56DDFB	D0EBFC376F8C6A44A8D4CD216817DCD7D0C33650	AB5C23A05E39DEED14D9D8262B0DCE9F024F86105A27196CAD37D14A3F516E09
Chrome Cache Entry: 168	SVG Scalable Vector Graphics image	C706F36D92878EA9D127C58B75D57B1E	227081DFDD0E8B33441811B618C19551431616D2	D2C329129EFC655ABF40D2D595D7D6C55F4B2CEF5882CED9B53CCD6FB42C0389
Chrome Cache Entry: 169	ASCII text, with very long lines (11018)	8FA2B6DE521CC4551739B7E7E97EB410	60DADA3FA4F28E268E38A799348CACF3ACAD6687	9E6F348C3E58DC9DD1B697AF9859A12F283338DA4EAE6CC448610056EF3E9BA3
Chrome Cache Entry: 170	ASCII text	71D6A57D21337114032CA39B294F3591	ADA1D867672276F16EF4D3B8A46A519FBA8E3D4E	36B2057EB5EEF261A2CBB8C149DCF3A11EDAA15CCD8E3D462EB34999F5FF8F2A
Chrome Cache Entry: 171	ASCII text, with very long lines (28596)	295235B28B6E649D99539A9D32B95D30	DA07571F53188BBEA0ACD96D774AC38B8F4E0E42	362AE4D51C05C9C741214BB98169E3B1B8A502FE09A380A93FA8B2C566E67E9A
Chrome Cache Entry: 172	HTML document, Unicode text, UTF-8 text, with very long lines (1136)	FBE36EB2EECF1B90451A3A72701E49D2	AE56EA57C52D1153CEC33CEF91CF935D2D3AF14D	E8F2DED5D74C0EE5F427A20B6715E65BC79ED5C4FC67FB00D89005515C8EFE63
Chrome Cache Entry: 173	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced	C69C796362406F9E11C7F4BF5BB628DA	E489CE95AB56208090868882113D7416ABF46775	4DAC0026FBFA2615DCE30C0AF12830863FE885F84387A0147B9E338F548D5D82
Chrome Cache Entry: 174	TrueType Font data, 14 tables, 1st "GDEF", 27 names, Macintosh, Font data copyright Google 2014RobotoRegularGoogle:Roboto:2014Roboto RegularVersion 2.000980; 20	DF7B648CE5356EA1EBCE435B3459FD60	824B5480C977A8166E177E5357D13164CCC45F47	BDE8A188E37AA936B167AECC5E5A3DA40262F6E51FD54C584F2CF2B6B99D96CA
Chrome Cache Entry: 175	ASCII text, with very long lines (524)	DF8ECCD3EE39181DFE2334B30FC01BBE	3A10972F8F270B6DA4D983CDBB9166044B50E2F6	68A72F76AFE90409C84FCA5C63E5954E370621201481103921CC80AAB3452AD7
Chrome Cache Entry: 176	Unicode text, UTF-8 text, with very long lines (32090)	206247DE2E69FECA540152F21355B017	154E2D61636B7B66E914F970C45DCA0D965E2D4B	58EE90710484339BF01CBE1E00D51DFE6CF146A472C4FDD15A3FABE854B9A979
Chrome Cache Entry: 177	ASCII text, with very long lines (65536), with no line terminators	0318D9FAB05457D4B2975AFF3259D7EB	BEF806BC544F8ECFF7AE708C6A7F69D916F38EC1	88578A9B5E997CA7CAAED599201DAD05CE87B57CD37794633E139E1566277D75
Chrome Cache Entry: 178	Unicode text, UTF-8 text	1E6706732B46BFB92D5CCD743CAD49CE	F0C1D1163CBB0D4AF53C4C509FC1B38657A401C6	3862B4010FA536EA0832A130464E863D4660F3D1581CEF50871B69C6471BA58C
Chrome Cache Entry: 179	ASCII text	B214F48B279656C04C4CBDECCF691A8B	0D3375E841471D11EDCA86C3952811D02B8BAF1E	AA064CFEA0251DC217370E185AF66FE9B3EE37175CBBD7BA359E9FE54B704032
Chrome Cache Entry: 180	ASCII text, with very long lines (364), with CRLF line terminators	9A2A8E930ACC0BC0F544287E282CE7C3	3CE9678190FBA99C51DA896B5CCFA285D9D7A310	6FE4D7624F7C1C99B1268E08F30D88B645970003804B42EF29F8C60047AD4EE5
Chrome Cache Entry: 181	PNG image data, 32 x 32, 4-bit colormap, non-interlaced	B5CBBE909C639C713C95231000E681A0	CCDABB335BBAEB112D2064DAA18E38875CE1493D	5F8CAD574943ABEE39EBBE6142451A127E74DBE245441FEADDBA26FAA9C750E4
Chrome Cache Entry: 182	ASCII text, with CRLF line terminators	EA9EB8BD9F156AD75692F7D026083C5B	878358A1CF953F091AA83952DA874D32DDE1BB6D	D819BC4656EDB0D4D86D9E885229A3E998576C0896AFF1B23A85F3DE4C0D31F2
Chrome Cache Entry: 183	SVG Scalable Vector Graphics image	2BD5C073A88B83ED74DB88282A56DDFB	D0EBFC376F8C6A44A8D4CD216817DCD7D0C33650	AB5C23A05E39DEED14D9D8262B0DCE9F024F86105A27196CAD37D14A3F516E09
Chrome Cache Entry: 184	Unicode text, UTF-8 text	1E6706732B46BFB92D5CCD743CAD49CE	F0C1D1163CBB0D4AF53C4C509FC1B38657A401C6	3862B4010FA536EA0832A130464E863D4660F3D1581CEF50871B69C6471BA58C
Chrome Cache Entry: 185	ASCII text, with very long lines (2932)	82977DA729AC94DA93C9529B1607F460	6AD259DE8B2EA33F7EDE62D4BD4EB4F6A301D117	3FC9AD79A7E281B363EB27BE946013A1504157FED7E6139B861417ADE8F3A347
Chrome Cache Entry: 186	PNG image data, 32 x 32, 4-bit colormap, non-interlaced	B5CBBE909C639C713C95231000E681A0	CCDABB335BBAEB112D2064DAA18E38875CE1493D	5F8CAD574943ABEE39EBBE6142451A127E74DBE245441FEADDBA26FAA9C750E4
Chrome Cache Entry: 187	ASCII text, with very long lines (9284)	37135A3F16CB80F93123D2D88F318B16	AF98F9DBB2DB36DB77481F84C4B4E028995C58D8	CB7693870900598160E5341C6AC562F8B3F435104F9A1626BCF0499D15699037
Chrome Cache Entry: 188	Web Open Font Format (Version 2), TrueType, length 70728, version 4.393	926C93D201FE51C8F351E858468980C3	977357F82830F57FBDAC2492DD421E5DCCE44A1A	D3EBB498192527B985939AE62CC4E5EB5C108EFC1896184126B45D866868E73D
Chrome Cache Entry: 189	Unicode text, UTF-8 text	C03E1DA7F3C40AF33A117DC869FBB1AF	97CA127397C88DBEFE5859452311BF28E90ADE5D	301F62F5421CC8F7AD0CFD70C257D4A7983BFC49C0CE8CDD99204BBA72B2F79D
Chrome Cache Entry: 190	ASCII text, with no line terminators	C0DDB93C144B94DA946DC9F727D05538	517BA8265D63543D2F4F2D3E2247A9A9CEE79E9D	4760B35732ACF6B7C363E144C5FD126EAFEE7315885510FEAF23B0D53938D33F
Chrome Cache Entry: 191	HTML document, Unicode text, UTF-8 text, with very long lines (788), with CRLF, LF line terminators	DCD24E8E6D4E3D30F22A734D5B51FDB1	2AF405956749F2FA30D48AC5EB92FACD21B7ACDD	B1BA3518040F2087E2531A473144401A86B42C3B6DE4BE0DE1EC08EB54DBCDD1
Chrome Cache Entry: 192	ASCII text, with CRLF line terminators	32B8FF1E9122144C82915DFAACC21AA2	8C4A880B5407BE68FC5A735478E5965121865879	BD9A331892DB939089D3E74C1954B59BAA7003D7D9490CA55CFEDA184E809CC0
Chrome Cache Entry: 193	ASCII text, with very long lines (32077)	0FCA26B5A37A66D68D0F4406976BE4B5	EE000EB654B3BD37185665D3901E93B34CE1AA52	8C2812DED6436715279F8FD8DB58DE307AA39AB0296FE3CF0E879067C51E9B18
Chrome Cache Entry: 194	ASCII text, with very long lines (22367), with no line terminators	B0B46B807EEE39AF0AAD8F5FEFC9B3A2	0FB04F15599BC0844063A6AB776C86E73CB9FBFC	71CA2652E2B3FFD3C0EC966958604714CE6C7AF01D961B44ADC438518EB58CB3
Chrome Cache Entry: 195	ASCII text, with very long lines (524)	DF8ECCD3EE39181DFE2334B30FC01BBE	3A10972F8F270B6DA4D983CDBB9166044B50E2F6	68A72F76AFE90409C84FCA5C63E5954E370621201481103921CC80AAB3452AD7
Chrome Cache Entry: 196	Unicode text, UTF-8 text, with very long lines (32090)	206247DE2E69FECA540152F21355B017	154E2D61636B7B66E914F970C45DCA0D965E2D4B	58EE90710484339BF01CBE1E00D51DFE6CF146A472C4FDD15A3FABE854B9A979
Chrome Cache Entry: 197	ASCII text, with very long lines (9284)	37135A3F16CB80F93123D2D88F318B16	AF98F9DBB2DB36DB77481F84C4B4E028995C58D8	CB7693870900598160E5341C6AC562F8B3F435104F9A1626BCF0499D15699037
Chrome Cache Entry: 198	ASCII text, with CRLF line terminators	26845DF171E70ED0D11D5E5DC0FB51FC	1C741CAE3239A7AE9CC0389F5B3D317570EEF4C4	63C88C875664629DDC4697B9BDC4E291038D421FBE41FC436FB87B7187AA1A99
Chrome Cache Entry: 199	PNG image data, 60 x 13, 8-bit/color RGBA, non-interlaced	C446571504944686CF647FA3E2310B27	62D5FDADB678645CC530604016C1FA4A21CF3142	53F72F0F63F7B9D795FEFF387F3F76E9634F147604A43DCC9D67091B62F1CF43

Phishing

HTML page contains suspicious base64 encoded javascript

Source: https://gthr.uk/e8c3

HTTP Parser: Base64 decoded: <script>

Phishing site detected (based on favicon image match)

Source: https://gthr.uk	Matcher: Template: sbi matched with high similarity
Source: https://gthr.uk/e8c3	Matcher: Template: sbi matched with high similarity

Form action URLs do not match main URL

Source: https://gthr.uk/e8c3	HTTP Parser: Form action: //translate.googleapis.com/translate_voting?client=te gthr googleapis
Source: https://gthr.uk/e8c3	HTTP Parser: Form action: //translate.googleapis.com/translate_voting?client=te gthr googleapis

HTML body contains low number of good links

Source: https://gthr.uk/e8c3

HTTP Parser: Number of links: 0

HTML page contains hidden javascript code

Source: https://gthr.uk/e8c3

HTML title does not match URL

Source: https://gthr.uk/e8c3

HTTP Parser: Title: Leavers Questionnaire does not match URL

Source: https://gthr.uk/e8c3

HTTP Parser: No favicon

Source: https://gthr.uk/e8c3	HTTP Parser: No <meta name="author".. found
Source: https://gthr.uk/e8c3	HTTP Parser: No <meta name="author".. found

Source: https://gthr.uk/e8c3	HTTP Parser: No <meta name="copyright".. found
Source: https://gthr.uk/e8c3	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49716 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49198 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49300 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49390 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49475 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.6:49172 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45

Source: global traffic	HTTP traffic detected: GET /e8c3 HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/bootstrap.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/font-awesome/css/font-awesome.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/datatables/datatables.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1Host: translate.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /css/AdminLTE.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /css/skins/skin-blue.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/square/blue.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/line/blue.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /css/custom.css?v=1 HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/image-picker/image-picker.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/sweetalert-master/dist/sweetalert.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/select2/select2.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1Host: translate.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /plugins/hopscotch-master/dist/css/hopscotch.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/datepicker/datepicker3.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/clockpicker/bootstrap-clockpicker.min.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/material-datetimepicker/css/bootstrap-material-datetimepicker.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/floatingactionbutton/css/index.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /plugins/accessibility/jbility/css/jbility.css HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/dhuft.svg HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/jQuery/jQuery-1.12.4.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/bootstrap.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/app.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/select2/select2.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/icheck.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /js/app.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/dhuft.svg HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /js/bootstrap.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/accessibility/jbility/js/jbility.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/clockpicker/bootstrap-clockpicker.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/datepicker/bootstrap-datepicker.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/select2/select2.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/momentjs/moment.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/material-datetimepicker/js/bootstrap-material-datetimepicker.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/jQuery/jQuery-1.12.4.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/icheck.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/autosize-master/dist/autosize.min.js HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /fonts/roboto/Roboto-Regular.ttf HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gthr.uksec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gthr.uk/css/AdminLTE.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/accessibility/jbility/js/jbility.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/clockpicker/bootstrap-clockpicker.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.1 HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gthr.uksec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gthr.uk/plugins/font-awesome/css/font-awesome.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/datepicker/bootstrap-datepicker.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/material-datetimepicker/js/bootstrap-material-datetimepicker.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /plugins/autosize-master/dist/autosize.min.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /plugins/momentjs/moment.js HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gthr.uk/e8c3Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/line/line.png HTTP/1.1Host: gthr.ukConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gthr.uk/plugins/iCheck/line/blue.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /plugins/iCheck/line/line.png HTTP/1.1Host: gthr.ukConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImRNMGtxdHJqRWVSNFRadDlHZjd4SEE9PSIsInZhbHVlIjoic04xWDAxbEVFMVB4S05RVzJCUUg1NjllaHFla09zeEtxUUpsSFU3WlkxeFJzaG5VdnJkYW4rSHpNazRDUVRaM2wyTnR3UkdLM0lhRXZjU2MwUVdTQUxnM2pUWWt6aVp2c3VKdExQU1VNa0luYzFrQ3pMakQzU0FZN096K1lBNysiLCJtYWMiOiIyMTc4NzM1ZjBlNDNiMzg1YTkwYWM4YWI2YTczMzc0YmMxMzExYzIwNWM4Yjg4YzJiZjlkZjc4YzlhN2Y3ZmY1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlFpbXV6MklWRXh5OXMydzhEL2hmZFE9PSIsInZhbHVlIjoieWJmUkU4bklVYmdMRmdUZGJ5VnMzWXhlK2thOGg4WG04Smk5d2FGRmtoY21XbWdOZkxBK2pqaS9Wc25ZUjFGNUdUb2pROFlLeDlOd01FRExqWmVMRVljQUQwaUY5d2FWeWlnNm1qeldnMVpDQjEzZWtRbm9NTkZ4OGNUcUVzb1IiLCJtYWMiOiI3ZTc1MjM4MzAwNzBmNWM4MzMxNTlmZDUxODlkZDI4OGUzN2E2ODk2ZDQ3MGYxODllYTVhNGQxNzRiMzdlZTdiIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704001v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704000v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703301v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703300v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120128v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120603v8s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120607v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230157v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230104v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230158v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230162v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230164v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230165v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230166v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230167v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230169v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230168v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230171v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230170v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230174v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230173v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule230172v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120119v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704101v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704100v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704201v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704200v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704151v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704150v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule226009v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: global traffic	DNS traffic detected: DNS query: gthr.uk
Source: global traffic	DNS traffic detected: DNS query: translate.google.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com

Source: chromecache_179.2.dr, chromecache_149.2.dr	String found in binary or memory: http://bootstrap-datepicker.readthedocs.org/
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: http://docs.closure-library.googlecode.com/git/closure_goog_date_date.js.source.html
Source: chromecache_179.2.dr, chromecache_149.2.dr	String found in binary or memory: http://eternicode.github.io/bootstrap-datepicker/
Source: chromecache_171.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_171.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_175.2.dr, chromecache_195.2.dr	String found in binary or memory: http://fronteed.com
Source: chromecache_161.2.dr, chromecache_142.2.dr	String found in binary or memory: http://getbootstrap.com)
Source: chromecache_175.2.dr, chromecache_195.2.dr	String found in binary or memory: http://git.io/arlzeA
Source: chromecache_154.2.dr	String found in binary or memory: http://github.danielcardoso.net/load-awesome/)
Source: chromecache_197.2.dr, chromecache_187.2.dr	String found in binary or memory: http://opensource.org/licenses/MIT
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: http://stackoverflow.com/questions/181348/instantiating-a-javascript-object-by-calling-prototype-con
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: http://stackoverflow.com/questions/3561493/is-there-a-regexp-escape-function-in-javascript
Source: chromecache_185.2.dr, chromecache_166.2.dr, chromecache_143.2.dr	String found in binary or memory: http://weareoutman.github.io/clockpicker/)
Source: chromecache_197.2.dr, chromecache_187.2.dr	String found in binary or memory: http://www.almsaeedstudio.com
Source: chromecache_179.2.dr, chromecache_174.2.dr, chromecache_149.2.dr, chromecache_145.2.dr, chromecache_169.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_174.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0Roboto
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_179.2.dr, chromecache_149.2.dr	String found in binary or memory: http://www.eyecon.ro/bootstrap-datepicker
Source: chromecache_159.2.dr, chromecache_150.2.dr	String found in binary or memory: http://www.jacklmoore.com/autosize
Source: chromecache_160.2.dr	String found in binary or memory: https://datatables.net/download
Source: chromecache_160.2.dr	String found in binary or memory: https://datatables.net/download/#bs/jszip-2.5.0/pdfmake-0.1.18/dt-1.10.12/b-1.2.2/b-colvis-1.2.2/b-f
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_191.2.dr	String found in binary or memory: https://fonts.googleapis.com/icon?family=Material
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
Source: chromecache_170.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2)
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/dordille/moment-isoduration/blob/master/moment.isoduration.js
Source: chromecache_179.2.dr, chromecache_149.2.dr	String found in binary or memory: https://github.com/eternicode/bootstrap-datepicker/
Source: chromecache_144.2.dr	String found in binary or memory: https://github.com/lipis/bootstrap-social
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/1407
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/1423
Source: chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/1548
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/1779
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/2166
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/issues/2978
Source: chromecache_139.2.dr, chromecache_151.2.dr	String found in binary or memory: https://github.com/moment/moment/pull/1871
Source: chromecache_161.2.dr, chromecache_142.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_178.2.dr, chromecache_184.2.dr	String found in binary or memory: https://github.com/urielcaire/jBility
Source: chromecache_162.2.dr	String found in binary or memory: https://github.com/urielcaire/jbility
Source: chromecache_178.2.dr, chromecache_184.2.dr	String found in binary or memory: https://github.com/urielcaire/jscookie
Source: chromecache_185.2.dr, chromecache_166.2.dr, chromecache_143.2.dr	String found in binary or memory: https://github.com/weareoutman/clockpicker/blob/gh-pages/LICENSE)
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/css/AdminLTE.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/css/bootstrap.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/css/custom.css?v=1
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/css/skins/skin-blue.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/e8c3
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/genealabs/laravel-caffeine/drip
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/img/dhuft.png
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/img/dhuft.svg
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/img/dhuftexport.png
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/js/app.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/js/bootstrap.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/accessibility/jbility/css/jbility.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/accessibility/jbility/js/jbility.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/autosize-master/dist/autosize.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/clockpicker/bootstrap-clockpicker.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/clockpicker/bootstrap-clockpicker.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/datatables/datatables.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/datepicker/bootstrap-datepicker.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/datepicker/datepicker3.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/floatingactionbutton/css/index.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/font-awesome/css/font-awesome.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/hopscotch-master/dist/css/hopscotch.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/iCheck/icheck.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/iCheck/line/blue.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/iCheck/square/blue.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/image-picker/image-picker.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/jQuery/jQuery-1.12.4.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/material-datetimepicker/css/bootstrap-material-datetimepicker.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/material-datetimepicker/js/bootstrap-material-datetimepicker.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/momentjs/moment.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/select2/select2.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/select2/select2.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/plugins/sweetalert-master/dist/sweetalert.min.css
Source: chromecache_191.2.dr	String found in binary or memory: https://gthr.uk/records
Source: chromecache_191.2.dr	String found in binary or memory: https://oss.maxcdn.com/html5shiv/3.7.2/html5shiv.min.js
Source: chromecache_191.2.dr	String found in binary or memory: https://oss.maxcdn.com/respond/1.4.2/respond.min.js
Source: chromecache_148.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_148.2.dr	String found in binary or memory: https://translate.google.com
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://translate.googleapis.com/element/log?format=json&hasfast=true
Source: chromecache_148.2.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://www.google.com/support/translate
Source: chromecache_148.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
Source: chromecache_146.2.dr, chromecache_148.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/1x/translate_24dp.png

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49256 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49176 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49451 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 49199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49428 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49188 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49463 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49371 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49404 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 49267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 49244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 49324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49278 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49383 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49304
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49425
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49424
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49423
Source: unknown	Network traffic detected: HTTP traffic on port 49290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49301
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49422
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49300
Source: unknown	Network traffic detected: HTTP traffic on port 49406 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49421
Source: unknown	Network traffic detected: HTTP traffic on port 49269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49420
Source: unknown	Network traffic detected: HTTP traffic on port 49200 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49246 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49281 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49426 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49438 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49419
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49418
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49361 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49417
Source: unknown	Network traffic detected: HTTP traffic on port 49346 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49416
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49415
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49414
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49413
Source: unknown	Network traffic detected: HTTP traffic on port 49350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49412
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49411
Source: unknown	Network traffic detected: HTTP traffic on port 49323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49410
Source: unknown	Network traffic detected: HTTP traffic on port 49415 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49449 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49198 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49473 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49312 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49409
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49408
Source: unknown	Network traffic detected: HTTP traffic on port 49234 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49407
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49406
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49405
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49404
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49403
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49402
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49401
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49400
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49427 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49334 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49395 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49472 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49212 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 49268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 49291 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49300 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49201 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49373 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49450 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49416 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 49362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49227
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49469
Source: unknown	Network traffic detected: HTTP traffic on port 49185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49468
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49225
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49467
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49224
Source: unknown	Network traffic detected: HTTP traffic on port 49265 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49345
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49466
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49223
Source: unknown	Network traffic detected: HTTP traffic on port 49288 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49344
Source: unknown	Network traffic detected: HTTP traffic on port 49431 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49465
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49464
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49221
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49342
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49463
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49220
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49462
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49460
Source: unknown	Network traffic detected: HTTP traffic on port 49242 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49207 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49219
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49218
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49339
Source: unknown	Network traffic detected: HTTP traffic on port 49380 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49217
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49338
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49459
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49216
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49337
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49458
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49215
Source: unknown	Network traffic detected: HTTP traffic on port 49327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49336
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49457
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49456
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49334
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49455
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49212
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49454
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49453
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49452
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49330
Source: unknown	Network traffic detected: HTTP traffic on port 49407 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49451
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49450
Source: unknown	Network traffic detected: HTTP traffic on port 49379 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49316 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49368 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49208
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49329
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49207
Source: unknown	Network traffic detected: HTTP traffic on port 49230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49449
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49206
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49448
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49205
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49447
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49204
Source: unknown	Network traffic detected: HTTP traffic on port 49219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49446
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49203
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49324
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49445
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49202
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49323
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49444
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49201
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49200
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49321
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49442
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49320
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49441
Source: unknown	Network traffic detected: HTTP traffic on port 49391 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49231 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49338 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49443 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49174 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49319
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49318
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49439
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49438
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49316
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49437
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49436
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49314
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49435
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49313
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49434
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49312
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49433
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49311
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49432
Source: unknown	Network traffic detected: HTTP traffic on port 49304 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49431
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49430
Source: unknown	Network traffic detected: HTTP traffic on port 49465 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49264 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49208 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49309
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49429
Source: unknown	Network traffic detected: HTTP traffic on port 49253 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49307
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49428
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49306
Source: unknown	Network traffic detected: HTTP traffic on port 49349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49427
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49426
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49326 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49269
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49268
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49389
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49388
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49387
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49386
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49264
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49385
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49384
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49262
Source: unknown	Network traffic detected: HTTP traffic on port 49370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49383
Source: unknown	Network traffic detected: HTTP traffic on port 49393 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49382
Source: unknown	Network traffic detected: HTTP traffic on port 49429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49260
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49381
Source: unknown	Network traffic detected: HTTP traffic on port 49464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49380
Source: unknown	Network traffic detected: HTTP traffic on port 49195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49441 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49259
Source: unknown	Network traffic detected: HTTP traffic on port 49220 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49258
Source: unknown	Network traffic detected: HTTP traffic on port 49266 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49379
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49257
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49378
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49256
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49377
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49255
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49376
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49254
Source: unknown	Network traffic detected: HTTP traffic on port 49287 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49375
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49253
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49374
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49373
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49372
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49250
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49371
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49370
Source: unknown	Network traffic detected: HTTP traffic on port 49337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49358 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49418 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49381 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49249
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49248
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49246
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49367
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49245
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49244
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49365
Source: unknown	Network traffic detected: HTTP traffic on port 49183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49243
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49364
Source: unknown	Network traffic detected: HTTP traffic on port 49408 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49242
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49240
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49361
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49360
Source: unknown	Network traffic detected: HTTP traffic on port 49221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49254 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49453 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49239
Source: unknown	Network traffic detected: HTTP traffic on port 49348 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49382 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49358
Source: unknown	Network traffic detected: HTTP traffic on port 49325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49357
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49356
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49234
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49233
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49475
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49232
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49353
Source: unknown	Network traffic detected: HTTP traffic on port 49430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49474
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49231
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49473
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49230
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49351
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49472
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49471
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49470
Source: unknown	Network traffic detected: HTTP traffic on port 49314 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49299 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49475 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49228
Source: unknown	Network traffic detected: HTTP traffic on port 49232 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49349
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49189
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49188
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49187
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49185
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49183
Source: unknown	Network traffic detected: HTTP traffic on port 49227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49204 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49181
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49468 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49445 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49388 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49342 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49411 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49457 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49179
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49177
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49176
Source: unknown	Network traffic detected: HTTP traffic on port 49297 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49175
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49174
Source: unknown	Network traffic detected: HTTP traffic on port 49262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49295
Source: unknown	Network traffic detected: HTTP traffic on port 49319 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49173
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49294
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49293
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49292
Source: unknown	Network traffic detected: HTTP traffic on port 49354 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49290
Source: unknown	Network traffic detected: HTTP traffic on port 49194 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49251 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49399 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49456 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49330 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49288
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49287
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49286
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49285
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49284
Source: unknown	Network traffic detected: HTTP traffic on port 49286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49283
Source: unknown	Network traffic detected: HTTP traffic on port 49318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49280
Source: unknown	Network traffic detected: HTTP traffic on port 49239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49216 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49409 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49279
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49278
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49399
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49277

Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49716 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49198 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49300 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49390 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49475 version: TLS 1.2

Source: classification engine

Classification label: mal52.phis.win@21/102@10/6

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2096 --field-trial-handle=2000,i,18067291500579562211,3919196223148191013,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://gthr.uk/e8c3"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2096 --field-trial-handle=2000,i,18067291500579562211,3919196223148191013,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Persistence and Installation Behavior

AI detected suspicious URL

Source: Email	JoeBoxAI: AI detected Brand spoofing attempt in URL: URL: https://gthr.uk/e8c3
Source: Email	JoeBoxAI: AI detected Typosquatting in URL: URL: https://gthr.uk/e8c3

ID:	1544771
Product:	CloudBasic
Start time:	18:19:51
Start date:	29.10.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://gthr.uk/e8c3

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Persistence and Installation Behavior

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://gthr.uk/e8c3

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Persistence and Installation Behavior

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://gthr.uk/e8c3