Windows Analysis Report
https://19apmic17.z13.web.core.windows.net/

AV Detection

Source: https://19apmic17.z13.web.core.windows.net/

SlashNext: detection malicious, Label: Scareware type: Phishing & Social Engineering

Phishing

Source: https://19apmic17.z13.web.core.windows.net/

Matcher: Template: microsoft matched with high similarity

Source: Yara match	File source: 0.7.pages.csv, type: HTML
Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: 0.19.pages.csv, type: HTML
Source: Yara match	File source: 0.12.pages.csv, type: HTML
Source: Yara match	File source: dropped/chromecache_563, type: DROPPED

Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0&sso_reload=true	HTTP Parser: Form action: https://support.microsoft.com/signin-oidc microsoftonline microsoft
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630858094745.ZmI5NzMwMzMtMmRlMy00MzE4LWE5N2QtZTBhYjQ0OGQ3NDdiZmQ5Y2U1NDYtNWU3Ny00MTA5LThhZTctNzNjZGYzZjQzYWUx&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXA8lPVA-gsHPESxLEaEFOKGHkel9VKOhoy2s2KwCfw9SDR6Ou-35FGQ85czzGBAKENgO4Mdf6q4S9xCABmf36yS-PtVdxcmap9hT2OhC3_YO4-yD2EVSKR40Ut_Q9sXQt4mgqRViHUQkj5kgQK47RRsWJLyNyXDTGsOulRrjBD7DjMTNc4aiQiRpg6XqttwUuAiEcMydb1ccIjGeqUPYYGx-i5NWfgiMWim65A6nQKfh-YbfuLqLDe1W47--x2v7axEwF2SLQVsC49c60xJmH_o0vAv9DanP8qE4JVcEO6cWnH0N2Bc7Db6s3hF8Y-n_LMwTU-vbd3gI0j-slINRHSi&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: Form action: https://support.microsoft.com/signin-oidc microsoftonline microsoft
Source: https://login.live.com/oauth20_authorize.srf?client_id=10fa57ef-4895-4ab2-872c-8c3613d4f7fb&scope=openid+profile+offline_access&redirect_uri=https%3a%2f%2fwww.microsoft.com%2fcascadeauth%2faccount%2fsignin-oidc&response_type=code&state=CfDJ8ErKcMLaah5Eq24B2tGmvfyz8-1m3Wc4Uf3pRvh0vpWhfV5efStzX7G3B1aJxMZ4cpe5WASdn9awFdNYnBa0IC_JdlMK51f1wmZKdtwj8Wyl74NXe4CKDyErAnsydrgPn_1HfQQFqkYfLfooXkkMVoTLecV39gXJhnOJrN7dCIoYW-nekU-v7aob2B2_BUWE0JhDKceKcqFy2vOdKFUXCR3Zwa_8C6CAIlS02I3_bGGuzzJElcCcC2Hy8bjJasvu-wKrIsec9HXED9CoKOWp22_5c-ShlshZ6TcCxF0FugqPg09XDR63QoNrep_zavh1vbl5-udgOVwydVL-iE6X20j2qERFC84oxu95K7d9I2qp-qhdsRXvMNU6IIsb5_f1aEQgDFfwMa_eEzCHMWI7Q92hRU_znnt3-uucVLxXoPGDb9KObhu4B0sEVsqEy8eTIrRZPW0ZoqRcIf6DlkRO1bPTmGPF_nevWyRgBHzbzWl1q4M27EDP4ggtI-5Oyzc_VM6ToO9qok0uuAyCRQ90dJ8&response_mode=form_post&nonce=638491631127375419.ZWJmNjZjMjMtOGYwMS00MTE4LTk4MTQtNTNiMjc4YWQwOTRjODZmMzEwOTEtYzc2MC00MTQ5LWE4NDMtYWJmMDE2NDc1MWZm&prompt=none&code_challenge=6TCCYB4kul5LhpgyQ2sO-SgrXsSIBVc7tVC5fEMluzU&code_challenge_method=S256&x-cl...	HTTP Parser: Form action: https://www.microsoft.com/cascadeauth/account/signin-oidc live microsoft

Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0&sso_reload=true

HTTP Parser: Iframe src: https://login.live.com/Me.htm?v=3

Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630858094745.ZmI5NzMwMzMtMmRlMy00MzE4LWE5N2QtZTBhYjQ0OGQ3NDdiZmQ5Y2U1NDYtNWU3Ny00MTA5LThhZTctNzNjZGYzZjQzYWUx&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXA8lPVA-gsHPESxLEaEFOKGHkel9VKOhoy2s2KwCfw9SDR6Ou-35FGQ85czzGBAKENgO4Mdf6q4S9xCABmf36yS-PtVdxcmap9hT2OhC3_YO4-yD2EVSKR40Ut_Q9sXQt4mgqRViHUQkj5kgQK47RRsWJLyNyXDTGsOulRrjBD7DjMTNc4aiQiRpg6XqttwUuAiEcMydb1ccIjGeqUPYYGx-i5NWfgiMWim65A6nQKfh-YbfuLqLDe1W47--x2v7axEwF2SLQVsC49c60xJmH_o0vAv9DanP8qE4JVcEO6cWnH0N2Bc7Db6s3hF8Y-n_LMwTU-vbd3gI0j-slINRHSi&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0

HTTP Parser: Iframe src: https://login.live.com/Me.htm?v=3

Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: Number of links: 0
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0&sso_reload=true	HTTP Parser: Number of links: 0
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630858094745.ZmI5NzMwMzMtMmRlMy00MzE4LWE5N2QtZTBhYjQ0OGQ3NDdiZmQ5Y2U1NDYtNWU3Ny00MTA5LThhZTctNzNjZGYzZjQzYWUx&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXA8lPVA-gsHPESxLEaEFOKGHkel9VKOhoy2s2KwCfw9SDR6Ou-35FGQ85czzGBAKENgO4Mdf6q4S9xCABmf36yS-PtVdxcmap9hT2OhC3_YO4-yD2EVSKR40Ut_Q9sXQt4mgqRViHUQkj5kgQK47RRsWJLyNyXDTGsOulRrjBD7DjMTNc4aiQiRpg6XqttwUuAiEcMydb1ccIjGeqUPYYGx-i5NWfgiMWim65A6nQKfh-YbfuLqLDe1W47--x2v7axEwF2SLQVsC49c60xJmH_o0vAv9DanP8qE4JVcEO6cWnH0N2Bc7Db6s3hF8Y-n_LMwTU-vbd3gI0j-slINRHSi&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: Number of links: 0
Source: https://login.live.com/oauth20_authorize.srf?client_id=10fa57ef-4895-4ab2-872c-8c3613d4f7fb&scope=openid+profile+offline_access&redirect_uri=https%3a%2f%2fwww.microsoft.com%2fcascadeauth%2faccount%2fsignin-oidc&response_type=code&state=CfDJ8ErKcMLaah5Eq24B2tGmvfyz8-1m3Wc4Uf3pRvh0vpWhfV5efStzX7G3B1aJxMZ4cpe5WASdn9awFdNYnBa0IC_JdlMK51f1wmZKdtwj8Wyl74NXe4CKDyErAnsydrgPn_1HfQQFqkYfLfooXkkMVoTLecV39gXJhnOJrN7dCIoYW-nekU-v7aob2B2_BUWE0JhDKceKcqFy2vOdKFUXCR3Zwa_8C6CAIlS02I3_bGGuzzJElcCcC2Hy8bjJasvu-wKrIsec9HXED9CoKOWp22_5c-ShlshZ6TcCxF0FugqPg09XDR63QoNrep_zavh1vbl5-udgOVwydVL-iE6X20j2qERFC84oxu95K7d9I2qp-qhdsRXvMNU6IIsb5_f1aEQgDFfwMa_eEzCHMWI7Q92hRU_znnt3-uucVLxXoPGDb9KObhu4B0sEVsqEy8eTIrRZPW0ZoqRcIf6DlkRO1bPTmGPF_nevWyRgBHzbzWl1q4M27EDP4ggtI-5Oyzc_VM6ToO9qok0uuAyCRQ90dJ8&response_mode=form_post&nonce=638491631127375419.ZWJmNjZjMjMtOGYwMS00MTE4LTk4MTQtNTNiMjc4YWQwOTRjODZmMzEwOTEtYzc2MC00MTQ5LWE4NDMtYWJmMDE2NDc1MWZm&prompt=none&code_challenge=6TCCYB4kul5LhpgyQ2sO-SgrXsSIBVc7tVC5fEMluzU&code_challenge_method=S256&x-cl...	HTTP Parser: Number of links: 0

Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: Title: Redirecting does not match URL
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0&sso_reload=true	HTTP Parser: Title: Redirecting does not match URL
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630858094745.ZmI5NzMwMzMtMmRlMy00MzE4LWE5N2QtZTBhYjQ0OGQ3NDdiZmQ5Y2U1NDYtNWU3Ny00MTA5LThhZTctNzNjZGYzZjQzYWUx&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXA8lPVA-gsHPESxLEaEFOKGHkel9VKOhoy2s2KwCfw9SDR6Ou-35FGQ85czzGBAKENgO4Mdf6q4S9xCABmf36yS-PtVdxcmap9hT2OhC3_YO4-yD2EVSKR40Ut_Q9sXQt4mgqRViHUQkj5kgQK47RRsWJLyNyXDTGsOulRrjBD7DjMTNc4aiQiRpg6XqttwUuAiEcMydb1ccIjGeqUPYYGx-i5NWfgiMWim65A6nQKfh-YbfuLqLDe1W47--x2v7axEwF2SLQVsC49c60xJmH_o0vAv9DanP8qE4JVcEO6cWnH0N2Bc7Db6s3hF8Y-n_LMwTU-vbd3gI0j-slINRHSi&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: Title: Redirecting does not match URL
Source: https://login.live.com/oauth20_authorize.srf?client_id=10fa57ef-4895-4ab2-872c-8c3613d4f7fb&scope=openid+profile+offline_access&redirect_uri=https%3a%2f%2fwww.microsoft.com%2fcascadeauth%2faccount%2fsignin-oidc&response_type=code&state=CfDJ8ErKcMLaah5Eq24B2tGmvfyz8-1m3Wc4Uf3pRvh0vpWhfV5efStzX7G3B1aJxMZ4cpe5WASdn9awFdNYnBa0IC_JdlMK51f1wmZKdtwj8Wyl74NXe4CKDyErAnsydrgPn_1HfQQFqkYfLfooXkkMVoTLecV39gXJhnOJrN7dCIoYW-nekU-v7aob2B2_BUWE0JhDKceKcqFy2vOdKFUXCR3Zwa_8C6CAIlS02I3_bGGuzzJElcCcC2Hy8bjJasvu-wKrIsec9HXED9CoKOWp22_5c-ShlshZ6TcCxF0FugqPg09XDR63QoNrep_zavh1vbl5-udgOVwydVL-iE6X20j2qERFC84oxu95K7d9I2qp-qhdsRXvMNU6IIsb5_f1aEQgDFfwMa_eEzCHMWI7Q92hRU_znnt3-uucVLxXoPGDb9KObhu4B0sEVsqEy8eTIrRZPW0ZoqRcIf6DlkRO1bPTmGPF_nevWyRgBHzbzWl1q4M27EDP4ggtI-5Oyzc_VM6ToO9qok0uuAyCRQ90dJ8&response_mode=form_post&nonce=638491631127375419.ZWJmNjZjMjMtOGYwMS00MTE4LTk4MTQtNTNiMjc4YWQwOTRjODZmMzEwOTEtYzc2MC00MTQ5LWE4NDMtYWJmMDE2NDc1MWZm&prompt=none&code_challenge=6TCCYB4kul5LhpgyQ2sO-SgrXsSIBVc7tVC5fEMluzU&code_challenge_method=S256&x-cl...	HTTP Parser: Title: Continue does not match URL

Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: No favicon
Source: https://login.microsoftonline.com/savedusers?appid=ee272b19-4411-433f-8f28-5c13cb6fd407&wreply=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&uaid=713af4d9-538b-4e43-8d66-23261960d49d&partnerId=smcconvergence&idpflag=proxy	HTTP Parser: No favicon
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0&sso_reload=true	HTTP Parser: No favicon
Source: about:blank	HTTP Parser: No favicon
Source: about:blank	HTTP Parser: No favicon
Source: about:blank	HTTP Parser: No favicon
Source: about:blank	HTTP Parser: No favicon
Source: about:blank	HTTP Parser: No favicon
Source: about:blank	HTTP Parser: No favicon
Source: about:blank	HTTP Parser: No favicon
Source: about:blank	HTTP Parser: No favicon
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630858094745.ZmI5NzMwMzMtMmRlMy00MzE4LWE5N2QtZTBhYjQ0OGQ3NDdiZmQ5Y2U1NDYtNWU3Ny00MTA5LThhZTctNzNjZGYzZjQzYWUx&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXA8lPVA-gsHPESxLEaEFOKGHkel9VKOhoy2s2KwCfw9SDR6Ou-35FGQ85czzGBAKENgO4Mdf6q4S9xCABmf36yS-PtVdxcmap9hT2OhC3_YO4-yD2EVSKR40Ut_Q9sXQt4mgqRViHUQkj5kgQK47RRsWJLyNyXDTGsOulRrjBD7DjMTNc4aiQiRpg6XqttwUuAiEcMydb1ccIjGeqUPYYGx-i5NWfgiMWim65A6nQKfh-YbfuLqLDe1W47--x2v7axEwF2SLQVsC49c60xJmH_o0vAv9DanP8qE4JVcEO6cWnH0N2Bc7Db6s3hF8Y-n_LMwTU-vbd3gI0j-slINRHSi&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: No favicon
Source: https://support.microsoft.com/en-us/silentsigninhandler	HTTP Parser: No favicon
Source: https://fpt.microsoft.com/tags?session_id=910923ad-9cf1-40af-9418-795076abb119	HTTP Parser: No favicon
Source: https://login.live.com/oauth20_authorize.srf?client_id=10fa57ef-4895-4ab2-872c-8c3613d4f7fb&scope=openid+profile+offline_access&redirect_uri=https%3a%2f%2fwww.microsoft.com%2fcascadeauth%2faccount%2fsignin-oidc&response_type=code&state=CfDJ8ErKcMLaah5Eq24B2tGmvfyz8-1m3Wc4Uf3pRvh0vpWhfV5efStzX7G3B1aJxMZ4cpe5WASdn9awFdNYnBa0IC_JdlMK51f1wmZKdtwj8Wyl74NXe4CKDyErAnsydrgPn_1HfQQFqkYfLfooXkkMVoTLecV39gXJhnOJrN7dCIoYW-nekU-v7aob2B2_BUWE0JhDKceKcqFy2vOdKFUXCR3Zwa_8C6CAIlS02I3_bGGuzzJElcCcC2Hy8bjJasvu-wKrIsec9HXED9CoKOWp22_5c-ShlshZ6TcCxF0FugqPg09XDR63QoNrep_zavh1vbl5-udgOVwydVL-iE6X20j2qERFC84oxu95K7d9I2qp-qhdsRXvMNU6IIsb5_f1aEQgDFfwMa_eEzCHMWI7Q92hRU_znnt3-uucVLxXoPGDb9KObhu4B0sEVsqEy8eTIrRZPW0ZoqRcIf6DlkRO1bPTmGPF_nevWyRgBHzbzWl1q4M27EDP4ggtI-5Oyzc_VM6ToO9qok0uuAyCRQ90dJ8&response_mode=form_post&nonce=638491631127375419.ZWJmNjZjMjMtOGYwMS00MTE4LTk4MTQtNTNiMjc4YWQwOTRjODZmMzEwOTEtYzc2MC00MTQ5LWE4NDMtYWJmMDE2NDc1MWZm&prompt=none&code_challenge=6TCCYB4kul5LhpgyQ2sO-SgrXsSIBVc7tVC5fEMluzU&code_challenge_method=S256&x-cl...	HTTP Parser: No favicon
Source: https://www.microsoft.com/cascadeauth/store/account/silentauth?auth=None	HTTP Parser: No favicon
Source: https://publisher.liveperson.net/iframe-le-tag/iframe-cs.html?lpsite=60270350&lpsection=store-m365-en-us&buttons=lpChatSales	HTTP Parser: No favicon
Source: https://publisher.liveperson.net/iframe-le-tag/iframe-cs.html?lpsite=60270350&lpsection=store-sales-en-us-exp1&buttons=lpChatService,lpChatSales	HTTP Parser: No favicon
Source: https://publisher.liveperson.net/iframe-le-tag/iframe-cs.html?lpsite=60270350&lpsection=store-sales-en-us-exp1&buttons=lpChatService,lpChatSales	HTTP Parser: No favicon
Source: https://publisher.liveperson.net/iframe-le-tag/iframe-cs.html?lpsite=60270350&lpsection=store-sales-en-us-exp1&buttons=lpChatService,lpChatSales	HTTP Parser: No favicon

Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0&sso_reload=true	HTTP Parser: No <meta name="author".. found
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630858094745.ZmI5NzMwMzMtMmRlMy00MzE4LWE5N2QtZTBhYjQ0OGQ3NDdiZmQ5Y2U1NDYtNWU3Ny00MTA5LThhZTctNzNjZGYzZjQzYWUx&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXA8lPVA-gsHPESxLEaEFOKGHkel9VKOhoy2s2KwCfw9SDR6Ou-35FGQ85czzGBAKENgO4Mdf6q4S9xCABmf36yS-PtVdxcmap9hT2OhC3_YO4-yD2EVSKR40Ut_Q9sXQt4mgqRViHUQkj5kgQK47RRsWJLyNyXDTGsOulRrjBD7DjMTNc4aiQiRpg6XqttwUuAiEcMydb1ccIjGeqUPYYGx-i5NWfgiMWim65A6nQKfh-YbfuLqLDe1W47--x2v7axEwF2SLQVsC49c60xJmH_o0vAv9DanP8qE4JVcEO6cWnH0N2Bc7Db6s3hF8Y-n_LMwTU-vbd3gI0j-slINRHSi&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: No <meta name="author".. found
Source: https://login.live.com/oauth20_authorize.srf?client_id=10fa57ef-4895-4ab2-872c-8c3613d4f7fb&scope=openid+profile+offline_access&redirect_uri=https%3a%2f%2fwww.microsoft.com%2fcascadeauth%2faccount%2fsignin-oidc&response_type=code&state=CfDJ8ErKcMLaah5Eq24B2tGmvfyz8-1m3Wc4Uf3pRvh0vpWhfV5efStzX7G3B1aJxMZ4cpe5WASdn9awFdNYnBa0IC_JdlMK51f1wmZKdtwj8Wyl74NXe4CKDyErAnsydrgPn_1HfQQFqkYfLfooXkkMVoTLecV39gXJhnOJrN7dCIoYW-nekU-v7aob2B2_BUWE0JhDKceKcqFy2vOdKFUXCR3Zwa_8C6CAIlS02I3_bGGuzzJElcCcC2Hy8bjJasvu-wKrIsec9HXED9CoKOWp22_5c-ShlshZ6TcCxF0FugqPg09XDR63QoNrep_zavh1vbl5-udgOVwydVL-iE6X20j2qERFC84oxu95K7d9I2qp-qhdsRXvMNU6IIsb5_f1aEQgDFfwMa_eEzCHMWI7Q92hRU_znnt3-uucVLxXoPGDb9KObhu4B0sEVsqEy8eTIrRZPW0ZoqRcIf6DlkRO1bPTmGPF_nevWyRgBHzbzWl1q4M27EDP4ggtI-5Oyzc_VM6ToO9qok0uuAyCRQ90dJ8&response_mode=form_post&nonce=638491631127375419.ZWJmNjZjMjMtOGYwMS00MTE4LTk4MTQtNTNiMjc4YWQwOTRjODZmMzEwOTEtYzc2MC00MTQ5LWE4NDMtYWJmMDE2NDc1MWZm&prompt=none&code_challenge=6TCCYB4kul5LhpgyQ2sO-SgrXsSIBVc7tVC5fEMluzU&code_challenge_method=S256&x-cl	HTTP Parser: No <meta name="author".. found

Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630478789314.YWU4ZWM1ZmMtMjZiOC00MTY1LTlhZDAtZGI5OWE3NWVjYjFkYWZmNmYxN2EtZjgwMC00MmUzLWJkMTEtZmRmN2I2MWRjOTI0&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXCuM2KRBA4CXzCwM13bLBn9rdL5uzKUyh29V8uzMg9lW6LVtlUzP_Vti7mDj8fJJ4DLglKoMDxiJtPWwV3eNW-a2LeXZMqLcN9jLs3Pnp_XF4m1YFugUwOlhhM8a_8vdUUrJ-a-6Pyv2PZbxo6OfoAcJkrwSP8iAwBtbDeLAlSUwhgdtpzyJuWtp7qpFLPcYJevgLVbPvV00v77FJX9shp37Le0xoBMq82aZ-b6KNIebWAYXkaFhLv6AA3UX33q8wYBFXw5zgF7yI64Tm5u0KJJlV-GPOBKJOsKXIIPZlUWQe6g-6Jf005QXhoyl9QDMXBZL2yka-xvZtuLMGAwpGTE&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0&sso_reload=true	HTTP Parser: No <meta name="copyright".. found
Source: https://login.microsoftonline.com/common/oauth2/v2.0/authorize?client_id=ee272b19-4411-433f-8f28-5c13cb6fd407&redirect_uri=https%3A%2F%2Fsupport.microsoft.com%2Fsignin-oidc&response_type=code%20id_token&scope=openid%20profile%20offline_access&response_mode=form_post&nonce=638491630858094745.ZmI5NzMwMzMtMmRlMy00MzE4LWE5N2QtZTBhYjQ0OGQ3NDdiZmQ5Y2U1NDYtNWU3Ny00MTA5LThhZTctNzNjZGYzZjQzYWUx&prompt=none&nopa=2&state=CfDJ8AfnZ7Mjx1BCgeFmRZwDwXA8lPVA-gsHPESxLEaEFOKGHkel9VKOhoy2s2KwCfw9SDR6Ou-35FGQ85czzGBAKENgO4Mdf6q4S9xCABmf36yS-PtVdxcmap9hT2OhC3_YO4-yD2EVSKR40Ut_Q9sXQt4mgqRViHUQkj5kgQK47RRsWJLyNyXDTGsOulRrjBD7DjMTNc4aiQiRpg6XqttwUuAiEcMydb1ccIjGeqUPYYGx-i5NWfgiMWim65A6nQKfh-YbfuLqLDe1W47--x2v7axEwF2SLQVsC49c60xJmH_o0vAv9DanP8qE4JVcEO6cWnH0N2Bc7Db6s3hF8Y-n_LMwTU-vbd3gI0j-slINRHSi&x-client-SKU=ID_NET6_0&x-client-ver=6.35.0.0	HTTP Parser: No <meta name="copyright".. found
Source: https://login.live.com/oauth20_authorize.srf?client_id=10fa57ef-4895-4ab2-872c-8c3613d4f7fb&scope=openid+profile+offline_access&redirect_uri=https%3a%2f%2fwww.microsoft.com%2fcascadeauth%2faccount%2fsignin-oidc&response_type=code&state=CfDJ8ErKcMLaah5Eq24B2tGmvfyz8-1m3Wc4Uf3pRvh0vpWhfV5efStzX7G3B1aJxMZ4cpe5WASdn9awFdNYnBa0IC_JdlMK51f1wmZKdtwj8Wyl74NXe4CKDyErAnsydrgPn_1HfQQFqkYfLfooXkkMVoTLecV39gXJhnOJrN7dCIoYW-nekU-v7aob2B2_BUWE0JhDKceKcqFy2vOdKFUXCR3Zwa_8C6CAIlS02I3_bGGuzzJElcCcC2Hy8bjJasvu-wKrIsec9HXED9CoKOWp22_5c-ShlshZ6TcCxF0FugqPg09XDR63QoNrep_zavh1vbl5-udgOVwydVL-iE6X20j2qERFC84oxu95K7d9I2qp-qhdsRXvMNU6IIsb5_f1aEQgDFfwMa_eEzCHMWI7Q92hRU_znnt3-uucVLxXoPGDb9KObhu4B0sEVsqEy8eTIrRZPW0ZoqRcIf6DlkRO1bPTmGPF_nevWyRgBHzbzWl1q4M27EDP4ggtI-5Oyzc_VM6ToO9qok0uuAyCRQ90dJ8&response_mode=form_post&nonce=638491631127375419.ZWJmNjZjMjMtOGYwMS00MTE4LTk4MTQtNTNiMjc4YWQwOTRjODZmMzEwOTEtYzc2MC00MTQ5LWE4NDMtYWJmMDE2NDc1MWZm&prompt=none&code_challenge=6TCCYB4kul5LhpgyQ2sO-SgrXsSIBVc7tVC5fEMluzU&code_challenge_method=S256&x-cl...	HTTP Parser: No <meta name="copyright".. found

Compliance

Source: unknown	HTTPS traffic detected: 184.31.62.93:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.31.62.93:443 -> 192.168.2.4:49803 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.222.162.32:443 -> 192.168.2.4:49842 version: TLS 1.2

Networking

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 184.31.62.93
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.63.35
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.63.35
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.40.205.73
Source: unknown	TCP traffic detected without corresponding DNS query: 23.40.205.73
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /postback?format=img&sum={replace} HTTP/1.1Host: m03lm.rdtk.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /6613e667a0c6737bd1297e7c/1hquro1rp HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://19apmic17.z13.web.core.windows.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /get/script.js?referrer=https://19apmic17.z13.web.core.windows.net/ HTTP/1.1Host: userstatics.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /meversion?partner=SMCConvergence&market=en-us&uhf=1 HTTP/1.1Host: mem.gfx.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mscc/lib/v2/wcp-consent.js HTTP/1.1Host: wcpstatic.microsoft.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MC1=GUID=749eee6039c5489b9db3000c7ab3f399&HASH=749e&LV=202310&V=4&LU=1696413236917; MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /scripts/c/ms.shared.analytics.mectrl-3.gbl.min.js HTTP/1.1Host: js.monitor.azure.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://support.microsoft.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripts/me/MeControl/10.24086.4/en-US/meBoot.min.js HTTP/1.1Host: mem.gfx.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://support.microsoft.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/1.0/content/js/BssoInterrupt_Core_ChpboAn7HyXj89A22M8mzg2.js HTTP/1.1Host: aadcdn.msftauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.microsoftonline.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://login.microsoftonline.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripts/me/MeControl/10.24086.4/en-US/meCore.min.js HTTP/1.1Host: mem.gfx.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://support.microsoft.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /16.000/content/js/MeControl_9Q-UV4NxY-KLeZzNG9Yrsw2.js HTTP/1.1Host: logincdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.live.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://login.live.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/1.0/content/js/FetchSessions_Core_JZTKIH_Tdx6afyJMNXnGEQ2.js HTTP/1.1Host: aadcdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.microsoftonline.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://login.microsoftonline.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /me/mecache?partner=smcconvergence&wreply=https%3A%2F%2Fsupport.microsoft.com HTTP/1.1Host: mem.gfx.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-main.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://19apmic17.z13.web.core.windows.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-vendor.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://19apmic17.z13.web.core.windows.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-vendors.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://19apmic17.z13.web.core.windows.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-runtime.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://19apmic17.z13.web.core.windows.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-common.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://19apmic17.z13.web.core.windows.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-app.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://19apmic17.z13.web.core.windows.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/widget-settings?propertyId=6613e667a0c6737bd1297e7c&widgetId=1hquro1rp&sv=null HTTP/1.1Host: va.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://19apmic17.z13.web.core.windows.netSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/languages/en.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/widget-settings?propertyId=6613e667a0c6737bd1297e7c&widgetId=1hquro1rp&sv=null HTTP/1.1Host: va.tawk.toConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-2c776523.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-9294da6c.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-f1565420.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-2d0b383d.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-48f3b594.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-4fe9d5dd.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/session/start HTTP/1.1Host: va.tawk.toConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/?k=6622f2387c514ae2faceda03&cver=0&pop=false&asver=306&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MiLCJ2aWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MtUUd6NXBIaEFCUWZrM0NVZ0ZZeXBaIiwic2lkIjoiNjYyMmYyMzg3YzUxNGFlMmZhY2VkYTAzIiwiaWF0IjoxNzEzNTY2MjY0LCJleHAiOjE3MTM1NjgwNjQsImp0aSI6IlFITTU5aW9GZm9aUlVseFlUdFlGSCJ9.5G3Y_zPNO7oEpijU1PoWL-fn4syn0_fYHyJ7B8sn3J1c9uIVV8Oc63x9lDVTwxSk2XAJupeR12sL3qIZgKnCmg&EIO=3&transport=websocket&__t=OxuWYh2 HTTP/1.1Host: vsa119.tawk.toConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://19apmic17.z13.web.core.windows.netSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: F8yYbBZXWnbXEYeiov88Hw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/css/bubble-widget.css HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-2d0b9454.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/js/twk-chunk-24d8db78.js HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/css/min-widget.css HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/css/message-preview.css HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/?k=6622f2387c514ae2faceda03&cver=0&pop=false&asver=306&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MiLCJ2aWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MtUUd6NXBIaEFCUWZrM0NVZ0ZZeXBaIiwic2lkIjoiNjYyMmYyMzg3YzUxNGFlMmZhY2VkYTAzIiwiaWF0IjoxNzEzNTY2MjY0LCJleHAiOjE3MTM1NjgwNjQsImp0aSI6IlFITTU5aW9GZm9aUlVseFlUdFlGSCJ9.5G3Y_zPNO7oEpijU1PoWL-fn4syn0_fYHyJ7B8sn3J1c9uIVV8Oc63x9lDVTwxSk2XAJupeR12sL3qIZgKnCmg&EIO=3&transport=websocket&__t=OxuWZ25 HTTP/1.1Host: vsa119.tawk.toConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://19apmic17.z13.web.core.windows.netSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: 6ep/1/5//z1dUf9mOgN0vA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /_s/v4/app/660e2260004/css/max-widget.css HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/assets/images/attention-grabbers/168-r-br.svg HTTP/1.1Host: embed.tawk.toConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/session/start HTTP/1.1Host: va.tawk.toConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/?k=6622f2387c514ae2faceda03&cver=0&pop=false&asver=306&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MiLCJ2aWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MtUUd6NXBIaEFCUWZrM0NVZ0ZZeXBaIiwic2lkIjoiNjYyMmYyMzg3YzUxNGFlMmZhY2VkYTAzIiwiaWF0IjoxNzEzNTY2MjY0LCJleHAiOjE3MTM1NjgwNjQsImp0aSI6IlFITTU5aW9GZm9aUlVseFlUdFlGSCJ9.5G3Y_zPNO7oEpijU1PoWL-fn4syn0_fYHyJ7B8sn3J1c9uIVV8Oc63x9lDVTwxSk2XAJupeR12sL3qIZgKnCmg&EIO=3&transport=websocket&__t=OxuWZQb HTTP/1.1Host: vsa112.tawk.toConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://19apmic17.z13.web.core.windows.netSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: idzJtAUdCZZKk+F49lUXgg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/?k=6622f2387c514ae2faceda03&cver=0&pop=false&asver=306&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MiLCJ2aWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MtUUd6NXBIaEFCUWZrM0NVZ0ZZeXBaIiwic2lkIjoiNjYyMmYyMzg3YzUxNGFlMmZhY2VkYTAzIiwiaWF0IjoxNzEzNTY2MjY0LCJleHAiOjE3MTM1NjgwNjQsImp0aSI6IlFITTU5aW9GZm9aUlVseFlUdFlGSCJ9.5G3Y_zPNO7oEpijU1PoWL-fn4syn0_fYHyJ7B8sn3J1c9uIVV8Oc63x9lDVTwxSk2XAJupeR12sL3qIZgKnCmg&EIO=3&transport=websocket&__t=OxuWZoq HTTP/1.1Host: vsa112.tawk.toConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://19apmic17.z13.web.core.windows.netSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: O8jZe2/ljApVcSt6R8vniQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /v1/session/start HTTP/1.1Host: va.tawk.toConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_s/v4/assets/images/attention-grabbers/168-r-br.svg HTTP/1.1Host: embed.tawk.toConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/?k=6622f2387c514ae2faceda03&cver=0&pop=false&asver=306&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MiLCJ2aWQiOiI2NjEzZTY2N2EwYzY3MzdiZDEyOTdlN2MtUUd6NXBIaEFCUWZrM0NVZ0ZZeXBaIiwic2lkIjoiNjYyMmYyMzg3YzUxNGFlMmZhY2VkYTAzIiwiaWF0IjoxNzEzNTY2MjY0LCJleHAiOjE3MTM1NjgwNjQsImp0aSI6IlFITTU5aW9GZm9aUlVseFlUdFlGSCJ9.5G3Y_zPNO7oEpijU1PoWL-fn4syn0_fYHyJ7B8sn3J1c9uIVV8Oc63x9lDVTwxSk2XAJupeR12sL3qIZgKnCmg&EIO=3&transport=websocket&__t=OxuWa9F HTTP/1.1Host: vsa112.tawk.toConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://19apmic17.z13.web.core.windows.netSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: vQmZQVbXNxokeU/b7LzzFg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /v1/session/start HTTP/1.1Host: va.tawk.toConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/session/start HTTP/1.1Host: va.tawk.toConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/session/start HTTP/1.1Host: va.tawk.toConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mscc/lib/v2/wcp-consent.js HTTP/1.1Host: wcpstatic.microsoft.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MC1=GUID=749eee6039c5489b9db3000c7ab3f399&HASH=749e&LV=202310&V=4&LU=1696413236917; MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MS0=d493eab65bfc4a6da80e23eb11acf0a9; MSCC=NR; ak_bmsc=0DFEB062DEC7BC972194A2DB83C91D32~000000000000000000000000000000~YAAQjjhjaKMRcO6OAQAA5nKC+BfaGUNB0/nXJhj2Tp+cxIqRIbj6tjJ8fdmdKH5tD6BvO19E0Ni34aeGVOa9oTQ+xCrz4Z1UhKf8CP8OZ5ZMbp72+7xVSMdAlF2LOZVkGIT1Dt5JeXJbQP6GiZOVpqZNsti1HqsmbKu/zgIEZtMlljtyeJJgDOnS4cV7PjEDDb0cNe/7liWix9HWX2D1WCmdjRzOoNGjkUfBxS/3MMQPOqPKEXTFb9T5IPOUYouTKhQmHvSCU26N04C5zVoCg1SvlPdHoTAwrd/Zlw9Xl/pq9KjgM8q4CLLUoIzD5cQy9Fl8bjhJh1c3Zs+8rP8y9U5qLmnfeG1PxSK6nWpESc55qpZTfwwfM/TXHYjK
Source: global traffic	HTTP traffic detected: GET /meversion?partner=SMCConvergence&market=en-us&uhf=1 HTTP/1.1Host: mem.gfx.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /shared/1.0/content/js/FetchSessions_Core_y7LMHA470KeXEo0amribzA2.js HTTP/1.1Host: aadcdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.microsoftonline.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://login.microsoftonline.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripts/me/MeControl/10.24086.4/en-US/meBoot.min.js HTTP/1.1Host: mem.gfx.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://support.microsoft.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripts/c/ms.shared.analytics.mectrl-3.gbl.min.js HTTP/1.1Host: js.monitor.azure.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://support.microsoft.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripts/me/MeControl/10.24086.4/en-US/meCore.min.js HTTP/1.1Host: mem.gfx.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://support.microsoft.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://support.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /16.000/content/js/MeControl_9Q-UV4NxY-KLeZzNG9Yrsw2.js HTTP/1.1Host: logincdn.msauth.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://login.live.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://login.live.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /meversion?partner=OfficeProducts&market=en-us&uhf=1 HTTP/1.1Host: mem.gfx.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /www32/ptc/05d32363-d534-4d93-9b65-cde674775e71.js HTTP/1.1Host: cdnssl.clicktale.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /iframe-le-tag/iframe-cs.html?lpsite=60270350&lpsection=store-m365-en-us&buttons=lpChatSales HTTP/1.1Host: publisher.liveperson.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripts/c/ms.analytics-web-3.min.js HTTP/1.1Host: js.monitor.azure.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://publisher.liveperson.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /A1133099-331c-4cdf-89b0-06dc20e168021.js HTTP/1.1Host: d.impactradius-event.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ptc/05d32363-d534-4d93-9b65-cde674775e71.js HTTP/1.1Host: cdnssl.clicktale.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.microsoft.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=EA76ADE95776D2EC7F000101%40AdobeOrg&d_nsid=0&ts=1713566315507 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: */*Origin: https://www.microsoft.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr?id=1770559986549030&ev=PixelInitialized&dpo=LDU&dpoco=0&dpost=0&ts=1713566315777 HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr?id=undefined&ev=PixelInitialized&dpo=LDU&dpoco=0&dpost=0&ts=1713566315777 HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr?id=undefined&ev=PageView&dpo=LDU&dpoco=0&dpost=0&ts=1713566315777 HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr?id=1770559986549030&ev=PageView&dpo=LDU&dpoco=0&dpost=0&ts=1713566315777 HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcc/05d32363-d534-4d93-9b65-cde674775e71.js?DeploymentConfigName=Release_20230511&Version=2 HTTP/1.1Host: cdnssl.clicktale.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.microsoft.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /www/bridge-WR110.js HTTP/1.1Host: cdnssl.clicktale.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.microsoft.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /me/mecache?partner=officeproducts&wreply=https%3A%2F%2Fwww.microsoft.com HTTP/1.1Host: mem.gfx.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/923371515/?guid=ON&script=0&url=www.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fbuy%2Fcompare-all-microsoft-365-products&data=ecomm_pagetype%3Dcategory HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dest5.html?d_nsid=0 HTTP/1.1Host: mscom.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=4.4.0&d_fieldgroup=A&mcorgid=EA76ADE95776D2EC7F000101%40AdobeOrg&mid=13856825675432384200610105413061261476&ts=1713566316938 HTTP/1.1Host: msftenterprise.sc.omtrdc.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: */*Origin: https://www.microsoft.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ats/ats?cmd=RT&AdvertiserID=4249&platform=TUMRI&ActionID=20114&ActionName=Microsoft_Store_RT_Pixel&ut1=&ut2=en&ut3=us&cachebuster=21537383 HTTP/1.1Host: ats.everesttech.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=4.4.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=EA76ADE95776D2EC7F000101%40AdobeOrg&d_nsid=0&d_mid=13856825675432384200610105413061261476&d_blob=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&d_cid_ic=MSFPC%01749eee6039c5489b9db3000c7ab3f399%012&d_cid_ic=MC1%01749eee6039c5489b9db3000c7ab3f399%012&ts=1713566317775 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: */*Origin: https://www.microsoft.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347
Source: global traffic	HTTP traffic detected: GET /pageview?ex=&pvt=n&la=en-US&uc=0&url=https%3A%2F%2Fwww.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fbuy%2Fcompare-all-microsoft-365-products%3Focid%3Dcmmibbws4d3&dr=&dw=1263&dh=6283&ww=1280&wh=907&sw=1280&sh=1024&uu=7e6b5ad3-fdc5-ae56-914c-ef710785f69f&sn=1&hd=1713566317&v=13.89.2&pid=2422&pn=1&r=515358 HTTP/1.1Host: c.clicktale.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pageEvent?value=H4sIAAAAAAAAA3POz0vLTLdSCErNSU0sTo03MjAyNjA1NAQA5ZGESRgAAAA%3D&ct=2&isETR=false&isCustomHashId=false&v=13.89.2&pid=2422&pn=1&sn=1&uu=7e6b5ad3-fdc5-ae56-914c-ef710785f69f&r=367961 HTTP/1.1Host: c.clicktale.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pageEvent?value=H4sIAAAAAAAAAwsIcVZwD%2FV0UahRMDBNMTYyNjPWTTE1NtE1SbE01rVMMjPVTU5JNTM3MTc3TTU3BAC5OujJLwAAAA%3D%3D&ct=2&isETR=false&isCustomHashId=false&v=13.89.2&pid=2422&pn=1&sn=1&uu=7e6b5ad3-fdc5-ae56-914c-ef710785f69f&r=736488 HTTP/1.1Host: c.clicktale.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dvar?v=13.89.2&pid=2422&pn=1&sn=1&uu=7e6b5ad3-fdc5-ae56-914c-ef710785f69f&dv=H4sIAAAAAAAAA6tWCghxjncvzUxRslIyME0xNjI2M9ZNMTU20TVJsTTWtUwyM9VNTkk1MzcxNzdNNTdUqgUAotlAIzMAAAA%3D&ct=2&r=373178 HTTP/1.1Host: c.clicktale.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=ZiLybgAAABpwngNw HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/923371515/?guid=ON&script=0&url=www.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fbuy%2Fcompare-all-microsoft-365-products&data=ecomm_pagetype%3Dcategory&is_vtc=1&cid=CAQSGwB7FLtq5-r15fIuyHdrYAaHMu02Lu_aFm_2Kw&random=3527901779 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dvar?v=13.89.2&pid=2422&pn=1&sn=1&uu=7e6b5ad3-fdc5-ae56-914c-ef710785f69f&dv=H4sIAAAAAAAAA1WR207DMAyGX8XqzUCsYukOgt1lXVUqsYO6TiCmaXLTQKOVpkozoALeHXdDQ9zEjmJ%2F%2Fx%2F70%2BGTHU92bDS8ZeACv%2BYgS0wLVb4ACnEwaCVkbVC6BFlb9XpKD3Vb0gkLnWJBnQ8ypXNpdNYBnulUAi%2BxaKwSNRhZaWOhPigrnbGDeJQTTvdXfcbjJPDvYJ1E99ETT6LFHOJguYiTaB4S1delRWGB1%2FsZGitFDs%2FawFRaVAUBE4Ni39pZlEXjemeuRyo31L9Zr7rA110IJ1uY9UdDeMRDBn6udS0NfEGMmRL0jbc%2BVScMyOfpxwQ%2FQvw%2F5mjgMdgs48UUAnK3srqCEKstdVJuJLmtVKEtYf0c27DMsZbAxhAaKYkMk%2BOrN2ADrxVoo2VnBS1URrO36k3Zht6Dj0oaJUtBIz0Xsf6w12sXVrxjU7u0kHZ1FDYnE6dVwBX8u17wYHa5JSbn7pGQMOf7B8lX4i0EAgAA&ct=2&r=196646 HTTP/1.1Host: c.clicktale.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tag/uet/4000034?insights=1 HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /iframe-le-tag/iframe-cs.html?lpsite=60270350&lpsection=store-sales-en-us-exp1&buttons=lpChatService,lpChatSales HTTP/1.1Host: publisher.liveperson.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/0.7.31/clarity.js HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /getuid?https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D358%26dpuuid%3D%24UID HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr?id=undefined&ev=PageView&dpo=LDU&dpoco=0&dpost=0&ts=1713566315777 HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr?id=undefined&ev=PixelInitialized&dpo=LDU&dpoco=0&dpost=0&ts=1713566315777 HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr?id=1770559986549030&ev=PixelInitialized&dpo=LDU&dpoco=0&dpost=0&ts=1713566315777 HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr?id=1770559986549030&ev=PageView&dpo=LDU&dpoco=0&dpost=0&ts=1713566315777 HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=4.4.0&d_fieldgroup=A&mcorgid=EA76ADE95776D2EC7F000101%40AdobeOrg&mid=13856825675432384200610105413061261476&ts=1713566316938 HTTP/1.1Host: msftenterprise.sc.omtrdc.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=4.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=EA76ADE95776D2EC7F000101%40AdobeOrg&d_nsid=0&ts=1713566315507 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499
Source: global traffic	HTTP traffic detected: GET /ats/ats?cmd=RT&AdvertiserID=4249&platform=TUMRI&ActionID=20114&ActionName=Microsoft_Store_RT_Pixel&ut1=&ut2=en&ut3=us&cachebuster=21537383 HTTP/1.1Host: ats.everesttech.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: everest_g_v2=g_surferid~ZiLybgAAABpwngNw
Source: global traffic	HTTP traffic detected: GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fdpm.demdex.net%252Fibs%253Adpid%253D358%2526dpuuid%253D%2524UID HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XANDR_PANID=E4Gd6PqxwRYHbM6X4oT5uSDPlx5aqYe12qmWcyTOBaFtxwdaCTGyIL6S3fOMqZ5xbZpRWhcvqkodxK7zWqMd9AiXLssL9MZF2cvqx0T-30s.; receive-cookie-deprecation=1; uuid2=50712775984142160
Source: global traffic	HTTP traffic detected: GET /365868.gif?partner_uid=14137964647750221070636055609662034347 HTTP/1.1Host: idsync.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=4.4.0&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=EA76ADE95776D2EC7F000101%40AdobeOrg&d_nsid=0&d_mid=13856825675432384200610105413061261476&d_blob=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&d_cid_ic=MSFPC%01749eee6039c5489b9db3000c7ab3f399%012&d_cid_ic=MC1%01749eee6039c5489b9db3000c7ab3f399%012&ts=1713566317775 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=ZiLybgAAABpwngNw HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110
Source: global traffic	HTTP traffic detected: GET /1000.gif?memo=CKyqFhIxCi0IARCYEhomMTQxMzc5NjQ2NDc3NTAyMjEwNzA2MzYwNTU2MDk2NjIwMzQzNDcQABoNCPHki7EGEgUI6AcQAEIASgA HTTP/1.1Host: idsync.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=ydqjx9y0JHw7uG4AMvWLaNzm+OCRkXagrO/H1Fk5xpY=; pxrc=CAA=
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/923371515/?guid=ON&script=0&url=www.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fbuy%2Fcompare-all-microsoft-365-products&data=ecomm_pagetype%3Dcategory&is_vtc=1&cid=CAQSGwB7FLtq5-r15fIuyHdrYAaHMu02Lu_aFm_2Kw&random=3527901779 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rest/v1/delivery?client=microsoftmscompoc&sessionId=bc74883fdfa44509b1a0d02e7aa80338&version=2.4.0 HTTP/1.1Host: target.microsoft.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MC1=GUID=749eee6039c5489b9db3000c7ab3f399&HASH=749e&LV=202310&V=4&LU=1696413236917; MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MS0=d493eab65bfc4a6da80e23eb11acf0a9; MSCC=NR; ak_bmsc=0DFEB062DEC7BC972194A2DB83C91D32~000000000000000000000000000000~YAAQjjhjaKMRcO6OAQAA5nKC+BfaGUNB0/nXJhj2Tp+cxIqRIbj6tjJ8fdmdKH5tD6BvO19E0Ni34aeGVOa9oTQ+xCrz4Z1UhKf8CP8OZ5ZMbp72+7xVSMdAlF2LOZVkGIT1Dt5JeXJbQP6GiZOVpqZNsti1HqsmbKu/zgIEZtMlljtyeJJgDOnS4cV7PjEDDb0cNe/7liWix9HWX2D1WCmdjRzOoNGjkUfBxS/3MMQPOqPKEXTFb9T5IPOUYouTKhQmHvSCU26N04C5zVoCg1SvlPdHoTAwrd/Zlw9Xl/pq9KjgM8q4CLLUoIzD5cQy9Fl8bjhJh1c3Zs+8rP8y9U5qLmnfeG1PxSK6nWpESc55qpZTfwwfM/TXHYjK; fptctx2=H3ihr9e92IdW6yd1ZgQ9SyoufAf2k3o4JywpA2nh2nMhYioW8D67o1pwzo%252fzkFMbjjwoH78vlF%252bKvhwuZW%252bL6QNUcWF8EUYiup1ng2bwe4am%252fQhCFHqqxmyoT2GWrXve77p8jO%252fldWC33aRnCmWfgUVMThBZXxwWNnlFC4vWTlaHNQXCGyvT8MZGvkqreRhNlL%252fm%252fZ7R%252b9OvFX3WyfvnybZJ6RBJQp42RwssPY%252frOKRl%252fQ72%252fuCvp0AMM%252fkC3%252fgRqL%252ffbpuWFpYJ%252bwXpgQxVeEayaHM5%252bjYm0y4KpjkgnqOyNkupokAAqfA2AxLHz8e2SreVRKzqdLoLyv2bWsgbBQ%253d%253d; at_check=true; _cs_c=0; IR_gbd=microsoft.com; IR_7593=1713566316326%7C0%7C1713566316326%7C%7C; AMCVS_EA76ADE95776D2EC7F000101%40AdobeOrg=1; _uetsid=8feec850fe9d11eeb96b55489ec67e60; _uetvid=8fefde80fe9d11eebaaba35a03b6bbee; _cs_id=7e6b5ad3-fdc5-ae56-914c-ef710785f69f.1713566317.1.1713566317.1713566317.1613561419.1747730317438.1; _cs_cvars=%7B%7D; _tt_enable_cookie=1; _ttp=xY4o2qvOgnyn7EUo349x4xWRzIN; mbox=session#bc74883fdfa44509b1a0d02e7aa80338#1713568176|PC#bc74883fdfa44509b1a0d02e7aa80338.34_0#1747753017; _cs_s=1.5.0.1713568118797; AMCV_EA76ADE95776D2EC7F000101%40AdobeOrg=1585540135%7CMCIDTS%7C19833%7CMCMID%7C13856825675432384200610105413061261476%7CMCAAMLH-1714171118%7C7%7CMCAAMB-1714171118%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCCIDH%7C443854560%7CMCOPTOUT-1713573518s%7CNONE%7CMCAID%7CNONE%7CMCSYNCSOP%7C411-19840%7CvVersion%7C4.4.0
Source: global traffic	HTTP traffic detected: GET /quota?ct=0 HTTP/1.1Host: q-aus1.clicktale.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=358&dpuuid=50712775984142160 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=adobe_dmp&google_cm&gdpr=0&gdpr_consent=&google_hm=MTQxMzc5NjQ2NDc3NTAyMjEwNzA2MzYwNTU2MDk2NjIwMzQzNDc= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /exist?v=13.89.2&pid=2422&pn=1&sn=1&uu=7e6b5ad3-fdc5-ae56-914c-ef710785f69f HTTP/1.1Host: srm.bf.contentsquare.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v2/recording?rt=5&rst=1713566317498&let=1713566318700&v=13.89.2&pid=2422&pn=1&sn=1&uu=7e6b5ad3-fdc5-ae56-914c-ef710785f69f&ri=1&ct=2 HTTP/1.1Host: k-aus1.clicktale.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=477&dpuuid=e2cb49b0e809eec33788b99a804009bf5d200d3450292e98de83c3ef1fde8facb0da87c991749652 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=358&dpuuid=50712775984142160 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=771&dpuuid=CAESEBDFp7ctDhQvoUa12eVQs_4&google_cver=1?gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=477&dpuuid=e2cb49b0e809eec33788b99a804009bf5d200d3450292e98de83c3ef1fde8facb0da87c991749652 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=771&dpuuid=CAESEBDFp7ctDhQvoUa12eVQs_4&google_cver=1?gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=782&dpuuid=ZiLybgAAABpwngNw HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941
Source: global traffic	HTTP traffic detected: GET /microsoft/lp_ada_enhancements-prod.js HTTP/1.1Host: static-assets.fs.liveperson.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://publisher.liveperson.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=992&dpuuid=h4ivcxvigb3d HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=782&dpuuid=ZiLybgAAABpwngNw HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941
Source: global traffic	HTTP traffic detected: GET /i/adsct?p_user_id=14137964647750221070636055609662034347&p_id=38594 HTTP/1.1Host: analytics.twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=992&dpuuid=h4ivcxvigb3d HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941|1123-1-1713566323947
Source: global traffic	HTTP traffic detected: GET /microsoft/lp_ada_enhancements-prod.css HTTP/1.1Host: static-assets.fs.liveperson.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://publisher.liveperson.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i/adsct?p_user_id=14137964647750221070636055609662034347&p_id=38594 HTTP/1.1Host: analytics.twitter.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: personalization_id="v1_n1KY6zHhyE9MIZZCo+ZCMQ=="
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=aam&gdpr=0&gdpr_consent=&domain=www.microsoft.com&ttd_tpi=1 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=aam&gdpr=0&gdpr_consent=&domain=www.microsoft.com&ttd_tpi=1 HTTP/1.1Host: match.adsrvr.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/p-vj4AYjBqd6VJ2.gif?idmatch=0&gdpr=0&gdpr_consent= HTTP/1.1Host: cms.quantserve.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/p-vj4AYjBqd6VJ2.gif?idmatch=0&gdpr=0&gdpr_consent= HTTP/1.1Host: cms.quantserve.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: mc=6622f277-893bc-591c2-fff7e
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=1957&dpuuid=375E6F2E0D8F6B9C2CEB7C8E098F6DFE HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941|1123-1-1713566323947|903-1-1713566324945|1175-1-1713566325950|1957-1-1713566326954
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=1957&dpuuid=375E6F2E0D8F6B9C2CEB7C8E098F6DFE HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941|1123-1-1713566323947|903-1-1713566324945|1175-1-1713566325950|1957-1-1713566326954|3047-1-1713566327950
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=3047&dpuuid=5953D8FEB124F3&gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941|1123-1-1713566323947|903-1-1713566324945|1175-1-1713566325950|1957-1-1713566326954|3047-1-1713566327950
Source: global traffic	HTTP traffic detected: GET /i.match?p=b13&u=14137964647750221070636055609662034347&redirect=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid=22054&dpuuid=$TF_USER_ID_ENC$ HTTP/1.1Host: a.tribalfusion.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=3047&dpuuid=5953D8FEB124F3&gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941|1123-1-1713566323947|903-1-1713566324945|1175-1-1713566325950|1957-1-1713566326954|3047-1-1713566327950|22054-1-1713566328953
Source: global traffic	HTTP traffic detected: GET /z/i.match?p=b13&u=14137964647750221070636055609662034347&redirect=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid=22054&dpuuid=$TF_USER_ID_ENC$ HTTP/1.1Host: s.tribalfusion.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ANON_ID=aunoeUwl6hnbQQw9RCGH2xwE7PVa2VxEHrUIAKsi
Source: global traffic	HTTP traffic detected: GET /cms?partner_id=ADOBE&_hosted_id=14137964647750221070636055609662034347&gdpr=0&gdpr_consent= HTTP/1.1Host: cms.analytics.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=22054 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941|1123-1-1713566323947|903-1-1713566324945|1175-1-1713566325950|1957-1-1713566326954|3047-1-1713566327950|22054-1-1713566328953|30646-1-1713566329944
Source: global traffic	HTTP traffic detected: GET /ups/58782/cms?partner_id=ADOBE&_hosted_id=14137964647750221070636055609662034347&gdpr=0&gdpr_consent= HTTP/1.1Host: ups.analytics.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBHvyImYCEKVmoMYBH7dIy239MW4scj0FEgEBAQFDJGYsZvGAziMA_eMAAA&S=AQAAAu-njdEZVO5CrU1iUiWRLOQ
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=22054 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941|1123-1-1713566323947|903-1-1713566324945|1175-1-1713566325950|1957-1-1713566326954|3047-1-1713566327950|22054-1-1713566328953|30646-1-1713566329944
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=53196&dpuuid=Q7668527322137376942 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mscom.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=14137964647750221070636055609662034347; dpm=14137964647750221070636055609662034347; dextp=358-1-1713566319499|477-1-1713566320110|771-1-1713566320975|782-1-1713566321950|992-1-1713566322941|1123-1-1713566323947|903-1-1713566324945|1175-1-1713566325950|1957-1-1713566326954|3047-1-1713566327950|22054-1-1713566328953|30646-1-1713566329944|53196-1-1713566330951|38117-1-1713566331940

Source: chromecache_347.2.dr	String found in binary or memory: "//www.linkedin.com/shareArticle?mini=true&url=" + equals www.linkedin.com (Linkedin)
Source: chromecache_347.2.dr	String found in binary or memory: url: "//www.facebook.com/share.php?u=" + h, equals www.facebook.com (Facebook)

Source: unknown

DNS traffic detected: queries for: m03lm.rdtk.io

Source: unknown

HTTP traffic detected: POST /v1/session/start HTTP/1.1Host: va.tawk.toConnection: keep-aliveContent-Length: 199sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/json; charset=utf-8Accept: */*Origin: https://19apmic17.z13.web.core.windows.netSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://19apmic17.z13.web.core.windows.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Fri, 19 Apr 2024 22:38:42 GMTContent-Type: text/plain; charset=UTF-8Content-Length: 42Connection: close

Source: chromecache_508.2.dr	String found in binary or memory: http://aka.ms/corebenefits
Source: chromecache_462.2.dr	String found in binary or memory: http://feross.org
Source: chromecache_571.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_571.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_408.2.dr	String found in binary or memory: http://github.com/aFarkas/lazysizes
Source: chromecache_552.2.dr, chromecache_607.2.dr, chromecache_415.2.dr, chromecache_582.2.dr	String found in binary or memory: http://github.com/requirejs/almond/LICENSE
Source: chromecache_528.2.dr	String found in binary or memory: http://github.com/requirejs/domReady
Source: chromecache_528.2.dr	String found in binary or memory: http://github.com/requirejs/requirejs/LICENSE
Source: chromecache_537.2.dr	String found in binary or memory: http://img-prod-cms-rt-microsoft-com.akamaized.net/launch/store/launch-ENf7805d09fd1b455883333cdf34e
Source: chromecache_341.2.dr	String found in binary or memory: http://knockoutjs.com/
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr, chromecache_404.2.dr	String found in binary or memory: http://schema.org/Organization
Source: chromecache_289.2.dr, chromecache_522.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_462.2.dr	String found in binary or memory: http://www.opensource.org/licenses/mit-license.php
Source: chromecache_341.2.dr	String found in binary or memory: http://www.opensource.org/licenses/mit-license.php)
Source: chromecache_559.2.dr	String found in binary or memory: https://MicrosoftAdvertising.com/support
Source: chromecache_404.2.dr	String found in binary or memory: https://accdn.lpsnmedia.net
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr	String found in binary or memory: https://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.9.1.min.js
Source: chromecache_559.2.dr	String found in binary or memory: https://aka.ms/28808
Source: chromecache_508.2.dr	String found in binary or memory: https://aka.ms/SVAFAQ
Source: chromecache_559.2.dr	String found in binary or memory: https://aka.ms/educationsales
Source: chromecache_404.2.dr	String found in binary or memory: https://aka.ms/edusupport
Source: chromecache_590.2.dr	String found in binary or memory: https://aka.ms/mac-manageaddress
Source: chromecache_590.2.dr	String found in binary or memory: https://aka.ms/mac-manageusers
Source: chromecache_590.2.dr	String found in binary or memory: https://aka.ms/mac-payment
Source: chromecache_590.2.dr	String found in binary or memory: https://aka.ms/mac-privacystatement
Source: chromecache_590.2.dr	String found in binary or memory: https://aka.ms/mac-recentorders
Source: chromecache_590.2.dr	String found in binary or memory: https://aka.ms/mac-redirect
Source: chromecache_404.2.dr	String found in binary or memory: https://aka.ms/yourcaliforniaprivacychoices
Source: chromecache_404.2.dr	String found in binary or memory: https://analytics.tiktok.com
Source: chromecache_333.2.dr	String found in binary or memory: https://api.company-target.com/api/v2/ip.json?key=70aff8023e038d56ea636f68e5c5922b
Source: chromecache_544.2.dr, chromecache_283.2.dr, chromecache_573.2.dr, chromecache_517.2.dr, chromecache_611.2.dr	String found in binary or memory: https://assets.onestore.ms
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr	String found in binary or memory: https://assets.onestore.ms/cdnfiles/external/mwf/long/v1/v1.25.0/css/mwf-west-european-default.min.c
Source: chromecache_590.2.dr	String found in binary or memory: https://axios-http.com
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr	String found in binary or memory: https://az725175.vo.msecnd.net/scripts/jsll-4.js
Source: chromecache_477.2.dr	String found in binary or memory: https://breeze.aimon.applicationinsights.io
Source: chromecache_306.2.dr	String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=12681
Source: chromecache_306.2.dr	String found in binary or memory: https://bugs.chromium.org/p/v8/issues/detail?id=3334
Source: chromecache_306.2.dr	String found in binary or memory: https://bugzil.la/548397
Source: chromecache_306.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=277178
Source: chromecache_306.2.dr	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=308064
Source: chromecache_590.2.dr	String found in binary or memory: https://cart.perf.store-web.dynamics.com/cart/v1.0/cart/loadCart
Source: chromecache_590.2.dr	String found in binary or memory: https://cart.ppe.store-web.dynamics.com/cart/v1.0/cart/loadCart
Source: chromecache_590.2.dr	String found in binary or memory: https://cart.production.store-web.dynamics.com/cart/v1.0/cart/loadCart
Source: chromecache_590.2.dr	String found in binary or memory: https://cart.staging.store-web.dynamics.com/cart/v1.0/cart/loadCart
Source: chromecache_463.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_404.2.dr	String found in binary or memory: https://cdnssl.clicktale.net
Source: chromecache_404.2.dr	String found in binary or memory: https://cdnssl.clicktale.net/www32/ptc/05d32363-d534-4d93-9b65-cde674775e71.js
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://checkout.office.com/acquire/purchase
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://checkout.office.com/acquire/purchase/
Source: chromecache_508.2.dr	String found in binary or memory: https://community.powerbi.com/
Source: chromecache_404.2.dr	String found in binary or memory: https://d.impactradius-event.com
Source: chromecache_477.2.dr	String found in binary or memory: https://dc-int.services.visualstudio.com
Source: chromecache_477.2.dr	String found in binary or memory: https://dc.services.visualstudio.com
Source: chromecache_306.2.dr	String found in binary or memory: https://dev.azure.com/mscomdev/Moray/_workitems/edit/4494
Source: chromecache_306.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/KeyboardEvent/key/Key_Values
Source: chromecache_508.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/Accessibility/ARIA/Roles/Alert_Role
Source: chromecache_306.2.dr	String found in binary or memory: https://elad.medium.com/css-position-sticky-how-it-really-works-54cd01dc2d46
Source: chromecache_563.2.dr	String found in binary or memory: https://embed.tawk.to/6613e667a0c6737bd1297e7c/1hquro1rp
Source: chromecache_491.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-app.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-arr-find-polyfill.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-common.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-chunk-vendors.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-entries-polyfill.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-event-polyfill.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-iterator-polyfill.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-main.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-object-values-polyfill.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-promise-polyfill.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-runtime.js
Source: chromecache_366.2.dr	String found in binary or memory: https://embed.tawk.to/_s/v4/app/660e2260004/js/twk-vendor.js
Source: chromecache_615.2.dr	String found in binary or memory: https://ezgif.com/optimize
Source: chromecache_330.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_590.2.dr	String found in binary or memory: https://github.com/axios/axios.git
Source: chromecache_590.2.dr	String found in binary or memory: https://github.com/axios/axios/issues
Source: chromecache_296.2.dr	String found in binary or memory: https://github.com/carhartl/jquery-cookie
Source: chromecache_341.2.dr	String found in binary or memory: https://github.com/douglascrockford/JSON-js
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/es-shims/es5-shim/issues/150
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/kitcambridge/es5-shim/commit/4f738ac066346
Source: chromecache_602.2.dr	String found in binary or memory: https://github.com/microsoft/clarity
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/mozilla/rhino/issues/346
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/tc39/proposal-array-filtering
Source: chromecache_330.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/main/LICENSE)
Source: chromecache_330.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/graphs/contributors)
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/w3c/aria-practices/pull/1757
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/zloirock/core-js
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.26.0/LICENSE
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/blob/v3.27.2/LICENSE
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/issues/1128
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/issues/1130
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/issues/475
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/issues/677
Source: chromecache_306.2.dr	String found in binary or memory: https://github.com/zloirock/core-js/issues/86#issuecomment-115759028
Source: chromecache_404.2.dr	String found in binary or memory: https://img-prod-cms-rt-microsoft-com.akamaized.net
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr, chromecache_404.2.dr	String found in binary or memory: https://img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RE1Mu3b?ver=5c31
Source: chromecache_610.2.dr	String found in binary or memory: https://img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RW1dIiW?ver=c095
Source: chromecache_446.2.dr	String found in binary or memory: https://img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RW1dIj6?ver=98df
Source: chromecache_609.2.dr	String found in binary or memory: https://img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RW1dNAQ?ver=5ff6
Source: chromecache_410.2.dr	String found in binary or memory: https://img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RW1dQ5q?ver=8edc
Source: chromecache_548.2.dr	String found in binary or memory: https://img-prod-cms-rt-microsoft-com.akamaized.net/cms/api/am/imageFileData/RW1hXjN?ver=c3d2
Source: chromecache_306.2.dr	String found in binary or memory: https://javascript.info/size-and-scroll-window#width-height-of-the-document
Source: chromecache_644.2.dr	String found in binary or memory: https://jquery.com/
Source: chromecache_644.2.dr	String found in binary or memory: https://jquery.org/license
Source: chromecache_644.2.dr	String found in binary or memory: https://js.foundation/
Source: chromecache_404.2.dr	String found in binary or memory: https://js.monitor.azure.com
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://js.monitor.azure.com/scripts/c/ms.analytics-web-3.min.js
Source: chromecache_306.2.dr	String found in binary or memory: https://keycode.info/table-of-all-keycodes
Source: chromecache_430.2.dr	String found in binary or memory: https://login.live.com/Me.srf?wa
Source: chromecache_404.2.dr	String found in binary or memory: https://login.live.com/me.srf?wa=wsignin1.0
Source: chromecache_297.2.dr, chromecache_328.2.dr	String found in binary or memory: https://login.microsoftonline.com
Source: chromecache_430.2.dr	String found in binary or memory: https://login.microsoftonline.com/forgetuser
Source: chromecache_430.2.dr	String found in binary or memory: https://login.microsoftonline.com/savedusers?appid
Source: chromecache_430.2.dr	String found in binary or memory: https://login.microsoftonline.com/uxlogout?appid
Source: chromecache_297.2.dr, chromecache_328.2.dr	String found in binary or memory: https://login.windows-ppe.net
Source: chromecache_404.2.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net/le_unified_window/10.13.0.5-release_5314/resources/icons/desktop/sprites
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://lpcdn.lpsnmedia.net/le_unified_window/9.12.0.19-release_4769/resources/loader_on_warmGray5_7
Source: chromecache_404.2.dr	String found in binary or memory: https://lptag.liveperson.net
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://mcraa.fs.liveperson.com/messaging-agent-availability/api/account/60270350/getSkillAvailabili
Source: chromecache_404.2.dr	String found in binary or memory: https://mem.gfx.ms
Source: chromecache_590.2.dr	String found in binary or memory: https://microsoftit.pkgs.visualstudio.com/OneITVSO/_packaging/CSM-SITES-AEMFoundations/npm/registry/
Source: chromecache_544.2.dr, chromecache_283.2.dr, chromecache_573.2.dr, chromecache_517.2.dr, chromecache_611.2.dr	String found in binary or memory: https://microsoftwindows.112.2o7.net
Source: chromecache_404.2.dr	String found in binary or memory: https://office.com/systemrequirements
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr	String found in binary or memory: https://onedrive.live.com/about/en-us/
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr	String found in binary or memory: https://outlook.live.com/owa/
Source: chromecache_463.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_463.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_558.2.dr, chromecache_609.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1dIiN-enus?ver=918b
Source: chromecache_558.2.dr, chromecache_609.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1dIiN-tscriptenus?v
Source: chromecache_498.2.dr, chromecache_410.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1dNAH-enus?ver=6d43
Source: chromecache_498.2.dr, chromecache_410.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1dNAH-tscriptenus?v
Source: chromecache_474.2.dr, chromecache_446.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1dQ5E-enus?ver=77bf
Source: chromecache_474.2.dr, chromecache_446.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1dQ5E-tscriptenus?v
Source: chromecache_581.2.dr, chromecache_610.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1dQ5z-enus?ver=2419
Source: chromecache_581.2.dr, chromecache_610.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1dQ5z-tscriptenus?v
Source: chromecache_577.2.dr, chromecache_548.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1gt0F-enus?ver=abfd
Source: chromecache_577.2.dr, chromecache_548.2.dr	String found in binary or memory: https://prod-video-cms-rt-microsoft-com.akamaized.net/cms/api/am/videofiledata/RW1gt0F-tscriptenus?v
Source: chromecache_404.2.dr	String found in binary or memory: https://products.office.com/en-us/free-productivity-apps
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr	String found in binary or memory: https://products.office.com/en-us/home
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr	String found in binary or memory: https://products.office.com/en-us/microsoft-teams/free?icid=SSM_AS_Promo_Apps_MicrosoftTeams
Source: chromecache_404.2.dr	String found in binary or memory: https://products.office.com/microsoft-office-for-home-and-school-faq#cd6f27d6-3bb0-22a8-9228-1385af8
Source: chromecache_404.2.dr	String found in binary or memory: https://publisher.liveperson.net
Source: chromecache_404.2.dr	String found in binary or memory: https://publisher.liveperson.net/iframe-le-tag/iframe-cs.html?lpsite=60270350&lpsection=store-m3
Source: chromecache_404.2.dr	String found in binary or memory: https://publisher.liveperson.net/iframe-le-tag/iframe-cs.html?lpsite=60270350&lpsection=store-sa
Source: chromecache_590.2.dr	String found in binary or memory: https://s7d2.scene7.com/is/image/microsoftcorp/mwf-placeholder?wid
Source: chromecache_404.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://signup-local.azure.com/
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://signup-staging.azure.com/
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://signup.azure.com/
Source: chromecache_644.2.dr	String found in binary or memory: https://sizzlejs.com/
Source: chromecache_508.2.dr	String found in binary or memory: https://static-assets.fs.liveperson.com/microsoft/lp_ada_enhancements-prod.css
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr	String found in binary or memory: https://statics-marketingsites-wcus-ms-com.akamaized.net/statics/override.css?c=7
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://stores.office.com/
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://stores.office.com/subscription/acquire
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/ar-sa/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/cs-cz/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/da-dk/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/de-ch/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/de-de/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/en-ae/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/en-ca/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/en-gb/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/en-ie/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/en-in/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/en-ng/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_404.2.dr	String found in binary or memory: https://support.office.com/en-us/article/accounts-in-office-628ea040-f265-49de-b986-be09c3ebf8a9
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/en-us/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_404.2.dr	String found in binary or memory: https://support.office.com/en-us/article/what-s-new-in-office-365-95c8d81d-08ba-42c1-914f-bca4603e14
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/en-za/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/es-cl/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/es-co/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/es-es/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/es-mx/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/fi-fi/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/fr-ch/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/fr-fr/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/he-il/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/hu-hu/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/id-id/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/it-it/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/ja-jp/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/ko-kr/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/nb-no/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/nl-nl/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/pl-pl/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/pt-br/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/pt-pt/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/ru-ru/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/sk-sk/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/sv-se/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/th-th/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/tr-tr/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/vi-vn/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/zh-cn/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/zh-hk/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.office.com/zh-tw/article/get-support-or-advice-18948a4c-3eb1-4b30-b1bc-a4cc29eb7655
Source: chromecache_508.2.dr	String found in binary or memory: https://support.xbox.com
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-IsHTMLDDA-internal-slot
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-IsHTMLDDA-internal-slot-aec
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype-
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.every
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.filter
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.find
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.findIndex
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.foreach
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.includes
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.indexof
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.map
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.push
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.some
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-array.prototype.splice
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-arrayspeciescreate
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-getmethod
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-hasownproperty
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-isarray
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-iscallable
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-isconstructor
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-isregexp
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-lengthofarraylike
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-math.trunc
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.create
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.defineproperties
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.defineproperty
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.entries
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.getownpropertydescriptor
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.getownpropertynames
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.keys
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.prototype.propertyisenumerable
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.prototype.tostring
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-object.values
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-ordinarytoprimitive
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-parseint-string-radix
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-requireobjectcoercible
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-string.prototype.includes
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-string.prototype.trim
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-string.prototype.trimend
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-string.prototype.trimstart
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-tointegerorinfinity
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-tolength
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-toobject
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-toprimitive
Source: chromecache_306.2.dr	String found in binary or memory: https://tc39.es/ecma262/#sec-topropertykey
Source: chromecache_463.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_404.2.dr	String found in binary or memory: https://templates.office.com
Source: chromecache_434.2.dr	String found in binary or memory: https://ussearchprod.trafficmanager.net/services/api/v1.0/store/categories
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://va.idp.liveperson.net
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://va.msg.liveperson.net
Source: chromecache_577.2.dr, chromecache_548.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/0a8e0e87-11c8-4a29-a9b3-b280a6b042ba/e95b
Source: chromecache_610.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/183eadcc-f9fc-4452-9819-10034235660b/bb1f
Source: chromecache_548.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/1c23ec36-59f6-4b53-af37-5f601439b24a/e95b
Source: chromecache_410.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/1ebdc0bd-611c-4adf-aa3b-46e3ab48d080/2103
Source: chromecache_581.2.dr, chromecache_610.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/3a18a532-88da-4d8d-8540-d8fb7e1fcafd/bb1f
Source: chromecache_446.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/3ccef210-b6ef-4e48-950d-5c21a0c9cb8c/50ff
Source: chromecache_498.2.dr, chromecache_410.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/9e3ad847-da3d-4ac4-9723-9044fe5f42c4/2103
Source: chromecache_609.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/bb5a48a6-b5b9-4fc7-a1d7-e032f3077253/d61b
Source: chromecache_474.2.dr, chromecache_446.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/eebb33d0-226f-4448-8435-eea66f35c952/50ff
Source: chromecache_558.2.dr, chromecache_609.2.dr	String found in binary or memory: https://wus-streaming-video-rt-microsoft-com.akamaized.net/fb44ea7d-f2c8-487c-a2e4-29388f950997/d61b
Source: chromecache_508.2.dr	String found in binary or memory: https://www.21vbluecloud.com/dynamics365/
Source: chromecache_404.2.dr	String found in binary or memory: https://www.clarity.ms
Source: chromecache_473.2.dr	String found in binary or memory: https://www.clarity.ms/tag/uet/
Source: chromecache_463.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_463.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_463.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_508.2.dr	String found in binary or memory: https://www.microsoftestore.com.hk/partner?locale=zh_HK
Source: chromecache_556.2.dr, chromecache_559.2.dr	String found in binary or memory: https://www.microsoftstore.com.cn/
Source: chromecache_404.2.dr	String found in binary or memory: https://www.office.com/?auth=1
Source: chromecache_404.2.dr	String found in binary or memory: https://www.office.com/?auth=2
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr	String found in binary or memory: https://www.onenote.com/
Source: chromecache_350.2.dr, chromecache_620.2.dr, chromecache_429.2.dr, chromecache_404.2.dr	String found in binary or memory: https://www.skype.com/en/
Source: chromecache_510.2.dr, chromecache_294.2.dr	String found in binary or memory: https://www.tawk.to/?utm_source=tawk-messenger&utm_medium=link&utm_campaign=referral&utm_term=6613e6
Source: chromecache_429.2.dr, chromecache_404.2.dr	String found in binary or memory: https://www.xbox.com/
Source: chromecache_404.2.dr	String found in binary or memory: https://www.xbox.com/en-us/games/store/pc-game-pass/cfq7ttc0kgq8?icid=CNavAllPCGamePass
Source: chromecache_404.2.dr	String found in binary or memory: https://www.xbox.com/en-us/games/store/xbox-game-pass-ultimate/cfq7ttc0khs0?icid=CNavAllXboxGamePass

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50298
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50319 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50395 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50366 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50320 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50400 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50314 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 50275 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50040 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50332 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50326 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50405
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50401
Source: unknown	Network traffic detected: HTTP traffic on port 50354 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50400
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 50149 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50373
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50372
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50254
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50375
Source: unknown	Network traffic detected: HTTP traffic on port 50330 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 50376 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50376
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50258
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50257
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50378
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50149
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 50318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50391 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50144
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50386
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50143
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50146
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50145
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50148
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50391
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50272
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50393
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50258 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50342 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 50329 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 50336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 50281 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50395
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50273
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50394
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50397
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50396
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50398
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50397 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50242 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50281
Source: unknown	Network traffic detected: HTTP traffic on port 50137 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50283
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50040
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50307 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50285
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50286
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50288
Source: unknown	Network traffic detected: HTTP traffic on port 50375 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50294
Source: unknown	Network traffic detected: HTTP traffic on port 50401 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50145 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50337
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50336
Source: unknown	Network traffic detected: HTTP traffic on port 50254 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50386 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50283 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50248 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50333
Source: unknown	Network traffic detected: HTTP traffic on port 50357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50328 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50349
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50398 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50237 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50346 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50363 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50237
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50288 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49992 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50368 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50272 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50248
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50243
Source: unknown	Network traffic detected: HTTP traffic on port 50393 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50242
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50244
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 50323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50294 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50309 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50304
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 50310 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50309
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50373 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50321 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50285 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50367 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50029 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50304 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 50378 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50322 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50349 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50146 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 50333 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50321
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50323
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 49993 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50273 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 50344 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: unknown	HTTPS traffic detected: 184.31.62.93:443 -> 192.168.2.4:49787 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.31.62.93:443 -> 192.168.2.4:49803 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 173.222.162.32:443 -> 192.168.2.4:49842 version: TLS 1.2

Spam, unwanted Advertisements and Ransom Demands

Source: Yara match	File source: 0.7.pages.csv, type: HTML
Source: Yara match	File source: 0.0.pages.csv, type: HTML
Source: Yara match	File source: 0.19.pages.csv, type: HTML
Source: Yara match	File source: 0.12.pages.csv, type: HTML
Source: Yara match	File source: dropped/chromecache_563, type: DROPPED

System Summary

Source: classification engine

Classification label: mal64.phis.win@32/699@186/52

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2028 --field-trial-handle=1936,i,7185699770727324588,4770698355514320461,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://19apmic17.z13.web.core.windows.net/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2028 --field-trial-handle=1936,i,7185699770727324588,4770698355514320461,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected