Edit tour

Windows Analysis Report
F2024065877 (1).html

Overview

General Information

Sample name:	F2024065877 (1).html
Analysis ID:	1624252
MD5:	94abfb19732d4e8ebaa90d3d38a28e32
SHA1:	166db2bfe99332f05d67a4aeae0eb2c7102f9f41
SHA256:	3eaf3c9d4126baccdcc9894799109bdfaf8f720750fac37858b0f83753a61c68
Infos:

Detection

Score:	48
Range:	0 - 100
Confidence:	100%

Signatures

HTML Script injector detected

HTML page contains suspicious base64 encoded javascript

Creates a process in suspended mode (likely to inject code)

HTML body with high number of embedded images detected

Monitors certain registry keys / values for changes (often done to protect autostart functionality)

Potential browser exploit detected (process start blacklist hit)

Sigma detected: Use Short Name Path in Command Line

Stores files to the Windows start menu directory

Classification

Process Tree

System is w10x64_ra

chrome.exe (PID: 5688 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument C:\Users\user\Desktop\F2024065877 (1).html MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6728 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 --field-trial-handle=2004,i,1197130859919802328,6773449138272214871,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 5872 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5788 --field-trial-handle=2004,i,1197130859919802328,6773449138272214871,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

iexplore.exe (PID: 7512 cmdline: "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\user\Desktop\F2024065877 (1).html MD5: CFE2E6942AC1B72981B3105E22D3224E)

iexplore.exe (PID: 7580 cmdline: "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:17410 /prefetch:2 MD5: 6F0F06D6AB125A99E43335427066A4A1)

ie_to_edge_stub.exe (PID: 7652 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe" --from-ie-to-edge=3 --ie-frame-hwnd=60058 MD5: 89CF8972D683795DAB6901BC9456675D)

msedge.exe (PID: 7712 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --from-ie-to-edge=3 --ie-frame-hwnd=60058 MD5: 69222B8101B0601CC6663F8381E7E00F)

msedge.exe (PID: 7932 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2412 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:3 MD5: 69222B8101B0601CC6663F8381E7E00F)

msedge.exe (PID: 3052 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6100 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8 MD5: 69222B8101B0601CC6663F8381E7E00F)

msedge.exe (PID: 5128 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=7396 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8 MD5: 69222B8101B0601CC6663F8381E7E00F)

cookie_exporter.exe (PID: 6352 cmdline: cookie_exporter.exe --cookie-json=1128 MD5: 3DD7152D6D33725EA5958D7DE2586B97)

msedge.exe (PID: 4828 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=2932 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8 MD5: 69222B8101B0601CC6663F8381E7E00F)

msedge.exe (PID: 2196 cmdline: "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-GB --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=5888 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8 MD5: 69222B8101B0601CC6663F8381E7E00F)

ssvagent.exe (PID: 7692 cmdline: "C:\PROGRA~2\Java\jre-1.8\bin\ssvagent.exe" -new MD5: F9A898A606E7F5A1CD7CFFA8079253A0)

iexplore.exe (PID: 5524 cmdline: "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:333058 /prefetch:2 MD5: 6F0F06D6AB125A99E43335427066A4A1)

iexplore.exe (PID: 1596 cmdline: "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:529666 /prefetch:2 MD5: 6F0F06D6AB125A99E43335427066A4A1)

firefox.exe (PID: 7628 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\user\Desktop\F2024065877 (1).html" MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

firefox.exe (PID: 4864 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\user\Desktop\F2024065877 (1).html" MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

firefox.exe (PID: 4036 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2288 -parentBuildID 20230927232528 -prefsHandle 2232 -prefMapHandle 2220 -prefsLen 25250 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {cc7b3cf8-db67-46ee-a449-8c90ee57c4c7} 4864 "\\.\pipe\gecko-crash-server-pipe.4864" 22d86c6cb10 socket MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

firefox.exe (PID: 2184 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=884 -parentBuildID 20230927232528 -prefsHandle 4132 -prefMapHandle 4128 -prefsLen 26265 -prefMapSize 237879 -appDir "C:\Program Files\Mozilla Firefox\browser" - {0ea770d4-41fb-4549-b3ee-4eeddcd96dea} 4864 "\\.\pipe\gecko-crash-server-pipe.4864" 22d98c1cb10 rdd MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

chrome.exe (PID: 3740 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument C:\Users\user\Desktop\F2024065877 (1).html MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6412 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2228 --field-trial-handle=1984,i,12078543491895176146,14709201850779346195,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Sigma Signatures

Sigma detected: Use Short Name Path in Command Line

Source: Process started

Author: frack113, Nasreddine Bencherchali: Data: Command: "C:\PROGRA~2\Java\jre-1.8\bin\ssvagent.exe" -new, CommandLine: "C:\PROGRA~2\Java\jre-1.8\bin\ssvagent.exe" -new, CommandLine|base64offset|contains: w, Image: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe, NewProcessName: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe, OriginalFileName: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe, ParentCommandLine: "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:17410 /prefetch:2, ParentImage: C:\Program Files (x86)\Internet Explorer\iexplore.exe, ParentProcessId: 7580, ParentProcessName: iexplore.exe, ProcessCommandLine: "C:\PROGRA~2\Java\jre-1.8\bin\ssvagent.exe" -new, ProcessId: 7692, ProcessName: ssvagent.exe

Sigma detected: Modification of IE Registry Settings

Source: Registry Key set

Author: frack113: Data: Details: 1, EventID: 13, EventType: SetValue, Image: C:\Program Files\Internet Explorer\iexplore.exe, ProcessId: 7512, TargetObject: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\SecuritySafe

Suricata Signatures

⊘No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

HTML Script injector detected

Source: file:///C:/Users/user/Desktop/F2024065877%20(1).html	HTTP Parser: New script, src: https://www.google-analytics.com/analytics.js
Source: file:///C:/Users/user/Desktop/F2024065877%20(1).html	HTTP Parser: New script, src: https://www.google-analytics.com/analytics.js

HTML page contains suspicious base64 encoded javascript

Source: F2024065877 (1).html	HTTP Parser: Base64 decoded: <script>
Source: file:///C:/Users/user/Desktop/F2024065877%20(1).html	HTTP Parser: Base64 decoded: <script>
Source: file:///C:/Users/user/Desktop/F2024065877%20(1).html	HTTP Parser: Base64 decoded: <script>

Source: F2024065877 (1).html	HTTP Parser: Total embedded image size: 169268
Source: file:///C:/Users/user/Desktop/F2024065877%20(1).html	HTTP Parser: Total embedded image size: 169268

Source: unknown	HTTPS traffic detected: 172.65.90.24:443 -> 192.168.2.16:49884 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.65.90.24:443 -> 192.168.2.16:49883 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.181.201:443 -> 192.168.2.16:50394 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.160.144.191:443 -> 192.168.2.16:50396 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.181.201:443 -> 192.168.2.16:50413 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.149.100.209:443 -> 192.168.2.16:50419 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.149.100.209:443 -> 192.168.2.16:50421 version: TLS 1.2

Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Process created: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe

Source: chrome.exe	Memory has grown: Private usage: 1MB later: 29MB
Source: firefox.exe	Memory has grown: Private usage: 1MB later: 238MB

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.77.188
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.5.80

Source: global traffic	HTTP traffic detected: GET /crx/blobs/ASuc5ohcoRYyASTWkAI21BvR0f-Aos7pzgW3GtD8ImYoX-O9Pl77join3GT-5wpD1vT_nG6xpJ0eds7JOZacv0OYNfBAee3mKSnMDx3-YDnz3J7UxfHM_wfhsyHz9Z8rajAAxlKa5T9frrLlN0KHGfJRu7Y7NseNtZ_M/GHBMNNJOOEKPMOECNNNILNNBDLOLHKHI_1_89_1_0.crx HTTP/1.1Host: clients2.googleusercontent.comConnection: keep-aliveSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/fonts/glyphicons-halflings-regular.eot? HTTP/1.1Accept: /Accept-Language: en-CHUser-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like GeckoOrigin: file:Accept-Encoding: gzip, deflateHost: apfs-cloud.dhs.govConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /about/ HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/jquery-3.7.0.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/vendor/jquery-ui.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/bootstrap.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/vendor/bootstrap-datetimepicker.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/bootstrap-theme.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/fontawesome-free-6.4.0-web/css/all.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/fontawesome-free-6.4.0-web/css/v5-font-face.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/js/jquery-3.7.0.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /Universal-Federated-Analytics-Min.js?agency=DHS HTTP/1.1Host: dap.digitalgov.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/shared/css/vendor/fa-svg-with-js.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/datepicker.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/vendor/tokenfield-typeahead.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/vendor/bootstrap-tokenfield.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/bootstrap-select.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/main2.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/css/print.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/css/ie10-viewport-bug-workaround.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/css/apfs.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /Universal-Federated-Analytics-Min.js?agency=DHS HTTP/1.1Host: dap.digitalgov.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/js/bootstrap.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/img/icn-us-flag-21px.png HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/img/apfs_logo_sm.png HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/js/ie10-viewport-bug-workaround.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/js/jquery-ui.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/js/jquery.expander.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/js/moment.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/js/bootstrap.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1
Source: global traffic	HTTP traffic detected: GET /static/shared/js/lodash.underscore.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/bootstrap-datepicker.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/img/icn-us-flag-21px.png HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/img/apfs_logo_sm.png HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/ie10-viewport-bug-workaround.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/jquery.expander.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/bootstrap-datetimepicker.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/fontawesome-free-6.4.0-web/js/all.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/jquery-ui.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/moment.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/jquery.debounce-1.0.5.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/bootstrap-tokenfield.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/about/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/css/home.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://apfs-cloud.dhs.govsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://apfs-cloud.dhs.gov/static/shared/css/bootstrap.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/bootstrap-datetimepicker.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/bootstrap-datepicker.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538450.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/img/apfs_type_logo_sm.png HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.0.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/lodash.underscore.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/fontawesome-free-6.4.0-web/js/all.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/jquery.debounce-1.0.5.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /web-vitals/dist/web-vitals.attribution.iife.js HTTP/1.1Host: dap.digitalgov.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/shared/js/bootstrap-tokenfield.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/bootstrap-select.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/utils.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/img/apfs_type_logo_sm.png HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/ui-plugins.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/lodash.underscore.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/videos/APFS-Industry-Intro-Video.mp4 HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Encoding: identity;q=1, ;q=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: videoReferer: https://apfs-cloud.dhs.gov/Accept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /static/shared/js/jquery.debounce-1.0.5.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538451.0.0.0
Source: global traffic	HTTP traffic detected: GET /web-vitals/dist/web-vitals.attribution.iife.js HTTP/1.1Host: dap.digitalgov.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /static/shared/js/bootstrap-tokenfield.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538452.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/jquery.mask.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538452.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/bootstrap-select.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538452.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/utils.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538452.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/shared/js/ui-plugins.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538452.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/videos/APFS-Industry-Intro-Video.mp4 HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Encoding: identity;q=1, ;q=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: videoReferer: https://apfs-cloud.dhs.gov/Accept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538452.0.0.0Range: bytes=119341056-119471872If-Range: "71eff01-62be0300d69bd"
Source: global traffic	HTTP traffic detected: GET /static/shared/fontawesome-free-6.4.0-web/js/all.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538452.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/jquery.mask.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538452.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/videos/APFS-Industry-Intro-Video.mp4 HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Encoding: identity;q=1, ;q=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: videoReferer: https://apfs-cloud.dhs.gov/Accept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538452.0.0.0Range: bytes=44787-119341055If-Range: "71eff01-62be0300d69bd"
Source: global traffic	HTTP traffic detected: GET /static/ico/favicon.png HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538455.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/videos/APFS-Industry-Intro-Video.mp4 HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Encoding: identity;q=1, ;q=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: videoReferer: https://apfs-cloud.dhs.gov/Accept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538455.0.0.0Range: bytes=262256-119341055If-Range: "71eff01-62be0300d69bd"
Source: global traffic	HTTP traffic detected: GET /static/ico/favicon.png HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538455.0.0.0
Source: global traffic	HTTP traffic detected: GET /forecast/ HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://apfs-cloud.dhs.gov/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538455.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/css/bootstrap.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/css/bootstrap-theme.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/css/sticky-footer-navbar.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/css/apfs_new.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/datatables.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/DataTables-1.10.20/css/dataTables.bootstrap.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Buttons-1.6.1/css/buttons.dataTables.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Buttons-1.6.1/css/buttons.bootstrap.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Responsive-2.2.3/css/responsive.bootstrap.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/FixedHeader-3.1.6/css/fixedHeader.dataTables.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/SearchPanes-1.0.1/css/searchPanes.bootstrap.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Select-1.3.1/css/select.dataTables.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Select-1.3.1/css/select.bootstrap.min.css HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/datatables.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/DataTables-1.10.20/js/dataTables.bootstrap.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Responsive-2.2.3/js/dataTables.responsive.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Responsive-2.2.3/js/responsive.bootstrap.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/SearchPanes-1.0.1/js/searchPanes.bootstrap.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Buttons-1.6.1/js/dataTables.buttons.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Buttons-1.6.1/js/buttons.colVis.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/DataTables-1.10.20/js/dataTables.bootstrap.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Responsive-2.2.3/js/dataTables.responsive.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Responsive-2.2.3/js/responsive.bootstrap.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/FixedHeader-3.1.6/js/dataTables.fixedHeader.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Moment-2.8.4/moment.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Moment-2.8.4/datetime-moment.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/SearchPanes-1.0.1/js/searchPanes.bootstrap.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Buttons-1.6.1/js/dataTables.buttons.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/apfs-alert.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://apfs-cloud.dhs.gov/forecast/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Buttons-1.6.1/js/buttons.colVis.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Moment-2.8.4/moment.min.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/FixedHeader-3.1.6/js/dataTables.fixedHeader.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /widgets/fullpage/distribution/edgewelcome?experiences=DistributionPage&ocid=edge-whatsnew HTTP/1.1Host: www.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /static/js/DataTables/Moment-2.8.4/datetime-moment.js HTTP/1.1Host: apfs-cloud.dhs.govConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=65KsPfv1u7_eI0uZ6E2740.BKoINZCAFbcV00ruCrCI-1740538448-1.0.1.1-lXdfcUUZmEQJ2PCTVDna7gZPUNzjWByT0vx85y4vTayA9eXIm0.SVhcnzM_Jn_n1myuQvz9zgTpXwOb6ug4gbA; __cflb=04dTof4XoKr1tirShcRPX7wXEjveTaSWeU3duVbsx1; _ga=GA1.1.1046949613.1740538451; _ga_CSLL4ZEK4L=GS1.1.1740538450.1.1.1740538457.0.0.0
Source: global traffic	HTTP traffic detected: GET /bundles/v1/distribution/latest/vendors.d049fb344a15489e568f.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/distribution/latest/microsoft.a64b2be15baaa46efd42.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/distribution/latest/common.74c30d783e4080852d6b.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /bundles/v1/distribution/latest/experience.10673c9254bd20a1cfe4.js HTTP/1.1Host: assets.msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.msn.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /npm/@shoelace-style/shoelace@2.12.0/cdn/themes/light.css HTTP/1.1Host: cdn.jsdelivr.netConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /c.gif HTTP/1.1Host: c.clarity.msConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /c.gif?ctsa=mr&CtsSyncId=0633314096F345CC81DCAC005254476B&MUID=016179F5AA6B6AC929856C6AAE6B6423 HTTP/1.1Host: c.clarity.msConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8Cookie: SM=T; MUID=016179F5AA6B6AC929856C6AAE6B6423
Source: global traffic	HTTP traffic detected: GET /tenant/amp/entityid/BBj8zm6.img?w=16&h=16&q=100&m=6&f=png&u=t HTTP/1.1Host: img.s-msn.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.msn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxlyvkTw3vm8lDHAT6SkekwHd7c_iTdG.eZCPl_nKw7nlK4LJZrd9.v.0TWaho2lZO7AKR.38CRkQx9ygiHYMBqE-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHM0OYfiFeMI2p9MWie0CvL99U4GA1gf6_kayTt_kBblFwHwo8BW8JXlqfnYxKPmmBYVg3jodNnjjCF9g7fe.CF_J3ICewh8sxTRsG3rDIJJCfXdg_PjicQOhn.MpxC_5EHrD1bdswgr8IKXaeHvwZiM-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /image?url=4rt9.lXDC4H_93laV1_eHHFT949fUipzkiFOBH3fAiZZUCdYojwUyX2aTonS1aIwMrx6NUIsHfUHSLzjGJFxxsG72wAo9EWJR4yQWyJJaDb6rYcBtJvTvH3UoAS4JFNDaxGhmKNaMwgElLURlRFeVkLCjkfnXmWtINWZIrPGYq0-&format=source&w=75 HTTP/1.1Host: images-eds-ssl.xboxlive.comConnection: keep-alivesec-ch-ua: "Microsoft Edge";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Edg/117.0.2045.47sec-ch-ua-platform: "Windows"Accept: image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://apps.microsoft.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-GB,en;q=0.9,en-US;q=0.8
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: clients2.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: apfs-cloud.dhs.gov
Source: global traffic	DNS traffic detected: DNS query: bzib.nelreports.net
Source: global traffic	DNS traffic detected: DNS query: chrome.cloudflare-dns.com
Source: global traffic	DNS traffic detected: DNS query: dap.digitalgov.gov
Source: global traffic	DNS traffic detected: DNS query: prod.classify-client.prod.webservices.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: detectportal.firefox.com
Source: global traffic	DNS traffic detected: DNS query: prod.detectportal.prod.cloudops.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: example.org
Source: global traffic	DNS traffic detected: DNS query: ipv4only.arpa
Source: global traffic	DNS traffic detected: DNS query: contile.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: spocs.getpocket.com
Source: global traffic	DNS traffic detected: DNS query: prod.ads.prod.webservices.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: prod.balrog.prod.cloudops.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: content-signature-2.cdn.mozilla.net
Source: global traffic	DNS traffic detected: DNS query: prod.content-signature-chains.prod.webservices.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: shavar.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: shavar.prod.mozaws.net
Source: global traffic	DNS traffic detected: DNS query: push.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: www.dhs.gov
Source: global traffic	DNS traffic detected: DNS query: www.oig.dhs.gov
Source: global traffic	DNS traffic detected: DNS query: e6485.dsca.akamaiedge.net
Source: global traffic	DNS traffic detected: DNS query: telemetry-incoming.r53-2.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: firefox.settings.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: prod.remote-settings.prod.webservices.mozgcp.net

Source: unknown

HTTP traffic detected: POST /dns-query HTTP/1.1Host: chrome.cloudflare-dns.comConnection: keep-aliveContent-Length: 128Accept: application/dns-messageAccept-Language: *User-Agent: ChromeAccept-Encoding: identityContent-Type: application/dns-message

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundX-Cache: CONFIG_NOCACHEAccept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-VersionX-MSEdge-Ref: Ref A: 1B922BBFA4E74773A4402104F2C2E0FC Ref B: EWR311000103009 Ref C: 2025-02-26T02:53:47ZDate: Wed, 26 Feb 2025 02:53:46 GMTConnection: closeContent-Length: 0

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50175
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50174
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50177
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50176
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50179
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50178
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50180
Source: unknown	Network traffic detected: HTTP traffic on port 50263 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50184
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50183
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50211 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50366 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50400 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 50251 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50383 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50194 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50314 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50186
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50185
Source: unknown	Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50188
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50187
Source: unknown	Network traffic detected: HTTP traffic on port 50205 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50190
Source: unknown	Network traffic detected: HTTP traffic on port 50268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50159 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50192
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50194
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50388 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50147 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50199
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50198
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50409
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50408
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50401
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50400
Source: unknown	Network traffic detected: HTTP traffic on port 50241 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50136 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50382 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50138
Source: unknown	Network traffic detected: HTTP traffic on port 50418 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50149 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50252
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50373
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50372
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50133
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50254
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50375
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50135
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50134
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50255
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50136
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50380
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50382
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 50215 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50149
Source: unknown	Network traffic detected: HTTP traffic on port 50387 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50299 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50383
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50144
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50386
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50143
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50385
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50146
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50388
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50145
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50387
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50148
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50147
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50268
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50390
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50393
Source: unknown	Network traffic detected: HTTP traffic on port 50138 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50150
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50392
Source: unknown	Network traffic detected: HTTP traffic on port 50413 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50103 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50176 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50342 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 50166 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50143 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50153
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50152
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50394
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50155
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50397
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50154
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50396
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50399
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50156
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50159
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50158
Source: unknown	Network traffic detected: HTTP traffic on port 50397 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50242 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50160
Source: unknown	Network traffic detected: HTTP traffic on port 50137 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50161
Source: unknown	Network traffic detected: HTTP traffic on port 50104 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50236 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50364 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50171 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50164
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50166
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50287
Source: unknown	Network traffic detected: HTTP traffic on port 50115 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50165
Source: unknown	Network traffic detected: HTTP traffic on port 50188 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50168
Source: unknown	Network traffic detected: HTTP traffic on port 50220 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50288
Source: unknown	Network traffic detected: HTTP traffic on port 50375 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50169
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50171
Source: unknown	Network traffic detected: HTTP traffic on port 50160 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50302 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49962 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50173
Source: unknown	Network traffic detected: HTTP traffic on port 50287 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50126 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50401 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50214 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50231 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50145 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50215
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50336
Source: unknown	Network traffic detected: HTTP traffic on port 50254 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50386 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50217
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50219
Source: unknown	Network traffic detected: HTTP traffic on port 50174 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50414 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50248 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50212
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50211
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50214
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50213
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50408 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50180 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50219 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50227
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50229
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50228
Source: unknown	Network traffic detected: HTTP traffic on port 50186 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50220
Source: unknown	Network traffic detected: HTTP traffic on port 50077 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50223
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50222
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50225
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50224
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50134 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50237 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50088 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50363 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50380 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50238
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50237
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50239
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50230
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50232
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50231
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 50076 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50236
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50235
Source: unknown	Network traffic detected: HTTP traffic on port 50133 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50288 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50198 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50368 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50232 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 50312 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50385 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50248
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 50255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50192 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50241
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50240
Source: unknown	Network traffic detected: HTTP traffic on port 50150 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50243
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 50393 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50242
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50245
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 50111 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50244
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 50224 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50250
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50414
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50413
Source: unknown	Network traffic detected: HTTP traffic on port 50229 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50415
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50418
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50417
Source: unknown	Network traffic detected: HTTP traffic on port 50164 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50419
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50112 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50244 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50410
Source: unknown	Network traffic detected: HTTP traffic on port 50158 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50238 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50129 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50135 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50184 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50399 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50410 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50169 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50190 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50152 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50261 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50421
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50422
Source: unknown	Network traffic detected: HTTP traffic on port 50373 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50367 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 50250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 50212 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50313
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 50217 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50179 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50205
Source: unknown	Network traffic detected: HTTP traffic on port 50228 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50415 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50421 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50146 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50203
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50323
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50409 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50101 -> 443

Source: unknown	HTTPS traffic detected: 172.65.90.24:443 -> 192.168.2.16:49884 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.65.90.24:443 -> 192.168.2.16:49883 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.181.201:443 -> 192.168.2.16:50394 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.160.144.191:443 -> 192.168.2.16:50396 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.181.201:443 -> 192.168.2.16:50413 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.149.100.209:443 -> 192.168.2.16:50419 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.149.100.209:443 -> 192.168.2.16:50421 version: TLS 1.2

Source: classification engine

Classification label: mal48.phis.winHTML@100/159@58/478

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Source: C:\Program Files\Internet Explorer\iexplore.exe

File created: C:\Users\user\AppData\Local\Temp\~DF77344C3929246978.TMP

Source: C:\Program Files\Internet Explorer\iexplore.exe

File read: C:\Users\desktop.ini

Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe

Key opened: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument C:\Users\user\Desktop\F2024065877 (1).html
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 --field-trial-handle=2004,i,1197130859919802328,6773449138272214871,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 --field-trial-handle=2004,i,1197130859919802328,6773449138272214871,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: unknown	Process created: C:\Program Files\Internet Explorer\iexplore.exe "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\user\Desktop\F2024065877 (1).html
Source: C:\Program Files\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:17410 /prefetch:2
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe "C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe" --from-ie-to-edge=3 --ie-frame-hwnd=60058
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe "C:\PROGRA~2\Java\jre-1.8\bin\ssvagent.exe" -new
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --from-ie-to-edge=3 --ie-frame-hwnd=60058
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2412 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:3
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6100 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=7396 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=2932 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\cookie_exporter.exe cookie_exporter.exe --cookie-json=1128
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:333058 /prefetch:2
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:529666 /prefetch:2
Source: C:\Program Files\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:17410 /prefetch:2
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe "C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe" --from-ie-to-edge=3 --ie-frame-hwnd=60058
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe "C:\PROGRA~2\Java\jre-1.8\bin\ssvagent.exe" -new
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:333058 /prefetch:2
Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:529666 /prefetch:2
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --from-ie-to-edge=3 --ie-frame-hwnd=60058
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=2412 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:3
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-GB --service-sandbox-type=asset_store_service --mojo-platform-channel-handle=6100 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-GB --service-sandbox-type=none --mojo-platform-channel-handle=7396 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-GB --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --mojo-platform-channel-handle=2932 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5788 --field-trial-handle=2004,i,1197130859919802328,6773449138272214871,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5788 --field-trial-handle=2004,i,1197130859919802328,6773449138272214871,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Internet Explorer\iexplore.exe "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:7512 CREDAT:333058 /prefetch:2
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: unknown unknown
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-GB --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=5888 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8
Source: unknown	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\user\Desktop\F2024065877 (1).html"
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\user\Desktop\F2024065877 (1).html"
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2288 -parentBuildID 20230927232528 -prefsHandle 2232 -prefMapHandle 2220 -prefsLen 25250 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {cc7b3cf8-db67-46ee-a449-8c90ee57c4c7} 4864 "\\.\pipe\gecko-crash-server-pipe.4864" 22d86c6cb10 socket
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=884 -parentBuildID 20230927232528 -prefsHandle 4132 -prefMapHandle 4128 -prefsLen 26265 -prefMapSize 237879 -appDir "C:\Program Files\Mozilla Firefox\browser" - {0ea770d4-41fb-4549-b3ee-4eeddcd96dea} 4864 "\\.\pipe\gecko-crash-server-pipe.4864" 22d98c1cb10 rdd
Source: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe	Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-GB --service-sandbox-type=search_indexer --message-loop-type-ui --mojo-platform-channel-handle=5888 --field-trial-handle=1824,i,5398960909406328946,7792108469588938499,262144 /prefetch:8
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "C:\Users\user\Desktop\F2024065877 (1).html"
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument C:\Users\user\Desktop\F2024065877 (1).html
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2228 --field-trial-handle=1984,i,12078543491895176146,14709201850779346195,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2288 -parentBuildID 20230927232528 -prefsHandle 2232 -prefMapHandle 2220 -prefsLen 25250 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {cc7b3cf8-db67-46ee-a449-8c90ee57c4c7} 4864 "\\.\pipe\gecko-crash-server-pipe.4864" 22d86c6cb10 socket
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=884 -parentBuildID 20230927232528 -prefsHandle 4132 -prefMapHandle 4128 -prefsLen 26265 -prefMapSize 237879 -appDir "C:\Program Files\Mozilla Firefox\browser" - {0ea770d4-41fb-4549-b3ee-4eeddcd96dea} 4864 "\\.\pipe\gecko-crash-server-pipe.4864" 22d98c1cb10 rdd
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2228 --field-trial-handle=1984,i,12078543491895176146,14709201850779346195,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: wininet.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: urlmon.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: iertutil.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: srvcli.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: netutils.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: kernel.appcore.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: uxtheme.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: windows.storage.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: wldp.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: propsys.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: profapi.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: edputil.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: windows.staterepositoryps.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: sspicli.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: wintypes.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: appresolver.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: bcp47langs.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: slc.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: userenv.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: sppc.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: onecorecommonproxystub.dll
Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Section loaded: onecoreuapcommonproxystub.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: vcruntime140.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: wininet.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: version.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: urlmon.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: msvcp140.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: iertutil.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: srvcli.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: netutils.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: kernel.appcore.dll
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Section loaded: uxtheme.dll

Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1f486a52-3cb1-48fd-8f50-b8dc300d9f9d}\InProcServer32

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Key opened: HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Lync

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe

Registry key monitored for changes: HKEY_CURRENT_USER_Classes

Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Program Files (x86)\Java\jre-1.8\bin\ssvagent.exe	Process information set: NOOPENFILEERRORBOX

Source: C:\Program Files (x86)\Microsoft\Edge\Application\117.0.2045.47\BHO\ie_to_edge_stub.exe

Process created: C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --from-ie-to-edge=3 --ie-frame-hwnd=60058

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	1 Exploitation for Client Execution	1 DLL Side-Loading	11 Process Injection	1 Masquerading	OS Credential Dumping	1 Query Registry	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	1 Registry Run Keys / Startup Folder	1 DLL Side-Loading	11 Process Injection	LSASS Memory	1 File and Directory Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	1 Registry Run Keys / Startup Folder	1 DLL Side-Loading	Security Account Manager	2 System Information Discovery	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	1 Extra Window Memory Injection	1 Extra Window Memory Injection	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report
F2024065877 (1).html

Overview

General Information

Detection

Signatures

Classification

Process Tree

Yara Signatures

Sigma Signatures

System Summary

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Software Vulnerabilities

Networking

System Summary

Boot Survival

Hooking and other Techniques for Hiding and Protection

HIPS / PFW / Operating System Protection Evasion

Mitre Att&ck Matrix

Screenshots

Thumbnails

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report F2024065877 (1).html

Overview

General Information

Detection

Signatures

Classification

Process Tree

Yara Signatures

Sigma Signatures

System Summary

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Software Vulnerabilities

Networking

System Summary

Boot Survival

Hooking and other Techniques for Hiding and Protection

HIPS / PFW / Operating System Protection Evasion

Mitre Att&ck Matrix

Screenshots

Thumbnails

Windows Analysis Report
F2024065877 (1).html