Edit tour

Windows Analysis Report
https://test.novanotes.de/

Overview

General Information

Sample URL:	https://test.novanotes.de/
Analysis ID:	1637089
Infos:

Detection

Score:	52
Range:	0 - 100
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

AI detected suspicious Javascript

Creates files inside the system directory

Deletes files inside the Windows folder

Detected non-DNS traffic on DNS port

Classification

Process Tree

System is w10x64

chrome.exe (PID: 5944 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 5956 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2060,i,3013786077015428498,12011039314333108357,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2096 /prefetch:3 MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 6348 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://test.novanotes.de/" MD5: E81F54E6C1129887AEA47E7D092680BF)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://test.novanotes.de/

Avira URL Cloud: detection malicious, Label: phishing

Phishing

AI detected suspicious Javascript

Source: 2.95.d.script.csv

Joe Sandbox AI: Detected suspicious JavaScript with source url: anonymous function... This script exhibits several high-risk behaviors, including dynamic code execution, data exfiltration, and obfuscated code. It appears to be collecting sensitive information (user agent, platform, and error message) and sending it to an unknown domain. The script also contains a complex control flow with nested functions, which is a common technique used to obfuscate malicious code. Overall, the combination of these factors suggests this script is highly suspicious and likely malicious.

Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: No favicon
Source: https://www.cloudflare.com/under-attack-hotline/	HTTP Parser: No favicon

Source: global traffic

TCP traffic: 192.168.2.8:49682 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.63
Source: unknown	TCP traffic detected without corresponding DNS query: 23.60.201.147
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.215
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.215
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 23.60.201.147
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.104.63
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.215
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.215
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.215
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.131
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.131
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.131
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.131
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.131
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.90
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.90
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.90
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.90
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.90
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.90
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.42.65.90
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.131
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.131
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.60
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyA2KlwBX3mkFo30om9LUFYQhpqLoa_BNhE HTTP/1.1Host: www.google.comConnection: keep-aliveX-Client-Data: CIW2yQEIorbJAQipncoBCOj/ygEIk6HLAQiKo8sBCIWgzQEI59DNAQi91c4BCIHWzgEIsd7OAQi84M4BCK7kzgEIi+XOARjh4s4BSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://test.novanotes.de/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f3b948d8acb8/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://test.novanotes.de/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/new/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://test.novanotes.de/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=91faa32f59dfeac0&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacypolicy/ HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /img/privacyoptions.svg HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/privacypolicy/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/privacypolicy/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-aliveOrigin: https://www.cloudflare.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /img/privacyoptions.svg HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcvByRU9e9nH.BfpCBBUr5X5bHqM7t4V4bLXRK2Rl0qMO8-1741859535-1.3.1.1-hBfcI.1HFyrceftrroVgtTcXnAIH3vuypLSJ_TzWiOs/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/failure_retry/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://test.novanotes.de/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /webpack-runtime-9510a2e22c3debbfcadd.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/privacypolicy/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /framework-957a522640f43541ca6a.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/privacypolicy/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /app-435b8291d068da48aef5.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/privacypolicy/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/api.js?render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/scripttemplates/otSDKStub.js HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/privacypolicy/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=91faa39eba2022e0&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcvByRU9e9nH.BfpCBBUr5X5bHqM7t4V4bLXRK2Rl0qMO8-1741859535-1.3.1.1-hBfcI.1HFyrceftrroVgtTcXnAIH3vuypLSJ_TzWiOs/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/failure_retry/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f3b948d8acb8/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /under-attack-hotline/ HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://www.cloudflare.com/privacypolicy/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /framework-957a522640f43541ca6a.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /webpack-runtime-9510a2e22c3debbfcadd.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"If-None-Match: W/"a2c50d49fa3dc40df6d0fe5fea830265"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/6wvLylL1UDvEfh7N5WBd32/b05450aa05d6c40af93bf04309e1723c/Lead-generation-background-generic.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/1Xar1H4WcFHHkHRDzMypMh/1f8989ae11cb464cc640c7121d0be9a6/logo_mars_trusted-by_gray.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/4xn47h0gWiUSwJ0PU3Ysvk/683779108bfd6eeb62fbac5135780fe6/logo_loreal_trusted-by_gray.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/3fy2mc73AF9xqD18C5760R/f46ab68d38c9adb30a639f69589d8af0/doordash_134.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /app-435b8291d068da48aef5.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"If-None-Match: W/"4166dd20ca3a3646f8e3aeabebe52cf9"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /static/enablement-background-6de78040ef0acc8d2e8a596988c5f5d8.svg HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /img/privacyoptions.svg HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"If-None-Match: W/"5a8d3dae7c1ddd64826cea94a93139d4"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/6VUhUMEcvn3L3j88LttHzC/b2cf2b702aad874db9cb61b0028e9c40/logo_garmin_trusted-by_gray.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/OMwO1Fr8BxHVum0iBbatc/979c1807f5810edc903d4b07c18e0cb0/logo_ibm_trusted-by_gray.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /public/vendor/onetrust/scripttemplates/otSDKStub.js HTTP/1.1Host: ot.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/19LKSWt3iDJ0SxqNrv3ZMN/b37231a3e6fb1bda5f182e7abecff5ee/cplogo_BW.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/2TfcZ86qvZor2xtI2z4Vvr/ef54112582296119f4296869c34ba025/logo_23andme_color_32px-wrapper.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/6XVeELky7fceWRpfBvN8qr/4e13aa3d8dd73e1f091f3de966fdc9cb/logo_shopify_trusted-by_gray.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/1AsuJijKk8EMH5s1ae56nx/b13406881aa864b7e17b2233a0d090ef/logo_labcorp_trusted-by_gray.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/26kszL2y2X7zTR2edZPDUY/1a9d00bc8c441346e6dd06bd82204972/logo_ncr_gray_32px-wrapper.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/3JniCZlkcKI9iHgormG8j3/b94cf97c93844f2db74d566fc512aef1/logo_thomson-reuters_gray_32px-wrapper.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/app-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/under-attack-hotline/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /static/enablement-background-6de78040ef0acc8d2e8a596988c5f5d8.svg HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/5YRPa33UFrfL2zoZd2AXTq/658995f16c7ee4818875c254c18573d3/logo_zendesk_gray_32px-wrapper.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/app-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/1048862057.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/3199558980.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/333361657.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/under-attack-hotline/page-data.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/3934964512.json HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /a06cff934e9579536ce1c10bad21c1d6d7f63ae0-90484db4602d401d94ca.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /component---src-components-page-page-template-tsx-c7ec2b92ba43b220ad2d.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcvzIDpjCZfm5WtUE89W3dCSe4gdbq1BSBkdugYj41flJ4-1741859553-1.3.1.1-G.szBDCJtKSmZ60sKH8bdKbrCQLVU5wi3eS9IXQ1pAg/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/failure_retry/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://test.novanotes.de/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/1048862057.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/3934964512.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/3199558980.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /page-data/sq/d/333361657.json HTTP/1.1Host: www.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /174-242772ef10d8d161ae24.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/under-attack-hotline/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /static/z/i.js HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-01958eeb-b583-7d66-b54e-ca6e04990f14%22%2C%22sessionID%22:0%2C%22lastActivity%22:1741859569529%2C%22hasActivity%22:false}; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1741859569530}; _lr_uf_-ykolez=0bd1677c-a227-451a-b97e-e914486060e4
Source: global traffic	HTTP traffic detected: GET /api/v1/marketo/form/1639 HTTP/1.1Host: api.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://www.cloudflare.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xxcnd/0x4AAAAAAAaFLwutFA_ZjmEX/light/fbE/new/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f597f8065f97/065ba81630d7/launch-efab6d095ce0.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/1rVmRBDX3KhZOe2FREoYOz/24f44a8dbe53111346d97dc59b7510ed/security-shield-protection-1.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/35yeieyQns5B8WsFes9Z20/8bf36cbf9edf546c30cc9e3e08235255/cloudflare-zero-trust.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/3jxszSMXRhwiwHDa1VPXFw/cc6439cd93a107bd0986bb6d5dcd8a97/network-scale.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=91faa41acf1d22fd&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xxcnd/0x4AAAAAAAaFLwutFA_ZjmEX/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=91faa415cd1772e8&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcvzIDpjCZfm5WtUE89W3dCSe4gdbq1BSBkdugYj41flJ4-1741859553-1.3.1.1-G.szBDCJtKSmZ60sKH8bdKbrCQLVU5wi3eS9IXQ1pAg/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/failure_retry/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/v1/marketo/form/1639 HTTP/1.1Host: api.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://www.cloudflare.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xxcnd/0x4AAAAAAAaFLwutFA_ZjmEX/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/3mYUDEjNlXbjQaceoFUhzU/378a4b79f7b51e7677fd6ab442eb3e82/documentation-list.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=8AD56F28618A50850A495FB6%40AdobeOrg&d_nsid=0&ts=1741859572768 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-Type: application/x-www-form-urlencodedsec-ch-ua-mobile: ?0Accept: /Origin: https://www.cloudflare.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/91faa41acf1d22fd/1741859575262/XW5c8pwCfr4Qcnt HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xxcnd/0x4AAAAAAAaFLwutFA_ZjmEX/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/3KPlWZN5s1sQQeavuAaMa4/cb02c2544821d099f24ee3270c374367/target.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/2iaZGHR7NSRdBzpq8wiboE/de2d9d0f908ec37deea865b055af42df/cloudflare-spectrum.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/pat/91faa41acf1d22fd/1741859575263/57da46be7adf1d888272294906fb7f7c6f69a7a08200fff6ddfe8351b400383e/-gcyhFePybPm9O0 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/xxcnd/0x4AAAAAAAaFLwutFA_ZjmEX/light/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/UYtRs2BhTgknmiXF8HzF3/2be30b3d45367845101614b0b427ba58/logo_lending-tree.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/401699452:1741858030:840jXOjtiTZr8cV3rQ8Ts91SgGZJaaGXMylku7ixNR8/91faa41acf1d22fd/bI8GXNfivUuYUxhDHduvwFRGjqUpVhd2Z895P5MTQvc-1741859572-1.1.1.1-726dd.GDAMElTCH23r1E.N0Rmy57nNRMf4prv5Zh1VE2TUYolq_lIWorqPXVQPyj HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/7vSmQwpXxBBSUXvax4mTTj/1e9733d09150035751acd28962d65831/optimization-scale.png HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/5wB2WP2bwo7zdgVhToslhe/447d1f23d1b8ac77e61e2819465f58fe/ease-of-use-toggle.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /dest5.html?d_nsid=0 HTTP/1.1Host: cloudflareinc.demdex.netConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=45734699853828790720910191705743032943
Source: global traffic	HTTP traffic detected: GET /id?d_visid_ver=5.5.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=8AD56F28618A50850A495FB6%40AdobeOrg&d_nsid=0&ts=1741859572768 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=45734699853828790720910191705743032943
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/91faa41acf1d22fd/1741859575262/XW5c8pwCfr4Qcnt HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/17tDJ5kPaGE8eLFJvByBgR/c28fb006fa3ddfba75b2009591559296/internet-browser.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/SAs3NRmywD4ydBAsj8z6L/8ecedebe7d84f1abe074fee24bc9bf6b/info.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /static/z/s.js?z=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 HTTP/1.1Host: www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; _lr_hb_-ykolez%2Fcloudflarecom={%22heartbeat%22:1741859569530}; _lr_uf_-ykolez=0bd1677c-a227-451a-b97e-e914486060e4; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CvVersion%7C5.5.0; _lr_tabs_-ykolez%2Fcloudflarecom={%22recordingID%22:%226-01958eeb-b583-7d66-b54e-ca6e04990f14%22%2C%22sessionID%22:0%2C%22lastActivity%22:1741859576176%2C%22confirmed%22:false}
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/57ABXXM79uTTFbsc925v8O/4b2b331f5a1475d45705d9c5fc61b85c/price.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /slt3lc6tev37/3uFblkuIoaQq9IXfbLMOyj/b893f6e726771d2b409acf1338eff652/internet-browser.svg HTTP/1.1Host: cf-assets.www.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cfms_willow=enable; __cf_bm=R.kpC7nUFFP69_T_npBynAVtyjN.NdJzqVltv5KSevI-1741859548-1.0.1.1-y_gDpRENhbdZ1xEothHYO6eNOoSB9Yi27jdXhlxYlZWzA32bN4pLqUmalgKgeWcTQjsbA6IsABeVOvJdPlGCVQjBYTJR5D13dhFCAmU8PitKNr1gOm7HaTepDSzrf8Ab; AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CvVersion%7C5.5.0; kndctr_8AD56F28618A50850A495FB6_AdobeOrg_identity=CiYzODAwODc2NjkyNDg2Mjk1ODk4MDUzMzM3ODYxNDQ1MzgyMDUwMVIRCP_Rr_fYMhgBKgRJUkwxMAPwAf_Rr_fYMg==; kndctr_8AD56F28618A50850A495FB6_AdobeOrg_cluster=irl1
Source: global traffic	HTTP traffic detected: GET /extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ee/v1/identity/acquire?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=c16ec0bd-da48-4d88-a3f4-31000ef6ea0b HTTP/1.1Host: adobedc.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=45734699853828790720910191705743032943
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/401699452:1741858030:840jXOjtiTZr8cV3rQ8Ts91SgGZJaaGXMylku7ixNR8/91faa41acf1d22fd/bI8GXNfivUuYUxhDHduvwFRGjqUpVhd2Z895P5MTQvc-1741859572-1.1.1.1-726dd.GDAMElTCH23r1E.N0Rmy57nNRMf4prv5Zh1VE2TUYolq_lIWorqPXVQPyj HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CvVersion%7C5.5.0; kndctr_8AD56F28618A50850A495FB6_AdobeOrg_identity=CiYzODAwODc2NjkyNDg2Mjk1ODk4MDUzMzM3ODYxNDQ1MzgyMDUwMVIRCP_Rr_fYMhgBKgRJUkwxMAPwAf_Rr_fYMg==; kndctr_8AD56F28618A50850A495FB6_AdobeOrg_cluster=irl1
Source: global traffic	HTTP traffic detected: GET /rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1741859582570&uuid=94c780b0-3042-413e-8885-43172eaf91f4&integration=reddit&opt_out=0&v=rdt_65e23bc4&sh=1024&sw=1280 HTTP/1.1Host: alb.reddit.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&time=1741859582570&pid=28851&conversionId=13043044 HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=dc066216-c6a2-4212-ad80-f977f4e6a5ce HTTP/1.1Host: edge.adobedc.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /710030.gif?pdata=d=desktop,lc=US,ref=www.cloudflare.com HTTP/1.1Host: di.rlcdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC55904e5e1abc4d38a5f1ac3dea0edaab-source.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1741859582570&uuid=94c780b0-3042-413e-8885-43172eaf91f4&integration=reddit&opt_out=0&v=rdt_65e23bc4&sh=1024&sw=1280 HTTP/1.1Host: alb.reddit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC392ad6d4bbf94c7283b4eda6cbf689a0-source.min.js HTTP/1.1Host: assets.adobedtm.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&time=1741859582570&pid=28851&conversionId=13043044&cookiesTest=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: li_sugr=f140dcef-880e-4156-8ae7-e06fe1d2e10c; bcookie="v=2&30ab0c00-88c6-4795-8330-fccc36cdc930"; lidc="b=TGST02:s=T:r=T:a=T:p=T:g=3484:u=1:x=1:i=1741859585:t=1741945985:v=2:sig=AQHU7syeeVKjwfigBNgEVxtCglcMDBYa"
Source: global traffic	HTTP traffic detected: GET /cm/dd?d_uuid=45734699853828790720910191705743032943 HTTP/1.1Host: cm.everesttech.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=Z9KrBAAAAI-0cgNe HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=45734699853828790720910191705743032943
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcvXzMxrXwCd8oNDLjwKYCvQ9WtjtH3Sl3UgPUPbgPIDOM-1741859572-1.3.1.1-LZSvqJXviTHjwHsQyxPZhdYPElMQFfADS0rAlQQ49UQ/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/failure_retry/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://test.novanotes.de/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: kndctr_8AD56F28618A50850A495FB6_AdobeOrg_identity=CiYzODAwODc2NjkyNDg2Mjk1ODk4MDUzMzM3ODYxNDQ1MzgyMDUwMVIRCP_Rr_fYMhgBKgRJUkwxMAPwAf_Rr_fYMg==; kndctr_8AD56F28618A50850A495FB6_AdobeOrg_cluster=irl1
Source: global traffic	HTTP traffic detected: GET /sl.js HTTP/1.1Host: scout-cdn.salesloft.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uwt.js HTTP/1.1Host: static.ads-twitter.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /li.lms-analytics/insight.min.js HTTP/1.1Host: snap.licdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/sync?exc=lr HTTP/1.1Host: s.company-target.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /munchkin-beta.js HTTP/1.1Host: munchkin.marketo.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ibs:dpid=411&dpuuid=Z9KrBAAAAI-0cgNe HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: demdex=45734699853828790720910191705743032943; dpm=45734699853828790720910191705743032943
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=91faa48cc8d510d8&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcvXzMxrXwCd8oNDLjwKYCvQ9WtjtH3Sl3UgPUPbgPIDOM-1741859572-1.3.1.1-LZSvqJXviTHjwHsQyxPZhdYPElMQFfADS0rAlQQ49UQ/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/failure_retry/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: kndctr_8AD56F28618A50850A495FB6_AdobeOrg_identity=CiYzODAwODc2NjkyNDg2Mjk1ODk4MDUzMzM3ODYxNDQ1MzgyMDUwMVIRCP_Rr_fYMhgBKgRJUkwxMAPwAf_Rr_fYMg==; kndctr_8AD56F28618A50850A495FB6_AdobeOrg_cluster=irl1
Source: global traffic	HTTP traffic detected: GET /r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDkyNjh9.dguW7jthV1Y1wgRcAJfVrR_xsANK7zX9ZiD1wf0suvY HTTP/1.1Host: scout.salesloft.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://www.cloudflare.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /attribution_trigger?pid=28851&time=1741859591226&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: *sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://www.cloudflare.comAttribution-Reporting-Eligible: trigger;event-source;navigation-sourceAttribution-Reporting-Support: webSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&time=1741859582570&pid=28851&conversionId=13043044&cookiesTest=true&liSync=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: li_sugr=f140dcef-880e-4156-8ae7-e06fe1d2e10c; bcookie="v=2&30ab0c00-88c6-4795-8330-fccc36cdc930"; lidc="b=TGST02:s=T:r=T:a=T:p=T:g=3484:u=1:x=1:i=1741859585:t=1741945985:v=2:sig=AQHU7syeeVKjwfigBNgEVxtCglcMDBYa"; UserMatchHistory=AQLISkNwFyh9NgAAAZWO7Ahg8raMZtW2HYr7JG1JQFnjbGlThV3W1G6eD2N-RwNvMoJau0khM71-LA; AnalyticsSyncHistory=AQLsVIGYRiymSAAAAZWO7AhgDzlEInCctWG4ARLSGmKFxxwi0qrJIZNdTm0bQfEmAW6Gdaoknol72E3jL9hH-Q; __cf_bm=0puM97H.8g8XRaunJ25KrASFmcgFyv6mwg8xmnO9vM8-1741859592-1.0.1.1-ijtYVKQx1NneK.LCokIhPx35vWaf41JNO7A8WQgxwyZW.L00esUoOTyelaopwwAxzsJzbtry7XbOhhdo0FYUVosovgTb2xkKyk1ouW79OBo
Source: global traffic	HTTP traffic detected: GET /sync?UIDM=683e6aa9-1f46-4e82-b0da-df1736a0dba3 HTTP/1.1Host: partners.tremorhub.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tap.php?nid=5578&put=683e6aa9-1f46-4e82-b0da-df1736a0dba3&v=1181926 HTTP/1.1Host: pixel.rubiconproject.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDkyNjh9.dguW7jthV1Y1wgRcAJfVrR_xsANK7zX9ZiD1wf0suvY HTTP/1.1Host: scout.salesloft.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i HTTP/1.1Host: scout.salesloft.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://www.cloudflare.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/401699452:1741858030:840jXOjtiTZr8cV3rQ8Ts91SgGZJaaGXMylku7ixNR8/91faa41acf1d22fd/bI8GXNfivUuYUxhDHduvwFRGjqUpVhd2Z895P5MTQvc-1741859572-1.1.1.1-726dd.GDAMElTCH23r1E.N0Rmy57nNRMf4prv5Zh1VE2TUYolq_lIWorqPXVQPyj HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: AMCVS_8AD56F28618A50850A495FB6%40AdobeOrg=1; kndctr_8AD56F28618A50850A495FB6_AdobeOrg_identity=CiYzODAwODc2NjkyNDg2Mjk1ODk4MDUzMzM3ODYxNDQ1MzgyMDUwMVIRCP_Rr_fYMhgBKgRJUkwxMAPwAf_Rr_fYMg==; kndctr_8AD56F28618A50850A495FB6_AdobeOrg_cluster=irl1; cfz_facebook-pixel=%7B%22OwdI_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1741859582570.774324927%22%2C%22e%22%3A1773395582570%7D%2C%22VVgx_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1741859582570.600735315%22%2C%22e%22%3A1773395582570%7D%2C%22bHox_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1741859582570.427462104%22%2C%22e%22%3A1773395582570%7D%2C%22elKW_fb-pixel%22%3A%7B%22v%22%3A%22fb.2.1741859582570.536160458%22%2C%22e%22%3A1773395582570%7D%7D; cfz_reddit=%7B%22fZaD_reddit_uuid%22%3A%7B%22v%22%3A%221741859582570.94c780b0-3042-413e-8885-43172eaf91f4%22%2C%22e%22%3A1773395582570%7D%7D; _uetsid=f6441680fff011efa7ca51b0025a9922; _uetvid=f6448cb0fff011efb52089fc537819f8; AMCV_8AD56F28618A50850A495FB6%40AdobeOrg=179643557%7CMCIDTS%7C20161%7CMCMID%7C38008766924862958980533378614453820501%7CMCAAMLH-1742464375%7C6%7CMCAAMB-1742464375%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1741866775s%7CNONE%7CMCSYNCSOP%7C411-20168%7CvVersion%7C5.5.0
Source: global traffic	HTTP traffic detected: GET /scripts/bizible.js HTTP/1.1Host: cdn.bizible.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://www.cloudflare.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&time=1741859582570&pid=28851&conversionId=13043044&cookiesTest=true&liSync=true HTTP/1.1Host: px.ads.linkedin.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: li_sugr=f140dcef-880e-4156-8ae7-e06fe1d2e10c; bcookie="v=2&30ab0c00-88c6-4795-8330-fccc36cdc930"; lidc="b=TGST02:s=T:r=T:a=T:p=T:g=3484:u=1:x=1:i=1741859585:t=1741945985:v=2:sig=AQHU7syeeVKjwfigBNgEVxtCglcMDBYa"; UserMatchHistory=AQLISkNwFyh9NgAAAZWO7Ahg8raMZtW2HYr7JG1JQFnjbGlThV3W1G6eD2N-RwNvMoJau0khM71-LA; AnalyticsSyncHistory=AQLsVIGYRiymSAAAAZWO7AhgDzlEInCctWG4ARLSGmKFxxwi0qrJIZNdTm0bQfEmAW6Gdaoknol72E3jL9hH-Q; __cf_bm=0puM97H.8g8XRaunJ25KrASFmcgFyv6mwg8xmnO9vM8-1741859592-1.0.1.1-ijtYVKQx1NneK.LCokIhPx35vWaf41JNO7A8WQgxwyZW.L00esUoOTyelaopwwAxzsJzbtry7XbOhhdo0FYUVosovgTb2xkKyk1ouW79OBo
Source: global traffic	HTTP traffic detected: GET /attribution_trigger?pid=28851&time=1741859591226&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F HTTP/1.1Host: px.ads.linkedin.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: li_sugr=f140dcef-880e-4156-8ae7-e06fe1d2e10c; bcookie="v=2&30ab0c00-88c6-4795-8330-fccc36cdc930"; lidc="b=TGST02:s=T:r=T:a=T:p=T:g=3484:u=1:x=1:i=1741859585:t=1741945985:v=2:sig=AQHU7syeeVKjwfigBNgEVxtCglcMDBYa"; UserMatchHistory=AQLISkNwFyh9NgAAAZWO7Ahg8raMZtW2HYr7JG1JQFnjbGlThV3W1G6eD2N-RwNvMoJau0khM71-LA; AnalyticsSyncHistory=AQLsVIGYRiymSAAAAZWO7AhgDzlEInCctWG4ARLSGmKFxxwi0qrJIZNdTm0bQfEmAW6Gdaoknol72E3jL9hH-Q; __cf_bm=0puM97H.8g8XRaunJ25KrASFmcgFyv6mwg8xmnO9vM8-1741859592-1.0.1.1-ijtYVKQx1NneK.LCokIhPx35vWaf41JNO7A8WQgxwyZW.L00esUoOTyelaopwwAxzsJzbtry7XbOhhdo0FYUVosovgTb2xkKyk1ouW79OBo
Source: global traffic	HTTP traffic detected: GET /sync?UIDM=683e6aa9-1f46-4e82-b0da-df1736a0dba3 HTTP/1.1Host: partners.tremorhub.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: tvid=b43139353b6f46c3beb16b5602a6afff; tv_UIDM=683e6aa9-1f46-4e82-b0da-df1736a0dba3
Source: global traffic	HTTP traffic detected: GET /i HTTP/1.1Host: scout.salesloft.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /r/gsr1.crl HTTP/1.1Cache-Control: max-age = 3000Connection: Keep-AliveAccept: /If-Modified-Since: Tue, 07 Jan 2025 07:28:00 GMTUser-Agent: Microsoft-CryptoAPI/10.0Host: c.pki.goog
Source: global traffic	HTTP traffic detected: GET /r/r4.crl HTTP/1.1Cache-Control: max-age = 3000Connection: Keep-AliveAccept: /If-Modified-Since: Thu, 25 Jul 2024 14:48:00 GMTUser-Agent: Microsoft-CryptoAPI/10.0Host: c.pki.goog

Source: chromecache_100.1.dr	String found in binary or memory: -->`;document.body.appendChild(d);};{\n!function(e,t,n,s,u,a){e.twq\|\|(s=e.twq=function(){s.exe?s.exe.apply(s,arguments):s.queue.push(arguments);\n},s.version='1.1',s.queue=[],u=t.createElement(n),u.async=!0,u.src='https://static.ads-twitter.com/uwt.js',\na=t.getElementsByTagName(n)[0],a.parentNode.insertBefore(u,a))}(window,document,'script');\n// Insert Twitter Advertiser ID\ntwq('config','nvldc', {\n restricted_data_use: 'restrict_optimization' // or 'off'\n});\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\n(function() {\n var didInit = false;\n function initMunchkin() {\n if(didInit === false) {\n didInit = true;\n Munchkin.init('713-XSC-918');\n }\n }\n var s = document.createElement('script');\n s.type = 'text/javascript';\n s.async = true;\n s.src = '//munchkin.marketo.net/munchkin-beta.js';\n s.onreadystatechange = function() {\n if (this.readyState == 'complete' \|\| this.readyState == 'loaded') {\n initMunchkin();\n }\n };\n s.onload = initMunchkin;\n document.getElementsByTagName('head')[0].appendChild(s);\n})();\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22type%22%3A%22text%2Fjavascript%22%2C%22src%22%3A%22https%3A%2F%2Fcdn.bizible.com%2Fscripts%2Fbizible.js%22%2C%22async%22%3A%22%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-ba366a5f-4d21-4897-972d-4ca28c1675e3%5C%22))%7D%22%2C%22order-id%22%3A%22ba366a5f-4d21-4897-972d-4ca28c1675e3%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{(function(w, d, c) {w['techtargetic'] = w['techtargetic'] \|\| {};w['techtargetic'].client = c;var s = d.createElement(\"script\");s.type = \"text/javascript\";s.async = !0;s.crossorigin = \"anonymous\";var rd = new Date();rd=rd.getFullYear()+''+rd.getMonth()+rd.getDate();s.src = \"https://trk.techtarget.com/tracking.js\";var n = d.getElementsByTagName(\"script\")[0];n.parentNode.insertBefore(s, n);})(window, document, '16554798');};{const d = document.createElement('div');d.innerHTML = `<!-- Qualified -->\n\n\n<!-- End Qualified -->`;document.body.appendChild(d);};{\n(function(w,q){w['QualifiedObject']=q;w[q]=w[q]\|\|function(){\n(w[q].q=w[q].q\|\|[]).push(arguments)};})(window,'qualified')\n\n};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22async%22%3A%22%22%2C%22src%22%3A%22https%3A%2F%2Fjs.qualified.com%2Fqualified.js%3Ftoken%3D37pXYrro6wCZbsU7%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-2f3b4459-dacf-47d5-b6ec-2e42dfe4c85a%5C%22))%7D%22%2C%22order-id%22%3A%222f3b4459-dacf-47d5-b6ec-2e42dfe4c85a%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);}})(window,document)"],
Source: chromecache_100.1.dr	String found in binary or memory: -->`;document.body.appendChild(d);};{\n!function(e,t,n,s,u,a){e.twq\|\|(s=e.twq=function(){s.exe?s.exe.apply(s,arguments):s.queue.push(arguments);\n},s.version='1.1',s.queue=[],u=t.createElement(n),u.async=!0,u.src='https://static.ads-twitter.com/uwt.js',\na=t.getElementsByTagName(n)[0],a.parentNode.insertBefore(u,a))}(window,document,'script');\n// Insert Twitter Advertiser ID\ntwq('config','nvldc', {\n restricted_data_use: 'restrict_optimization' // or 'off'\n});\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{\n(function() {\n var didInit = false;\n function initMunchkin() {\n if(didInit === false) {\n didInit = true;\n Munchkin.init('713-XSC-918');\n }\n }\n var s = document.createElement('script');\n s.type = 'text/javascript';\n s.async = true;\n s.src = '//munchkin.marketo.net/munchkin-beta.js';\n s.onreadystatechange = function() {\n if (this.readyState == 'complete' \|\| this.readyState == 'loaded') {\n initMunchkin();\n }\n };\n s.onload = initMunchkin;\n document.getElementsByTagName('head')[0].appendChild(s);\n})();\n};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22type%22%3A%22text%2Fjavascript%22%2C%22src%22%3A%22https%3A%2F%2Fcdn.bizible.com%2Fscripts%2Fbizible.js%22%2C%22async%22%3A%22%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-ba366a5f-4d21-4897-972d-4ca28c1675e3%5C%22))%7D%22%2C%22order-id%22%3A%22ba366a5f-4d21-4897-972d-4ca28c1675e3%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);};{const d = document.createElement('div');d.innerHTML = ``;document.body.appendChild(d);};{(function(w, d, c) {w['techtargetic'] = w['techtargetic'] \|\| {};w['techtargetic'].client = c;var s = d.createElement(\"script\");s.type = \"text/javascript\";s.async = !0;s.crossorigin = \"anonymous\";var rd = new Date();rd=rd.getFullYear()+''+rd.getMonth()+rd.getDate();s.src = \"https://trk.techtarget.com/tracking.js\";var n = d.getElementsByTagName(\"script\")[0];n.parentNode.insertBefore(s, n);})(window, document, '16554798');};{const d = document.createElement('div');d.innerHTML = `<!-- Qualified -->\n\n\n<!-- End Qualified -->`;document.body.appendChild(d);};{\n(function(w,q){w['QualifiedObject']=q;w[q]=w[q]\|\|function(){\n(w[q].q=w[q].q\|\|[]).push(arguments)};})(window,'qualified')\n\n};{const el = document.createElement('script');Object.entries(JSON.parse(decodeURIComponent(`%7B%22async%22%3A%22%22%2C%22src%22%3A%22https%3A%2F%2Fjs.qualified.com%2Fqualified.js%3Ftoken%3D37pXYrro6wCZbsU7%22%2C%22onload%22%3A%22%7Bdocument.dispatchEvent(new%20Event(%5C%22loaded-2f3b4459-dacf-47d5-b6ec-2e42dfe4c85a%5C%22))%7D%22%2C%22order-id%22%3A%222f3b4459-dacf-47d5-b6ec-2e42dfe4c85a%22%7D`))).forEach(([k, v]) => {el.setAttribute(k, v);});document.head.appendChild(el);}})(window,document)"],
Source: chromecache_147.1.dr, chromecache_119.1.dr	String found in binary or memory: return f}CG.K="internal.enableAutoEventOnTimer";var cc=wa(["data-gtm-yt-inspected-"]),EG=["www.youtube.com","www.youtube-nocookie.com"],FG,GG=!1; equals www.youtube.com (Youtube)
Source: chromecache_119.1.dr	String found in binary or memory: var RF=function(a,b,c,d,e){var f=NC("fsl",c?"nv.mwt":"mwt",0),g;g=c?NC("fsl","nv.ids",[]):NC("fsl","ids",[]);if(!g.length)return!0;var k=SC(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);Q(121);if(m==="https://www.facebook.com/tr/")return Q(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!AB(k,CB(b, equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: test.novanotes.de
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: static.cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: performance.radar.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: ot.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cf-assets.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdn.logr-ingest.com
Source: global traffic	DNS traffic detected: DNS query: assets.adobedtm.com
Source: global traffic	DNS traffic detected: DNS query: api.www.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: r.logr-ingest.com
Source: global traffic	DNS traffic detected: DNS query: dpm.demdex.net
Source: global traffic	DNS traffic detected: DNS query: adobedc.demdex.net
Source: global traffic	DNS traffic detected: DNS query: cloudflareinc.demdex.net
Source: global traffic	DNS traffic detected: DNS query: edge.adobedc.net
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: alb.reddit.com
Source: global traffic	DNS traffic detected: DNS query: beacons.gcp.gvt2.com
Source: global traffic	DNS traffic detected: DNS query: di.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: cm.everesttech.net
Source: global traffic	DNS traffic detected: DNS query: tag.demandbase.com
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: scout-cdn.salesloft.com
Source: global traffic	DNS traffic detected: DNS query: static.ads-twitter.com
Source: global traffic	DNS traffic detected: DNS query: api.company-target.com
Source: global traffic	DNS traffic detected: DNS query: munchkin.marketo.net
Source: global traffic	DNS traffic detected: DNS query: s.company-target.com
Source: global traffic	DNS traffic detected: DNS query: scout.salesloft.com
Source: global traffic	DNS traffic detected: DNS query: dsum-sec.casalemedia.com
Source: global traffic	DNS traffic detected: DNS query: partners.tremorhub.com
Source: global traffic	DNS traffic detected: DNS query: pixel.rubiconproject.com
Source: global traffic	DNS traffic detected: DNS query: cdn.bizible.com
Source: global traffic	DNS traffic detected: DNS query: trk.techtarget.com
Source: global traffic	DNS traffic detected: DNS query: js.qualified.com
Source: global traffic	DNS traffic detected: DNS query: tag-logger.demandbase.com

Source: unknown

HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1077902752:1741858033:LYZkACBacvvx8IJOsGK-nqjmS2jdsvS5Jt84ZVD3ogQ/91faa32f59dfeac0/S_akbnW.mnHW6UlxR3xTFyzlthhnXToeUdyyT1IZ0oc-1741859535-1.1.1.1-P7y3ULSL3qnuyFMBNhU0iSadSfRQbstWsrRuYho3I1WrLw2MVVmmAQiTTldYHNe_ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveContent-Length: 3369sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-Type: text/plain;charset=UTF-8cf-chl: S_akbnW.mnHW6UlxR3xTFyzlthhnXToeUdyyT1IZ0oc-1741859535-1.1.1.1-P7y3ULSL3qnuyFMBNhU0iSadSfRQbstWsrRuYho3I1WrLw2MVVmmAQiTTldYHNe_cf-chl-ra: 0sec-ch-ua-mobile: ?0Accept: */*Origin: https://challenges.cloudflare.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:34 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3a77cffaef5-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:43 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3dd5d546191-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:43 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3dd8fd22225-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:43 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3ddef1d13ef-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:43 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3ddcb2be994-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:43 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3de2fa222e8-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:43 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3de3c88eb61-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:43 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3deae68540f-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:45 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3edfeeb9602-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:45 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3ee2c26636c-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:45 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3ee4de51246-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:45 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3ee49c4e82e-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:45 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3ee5d4319b0-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:45 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3ef08cc22c3-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:48 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa3fe6a9861a3-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:52 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa41aac7e8b98-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:53 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa41c0fdc86ec-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:53 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa41cfa56e82d-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:53 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa41d3f49e27b-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:55 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa4298d0322f3-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:56 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa42e89c5f85a-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:57 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa4394976f85e-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:58 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa43dcce5b474-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:52:59 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa441de3a22d3-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:53:00 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa446deabb266-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:53:00 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa446ee315c91-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:53:00 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa44a89fb10be-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:53:00 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa44ccad7e1ff-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:53:02 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa4579c97119b-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenServer: cloudflareDate: Thu, 13 Mar 2025 09:53:03 GMTContent-Type: text/htmlContent-Length: 553Connection: closeCF-RAY: 91faa45a08a6115e-ORD
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: c16ec0bd-da48-4d88-a3f4-31000ef6ea0bvary: Origindate: Thu, 13 Mar 2025 09:53:03 GMTx-konductor: 25.3.4:8abf704d4x-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundx-request-id: dc066216-c6a2-4212-ad80-f977f4e6a5cevary: Origindate: Thu, 13 Mar 2025 09:53:05 GMTx-konductor: 25.3.4:8abf704d4x-adobe-edge: IRL1;6server: jagcontent-length: 0strict-transport-security: max-age=31536000; includeSubDomainscache-control: no-cache, no-store, max-age=0, no-transform, privatex-xss-protection: 1; mode=blockx-content-type-options: nosniffconnection: close

Source: chromecache_144.1.dr	String found in binary or memory: http://www.cloudflare.com/
Source: chromecache_119.1.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_119.1.dr	String found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_119.1.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_100.1.dr	String found in binary or memory: https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1741859582570&uuid=94c780b0-3042-413
Source: chromecache_121.1.dr, chromecache_154.1.dr	String found in binary or memory: https://api.www.cloudflare.com/api/v1
Source: chromecache_114.1.dr	String found in binary or memory: https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.js
Source: chromecache_134.1.dr	String found in binary or memory: https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_Acti
Source: chromecache_105.1.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC392ad6d4bbf94c7283b4eda6cbf689a
Source: chromecache_139.1.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC55904e5e1abc4d38a5f1ac3dea0edaa
Source: chromecache_151.1.dr	String found in binary or memory: https://assets.adobedtm.com/f597f8065f97/065ba81630d7/launch-efab6d095ce0.js
Source: chromecache_147.1.dr, chromecache_119.1.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_117.1.dr, chromecache_124.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/1qyDEBnfSjGjDAj5V6Zo1g/f8c8126789bc16fa0329943b0d4
Source: chromecache_117.1.dr, chromecache_124.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/1rVmRBDX3KhZOe2FREoYOz/24f44a8dbe53111346d97dc59b7
Source: chromecache_117.1.dr, chromecache_124.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/2iaZGHR7NSRdBzpq8wiboE/de2d9d0f908ec37deea865b055a
Source: chromecache_117.1.dr, chromecache_124.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/35yeieyQns5B8WsFes9Z20/8bf36cbf9edf546c30cc9e3e082
Source: chromecache_117.1.dr, chromecache_124.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/3KPlWZN5s1sQQeavuAaMa4/cb02c2544821d099f24ee3270c3
Source: chromecache_117.1.dr, chromecache_124.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/3jxszSMXRhwiwHDa1VPXFw/cc6439cd93a107bd0986bb6d5dc
Source: chromecache_117.1.dr, chromecache_124.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/3mYUDEjNlXbjQaceoFUhzU/378a4b79f7b51e7677fd6ab442e
Source: chromecache_104.1.dr, chromecache_101.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/42XkFj9Uywkm8Jahf62RtP/0563d91cc1fa54da2bf2c50bad8
Source: chromecache_104.1.dr, chromecache_101.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab
Source: chromecache_144.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/53qCYhQbir5WtIU0VDWESo/954a48bfb17f429acf469e5f143
Source: chromecache_152.1.dr, chromecache_102.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/6i8d186tH2iueYvgwVRaJf/ab27fd31033bdd31aea69065480
Source: chromecache_117.1.dr, chromecache_124.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/6wvLylL1UDvEfh7N5WBd32/b05450aa05d6c40af93bf04309e
Source: chromecache_152.1.dr, chromecache_102.1.dr	String found in binary or memory: https://cf-assets.www.cloudflare.com/slt3lc6tev37/mJZqOomHta2MLLB73P8Hs/9378861761815b3adf7bcb7734d6
Source: chromecache_144.1.dr	String found in binary or memory: https://developers.cloudflare.com/1.1.1.1/privacy/public-dns-resolver/
Source: chromecache_107.1.dr	String found in binary or memory: https://developers.marketo.com/MunchkinLicense.pdf
Source: chromecache_113.1.dr	String found in binary or memory: https://dsum-sec.casalemedia.com/rum?cm_dsp_id=18&expiry=1757757193&external_user_id=683e6aa
Source: chromecache_144.1.dr	String found in binary or memory: https://feedback-form.truste.com/watchdog/request
Source: chromecache_144.1.dr, chromecache_140.1.dr	String found in binary or memory: https://github.com/jonsuh/hamburgers
Source: chromecache_119.1.dr	String found in binary or memory: https://google.com
Source: chromecache_119.1.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_144.1.dr, chromecache_140.1.dr	String found in binary or memory: https://jonsuh.com/hamburgers
Source: chromecache_144.1.dr	String found in binary or memory: https://optout.networkadvertising.org/?c=1
Source: chromecache_119.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_147.1.dr, chromecache_119.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_113.1.dr	String found in binary or memory: https://partners.tremorhub.com/sync?UIDM=683e6aa9-1f46-4e82-b0da-df1736a0dba3
Source: chromecache_113.1.dr	String found in binary or memory: https://pixel.rubiconproject.com/tap.php?nid=5578&put=683e6aa9-1f46-4e82-b0da-df1736a0dba3&v
Source: chromecache_100.1.dr	String found in binary or memory: https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-
Source: chromecache_100.1.dr	String found in binary or memory: https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif
Source: chromecache_100.1.dr	String found in binary or memory: https://scout-cdn.salesloft.com/sl.js
Source: chromecache_136.1.dr	String found in binary or memory: https://scout.us4.salesloft.com
Source: chromecache_100.1.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_111.1.dr	String found in binary or memory: https://staging.mrk.cfdata.org/mrk/redwood-blade-repository/
Source: chromecache_100.1.dr	String found in binary or memory: https://static.ads-twitter.com/uwt.js
Source: chromecache_147.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_147.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect?v=2&
Source: chromecache_100.1.dr	String found in binary or memory: https://tag.demandbase.com/1be41a80498a5b73.min.js
Source: chromecache_147.1.dr, chromecache_119.1.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_100.1.dr	String found in binary or memory: https://trk.techtarget.com/tracking.js
Source: chromecache_121.1.dr, chromecache_154.1.dr	String found in binary or memory: https://www.cloudflare.com
Source: chromecache_144.1.dr	String found in binary or memory: https://www.dataprivacyframework.gov/
Source: chromecache_144.1.dr	String found in binary or memory: https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf?tabset-35584=2
Source: chromecache_119.1.dr	String found in binary or memory: https://www.google.com
Source: chromecache_119.1.dr	String found in binary or memory: https://www.google.com/gmp/conversion;
Source: chromecache_119.1.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_119.1.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_147.1.dr, chromecache_119.1.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_119.1.dr	String found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_147.1.dr, chromecache_119.1.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_144.1.dr	String found in binary or memory: https://www.icann.org/
Source: chromecache_144.1.dr	String found in binary or memory: https://www.icann.org/resources/pages/approved-with-specs-2013-09-17-en
Source: chromecache_147.1.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_144.1.dr	String found in binary or memory: https://www.youronlinechoices.eu/

Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 49681 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49697 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49702
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49676 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 49718 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49702 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 49698 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49695 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49698
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49697
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49696
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49695
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49681
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49673
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49700
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49696 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir5944_1450111151

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir5944_1450111151

Jump to behavior

Source: classification engine

Classification label: mal52.win@27/109@113/44

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2060,i,3013786077015428498,12011039314333108357,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2096 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://test.novanotes.de/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2060,i,3013786077015428498,12011039314333108357,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2096 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	1 Browser Extensions	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	1 File Deletion	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
https://test.novanotes.de/	100%	Avira URL Cloud	phishing

Source	Detection	Scanner	Label
https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf?tabset-35584=2	0%	Avira URL Cloud	safe
https://optout.networkadvertising.org/?c=1	0%	Avira URL Cloud	safe
https://www.youronlinechoices.eu/	0%	Avira URL Cloud	safe
https://www.dataprivacyframework.gov/	0%	Avira URL Cloud	safe
https://feedback-form.truste.com/watchdog/request	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
prod-default.lb.logrocket.network	104.198.23.205	true	false	high
static.cloudflareinsights.com	104.16.79.73	true	false	high
pixel.rubiconproject.net.akadns.net	69.173.144.165	true	false	high
trk.techtarget.com.cdn.cloudflare.net	104.18.19.71	true	false	high
beacons-handoff.gcp.gvt2.com	142.251.143.67	true	false	high
scout-cdn.salesloft.com.cdn.cloudflare.net	104.16.72.105	true	false	high
s.dsp-prod.demandbase.com	34.96.71.22	true	false	high
e10776.b.akamaiedge.net	104.73.230.208	true	false	high
scout.us1.salesloft.com	3.209.97.229	true	false	high
platform.twitter.map.fastly.net	146.75.120.157	true	false	high
ot.www.cloudflare.com	104.16.124.96	true	false	high
l-0005.l-msedge.net	13.107.42.14	true	false	high
tag.demandbase.com	18.245.46.89	true	false	high
performance.radar.cloudflare.com	104.18.31.78	true	false	high
gce-beacons.gcp.gvt2.com	104.196.0.153	true	false	high
www.google.com	142.250.185.132	true	false	high
demdex.net.ssl.sc.omtrdc.net	63.140.62.17	true	false	high
api.www.cloudflare.com	104.16.123.96	true	false	high
dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com	18.203.49.17	true	false	high
partners-1864332697.us-east-1.elb.amazonaws.com	54.197.54.82	true	false	high
cf-assets.www.cloudflare.com	104.16.123.96	true	false	high
tag-logger.demandbase.com	18.173.205.127	true	false	high
a798.dscd.akamai.net	2.22.242.97	true	false	high
a.nel.cloudflare.com	35.190.80.1	true	false	high
test.novanotes.de	172.67.189.248	true	false	unknown
cm.everesttech.net.akadns.net	18.200.1.178	true	false	high
js.qualified.com	104.18.17.5	true	false	high
ax-0001.ax-msedge.net	150.171.27.10	true	false	high
di.rlcdn.com	35.244.174.68	true	false	high
www.linkedin.com.cdn.cloudflare.net	172.64.146.215	true	false	high
www.cloudflare.com	104.16.123.96	true	false	high
cdn.logr-ingest.com	104.21.112.1	true	false	high
reddit.map.fastly.net	151.101.129.140	true	false	high
dsum-sec.casalemedia.com	104.18.27.193	true	false	high
e7808.dscg.akamaiedge.net	2.18.96.221	true	false	high
challenges.cloudflare.com	104.18.95.41	true	false	high
adobedc.net.ssl.sc.omtrdc.net	63.140.62.222	true	false	high
api.company-target.com	18.66.102.85	true	false	high
a1916.dscg2.akamai.net	88.221.110.227	true	false	high
alb.reddit.com	unknown	unknown	false	high
static.ads-twitter.com	unknown	unknown	false	high
scout.salesloft.com	unknown	unknown	false	high
scout-cdn.salesloft.com	unknown	unknown	false	high
beacons.gcp.gvt2.com	unknown	unknown	false	high
cm.everesttech.net	unknown	unknown	false	high
cloudflareinc.demdex.net	unknown	unknown	false	high
adobedc.demdex.net	unknown	unknown	false	high
cdn.bizible.com	unknown	unknown	false	high
dpm.demdex.net	unknown	unknown	false	high
s.company-target.com	unknown	unknown	false	high
assets.adobedtm.com	unknown	unknown	false	high
www.linkedin.com	unknown	unknown	false	high
pixel.rubiconproject.com	unknown	unknown	false	high
px.ads.linkedin.com	unknown	unknown	false	high
munchkin.marketo.net	unknown	unknown	false	high
r.logr-ingest.com	unknown	unknown	false	high
snap.licdn.com	unknown	unknown	false	high
edge.adobedc.net	unknown	unknown	false	high
partners.tremorhub.com	unknown	unknown	false	high
trk.techtarget.com	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Reputation
https://cf-assets.www.cloudflare.com/slt3lc6tev37/2iaZGHR7NSRdBzpq8wiboE/de2d9d0f908ec37deea865b055af42df/cloudflare-spectrum.png	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6XVeELky7fceWRpfBvN8qr/4e13aa3d8dd73e1f091f3de966fdc9cb/logo_shopify_trusted-by_gray.svg	false	high
https://dpm.demdex.net/ibs:dpid=411&dpuuid=Z9KrBAAAAI-0cgNe	false	high
https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/1rVmRBDX3KhZOe2FREoYOz/24f44a8dbe53111346d97dc59b7510ed/security-shield-protection-1.svg	false	high
https://www.cloudflare.com/component---src-components-page-page-template-tsx-c7ec2b92ba43b220ad2d.js	false	high
https://cloudflareinc.demdex.net/dest5.html?d_nsid=0	false	high
https://www.cloudflare.com/static/z/i.js	false	high
https://www.cloudflare.com/page-data/under-attack-hotline/page-data.json	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6VUhUMEcvn3L3j88LttHzC/b2cf2b702aad874db9cb61b0028e9c40/logo_garmin_trusted-by_gray.svg	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/2TfcZ86qvZor2xtI2z4Vvr/ef54112582296119f4296869c34ba025/logo_23andme_color_32px-wrapper.svg	false	high
https://pixel.rubiconproject.com/tap.php?nid=5578&put=683e6aa9-1f46-4e82-b0da-df1736a0dba3&v=1181926	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/new/normal/auto/	false	high
https://www.cloudflare.com/page-data/sq/d/3934964512.json	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/35yeieyQns5B8WsFes9Z20/8bf36cbf9edf546c30cc9e3e08235255/cloudflare-zero-trust.svg	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=91faa415cd1772e8&lang=auto	false	high
https://challenges.cloudflare.com/turnstile/v0/g/f3b948d8acb8/api.js	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/OMwO1Fr8BxHVum0iBbatc/979c1807f5810edc903d4b07c18e0cb0/logo_ibm_trusted-by_gray.svg	false	high
https://scout.salesloft.com/i	false	high
https://adobedc.demdex.net/ee/v1/identity/acquire?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=c16ec0bd-da48-4d88-a3f4-31000ef6ea0b	false	high
https://partners.tremorhub.com/sync?UIDM=683e6aa9-1f46-4e82-b0da-df1736a0dba3	false	high
https://cm.everesttech.net/cm/dd?d_uuid=45734699853828790720910191705743032943	false	high
https://munchkin.marketo.net/munchkin-beta.js	false	high
https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&time=1741859582570&pid=28851&conversionId=13043044&cookiesTest=true&liSync=true	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/3KPlWZN5s1sQQeavuAaMa4/cb02c2544821d099f24ee3270c374367/target.png	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/356660096:1741857932:HseOuyZcRwad2skgo_6cUFzPyT2dPJMThAmFWun_7Vw/91faa39eba2022e0/yaEm_Zw6YyO94UAZ8F5pwFANN1M.uz5TbKa.RttPWv0-1741859553-1.1.1.1-yccsE9w9kJ36xqH.7UmANCKw6lzD11S.6D26QqboD5MqRMk9HqtoY9goYndAmJvX	false	high
https://assets.adobedtm.com/f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC55904e5e1abc4d38a5f1ac3dea0edaab-source.min.js	false	high
https://r.logr-ingest.com/i?a=ykolez%2Fcloudflarecom&r=6-01958eeb-b583-7d66-b54e-ca6e04990f14&t=940c6c82-7677-4f13-b241-9d3f1a0f96ea&s=0&u=0f02bcaa-8869-4bf3-9d95-1fddfb54a154&is=1&rs=0%2Cu	false	high
https://www.cloudflare.com/a06cff934e9579536ce1c10bad21c1d6d7f63ae0-90484db4602d401d94ca.js	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=91faa39eba2022e0&lang=auto	false	high
https://api.www.cloudflare.com/api/v1/marketo/form/1639	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=91faa48cc8d510d8&lang=auto	false	high
https://challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	false	high
https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.min.js	false	high
https://scout-cdn.salesloft.com/sl.js	false	high
https://static.ads-twitter.com/uwt.js	false	high
https://www.cloudflare.com/174-242772ef10d8d161ae24.js	false	high
https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F&time=1741859582570&pid=28851&conversionId=13043044	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1	false	high
https://www.cloudflare.com/page-data/app-data.json	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/5YRPa33UFrfL2zoZd2AXTq/658995f16c7ee4818875c254c18573d3/logo_zendesk_gray_32px-wrapper.svg	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/401699452:1741858030:840jXOjtiTZr8cV3rQ8Ts91SgGZJaaGXMylku7ixNR8/91faa41acf1d22fd/bI8GXNfivUuYUxhDHduvwFRGjqUpVhd2Z895P5MTQvc-1741859572-1.1.1.1-726dd.GDAMElTCH23r1E.N0Rmy57nNRMf4prv5Zh1VE2TUYolq_lIWorqPXVQPyj	false	high
https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_ActivityMap.min.js	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/1Xar1H4WcFHHkHRDzMypMh/1f8989ae11cb464cc640c7121d0be9a6/logo_mars_trusted-by_gray.svg	false	high
https://www.cloudflare.com/privacypolicy/	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1077902752:1741858033:LYZkACBacvvx8IJOsGK-nqjmS2jdsvS5Jt84ZVD3ogQ/91faa32f59dfeac0/S_akbnW.mnHW6UlxR3xTFyzlthhnXToeUdyyT1IZ0oc-1741859535-1.1.1.1-P7y3ULSL3qnuyFMBNhU0iSadSfRQbstWsrRuYho3I1WrLw2MVVmmAQiTTldYHNe_	false	high
https://www.cloudflare.com/cdn-cgi/rum?	false	high
https://www.cloudflare.com/page-data/sq/d/3199558980.json	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/SAs3NRmywD4ydBAsj8z6L/8ecedebe7d84f1abe074fee24bc9bf6b/info.svg	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/57ABXXM79uTTFbsc925v8O/4b2b331f5a1475d45705d9c5fc61b85c/price.svg	false	high
https://assets.adobedtm.com/f597f8065f97/065ba81630d7/6d3ddf5fffa8/RC392ad6d4bbf94c7283b4eda6cbf689a0-source.min.js	false	high
https://px.ads.linkedin.com/attribution_trigger?pid=28851&time=1741859591226&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-hotline%2F	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/4xn47h0gWiUSwJ0PU3Ysvk/683779108bfd6eeb62fbac5135780fe6/logo_loreal_trusted-by_gray.svg	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcvByRU9e9nH.BfpCBBUr5X5bHqM7t4V4bLXRK2Rl0qMO8-1741859535-1.3.1.1-hBfcI.1HFyrceftrroVgtTcXnAIH3vuypLSJ_TzWiOs/pf8kb/0x4AAAAAABAd0-fwcURIiWK-/auto/fbE/failure_retry/normal/auto/	false	high
https://s.company-target.com/s/sync?exc=lr	false	high
https://edge.adobedc.net/ee/irl1/v1/interact?configId=715c679b-19c8-4402-8093-423571ad58c4&requestId=dc066216-c6a2-4212-ad80-f977f4e6a5ce	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1315818691:1741857965:nJ2NQZR0sy0kTg7EeqDzF2rsCtF_c_E3aklVtcPTghs/91faa415cd1772e8/8kq.3f4CehwJ1okFx.hmsZUGn18BAEfQo86Tj52f4Ck-1741859572-1.1.1.1-53xAtcmsB37E8QgXbXQC0MDAanaWKSh0XrXxMCd3cwT2IwcY7W9L4SA0QgK_Xcp9	false	high
https://ot.www.cloudflare.com/public/vendor/onetrust/scripttemplates/otSDKStub.js	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/26kszL2y2X7zTR2edZPDUY/1a9d00bc8c441346e6dd06bd82204972/logo_ncr_gray_32px-wrapper.svg	false	high
https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1741859582570&uuid=94c780b0-3042-413e-8885-43172eaf91f4&integration=reddit&opt_out=0&v=rdt_65e23bc4&sh=1024&sw=1280	false	high
https://www.cloudflare.com/under-attack-hotline/	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=91faa32f59dfeac0&lang=auto	false	high
https://di.rlcdn.com/710030.gif?pdata=d=desktop,lc=US,ref=www.cloudflare.com	false	high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/1AsuJijKk8EMH5s1ae56nx/b13406881aa864b7e17b2233a0d090ef/logo_labcorp_trusted-by_gray.svg	false	high
https://www.cloudflare.com/page-data/sq/d/1048862057.json	false	high
https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyA2KlwBX3mkFo30om9LUFYQhpqLoa_BNhE	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/91faa41acf1d22fd/1741859575263/57da46be7adf1d888272294906fb7f7c6f69a7a08200fff6ddfe8351b400383e/-gcyhFePybPm9O0	false	high

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://optout.networkadvertising.org/?c=1	chromecache_144.1.dr	false	Avira URL Cloud: safe	unknown
https://stats.g.doubleclick.net/g/collect	chromecache_147.1.dr	false		high
https://px.ads.linkedin.com/collect/?pid=28851&fmt=gif	chromecache_100.1.dr	false		high
https://www.youronlinechoices.eu/	chromecache_144.1.dr	false	Avira URL Cloud: safe	unknown
https://cf-assets.www.cloudflare.com/slt3lc6tev37/6i8d186tH2iueYvgwVRaJf/ab27fd31033bdd31aea69065480	chromecache_152.1.dr, chromecache_102.1.dr	false		high
https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_Acti	chromecache_134.1.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/1qyDEBnfSjGjDAj5V6Zo1g/f8c8126789bc16fa0329943b0d4	chromecache_117.1.dr, chromecache_124.1.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab	chromecache_104.1.dr, chromecache_101.1.dr	false		high
https://www.google.com	chromecache_119.1.dr	false		high
https://developers.cloudflare.com/1.1.1.1/privacy/public-dns-resolver/	chromecache_144.1.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/3mYUDEjNlXbjQaceoFUhzU/378a4b79f7b51e7677fd6ab442e	chromecache_117.1.dr, chromecache_124.1.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/42XkFj9Uywkm8Jahf62RtP/0563d91cc1fa54da2bf2c50bad8	chromecache_104.1.dr, chromecache_101.1.dr	false		high
https://tag.demandbase.com/1be41a80498a5b73.min.js	chromecache_100.1.dr	false		high
https://www.google.com/gmp/conversion;	chromecache_119.1.dr	false		high
https://scout.us4.salesloft.com	chromecache_136.1.dr	false		high
https://www.icann.org/resources/pages/approved-with-specs-2013-09-17-en	chromecache_144.1.dr	false		high
https://trk.techtarget.com/tracking.js	chromecache_100.1.dr	false		high
https://www.cloudflare.com	chromecache_121.1.dr, chromecache_154.1.dr	false		high
https://cct.google/taggy/agent.js	chromecache_147.1.dr, chromecache_119.1.dr	false		high
https://developers.marketo.com/MunchkinLicense.pdf	chromecache_107.1.dr	false		high
https://stats.g.doubleclick.net/g/collect?v=2&	chromecache_147.1.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/3jxszSMXRhwiwHDa1VPXFw/cc6439cd93a107bd0986bb6d5dc	chromecache_117.1.dr, chromecache_124.1.dr	false		high
https://www.dataprivacyframework.gov/	chromecache_144.1.dr	false	Avira URL Cloud: safe	unknown
https://px.ads.linkedin.com/collect/?fmt=js&v=2&url=https%3A%2F%2Fwww.cloudflare.com%2Funder-attack-	chromecache_100.1.dr	false		high
https://staging.mrk.cfdata.org/mrk/redwood-blade-repository/	chromecache_111.1.dr	false		high
https://alb.reddit.com/rp.gif?event=PageVisit&id=t2_1upmecjq&ts=1741859582570&uuid=94c780b0-3042-413	chromecache_100.1.dr	false		high
https://feedback-form.truste.com/watchdog/request	chromecache_144.1.dr	false	Avira URL Cloud: safe	unknown
https://www.icann.org/	chromecache_144.1.dr	false		high
https://assets.adobedtm.com/f597f8065f97/065ba81630d7/launch-efab6d095ce0.js	chromecache_151.1.dr	false		high
https://cf-assets.www.cloudflare.com/slt3lc6tev37/1rVmRBDX3KhZOe2FREoYOz/24f44a8dbe53111346d97dc59b7	chromecache_117.1.dr, chromecache_124.1.dr	false		high
http://www.cloudflare.com/	chromecache_144.1.dr	false		high
https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf?tabset-35584=2	chromecache_144.1.dr	false	Avira URL Cloud: safe	unknown
https://assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.js	chromecache_114.1.dr	false		high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.67.189.248	test.novanotes.de	United States	13335	CLOUDFLARENETUS	false
18.203.49.17	dcs-public-edge-irl1-150041215.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
18.200.1.178	cm.everesttech.net.akadns.net	United States	16509	AMAZON-02US	false
104.198.23.205	prod-default.lb.logrocket.network	United States	15169	GOOGLEUS	false
2.22.242.97	a798.dscd.akamai.net	European Union	20940	AKAMAI-ASN1EU	false
63.140.62.222	adobedc.net.ssl.sc.omtrdc.net	United States	15224	OMNITUREUS	false
151.101.65.140	unknown	United States	54113	FASTLYUS	false
172.64.146.215	www.linkedin.com.cdn.cloudflare.net	United States	13335	CLOUDFLARENETUS	false
18.173.205.127	tag-logger.demandbase.com	United States	3	MIT-GATEWAYSUS	false
35.190.80.1	a.nel.cloudflare.com	United States	15169	GOOGLEUS	false
104.16.124.96	ot.www.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
18.245.46.89	tag.demandbase.com	United States	16509	AMAZON-02US	false
104.16.72.105	scout-cdn.salesloft.com.cdn.cloudflare.net	United States	13335	CLOUDFLARENETUS	false
69.173.144.165	pixel.rubiconproject.net.akadns.net	United States	26667	RUBICONPROJECTUS	false
34.96.71.22	s.dsp-prod.demandbase.com	United States	15169	GOOGLEUS	false
104.73.230.208	e10776.b.akamaiedge.net	United States	16625	AKAMAI-ASUS	false
104.18.95.41	challenges.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
63.140.62.17	demdex.net.ssl.sc.omtrdc.net	United States	15224	OMNITUREUS	false
13.107.42.14	l-0005.l-msedge.net	United States	8068	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
104.21.89.166	unknown	United States	13335	CLOUDFLARENETUS	false
104.18.31.78	performance.radar.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
3.229.221.52	unknown	United States	14618	AMAZON-AESUS	false
146.75.120.157	platform.twitter.map.fastly.net	Sweden	30051	SCCGOVUS	false
54.194.53.123	unknown	United States	16509	AMAZON-02US	false
35.244.174.68	di.rlcdn.com	United States	15169	GOOGLEUS	false
88.221.110.227	a1916.dscg2.akamai.net	European Union	20940	AKAMAI-ASN1EU	false
18.66.102.75	unknown	United States	3	MIT-GATEWAYSUS	false
104.18.94.41	unknown	United States	13335	CLOUDFLARENETUS	false
63.140.62.27	unknown	United States	15224	OMNITUREUS	false
104.21.112.1	cdn.logr-ingest.com	United States	13335	CLOUDFLARENETUS	false
54.197.54.82	partners-1864332697.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
104.16.79.73	static.cloudflareinsights.com	United States	13335	CLOUDFLARENETUS	false
3.209.97.229	scout.us1.salesloft.com	United States	14618	AMAZON-AESUS	false
18.66.102.85	api.company-target.com	United States	3	MIT-GATEWAYSUS	false
99.80.185.42	unknown	United States	16509	AMAZON-02US	false
2.18.96.221	e7808.dscg.akamaiedge.net	European Union	20940	AKAMAI-ASN1EU	false
104.18.27.193	dsum-sec.casalemedia.com	United States	13335	CLOUDFLARENETUS	false
104.18.19.71	trk.techtarget.com.cdn.cloudflare.net	United States	13335	CLOUDFLARENETUS	false
142.250.185.132	www.google.com	United States	15169	GOOGLEUS	false
104.18.17.5	js.qualified.com	United States	13335	CLOUDFLARENETUS	false
151.101.129.140	reddit.map.fastly.net	United States	54113	FASTLYUS	false
104.16.123.96	api.www.cloudflare.com	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.8
192.168.2.4

General Information

Joe Sandbox version:	42.0.0 Malachite
Analysis ID:	1637089
Start date and time:	2025-03-13 10:51:01 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 39s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://test.novanotes.de/
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	14
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal52.win@27/109@113/44
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): sppsvc.exe, SIHClient.exe, SgrmBroker.exe, TextInputHost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.185.142, 74.125.206.84, 142.250.186.174, 142.251.32.99, 172.217.16.206, 142.250.184.238, 216.58.206.46, 199.232.214.172, 216.58.206.78, 142.250.186.78, 142.250.185.110, 142.250.184.206, 216.58.206.40, 142.250.186.104, 216.58.206.35, 142.250.186.142, 172.217.18.99, 142.250.186.110, 52.149.20.212, 23.60.203.209, 150.171.27.10
Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, slscr.update.microsoft.com, ctldl.windowsupdate.com, clientservices.googleapis.com, fe3cr.delivery.mp.microsoft.com, clients2.google.com, edgedl.me.gvt1.com, redirector.gvt1.com, www.googletagmanager.com, update.googleapis.com, bat.bing.com, clients.l.google.com, c.pki.goog, www.google-analytics.com
Not all processes where analyzed, report is missing behavior information
Report size getting too big, too many NtCreateFile calls found.
Report size getting too big, too many NtOpenFile calls found.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: https://test.novanotes.de/

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Unicode text, UTF-8 text, with very long lines (8090)
Category:	downloaded
Size (bytes):	10492
Entropy (8bit):	5.613427324626518
Encrypted:	false
SSDEEP:	192:xraU3fX/dTMNmGiwGCIzLfZU2i1odjek3iLh7tBP+iPpvVuiVCnSOPliotKE3cDi:Rj1imGiDfZy1QyLrBPhdVRV3otj5
MD5:	DDF6EA04BFA51E83CE4C43BBE200D94A
SHA1:	43F7766B2AD712D9A3CA3A684D6CA5708D797798
SHA-256:	B8FAA1D4F786D2AC39384E74879B04ECB6B5A13A8CB14609C66C40B52A163C43
SHA-512:	B0462403C45102F664B631020640EEFA3EA888DAB429432C57AFDEA18063D4F0DC8FFAFDD5DF47105D4E9FC6AD59FEBAD35F830A4072EA73545A75895BDD7D92
Malicious:	false
Reputation:	low
URL:	https://www.cloudflare.com/static/z/s.js?z=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
Preview:	try{(function(w,d){zaraz.debug=(eX="")=>{document.cookie=`zarazDebug=${eX}; path=/`;location.reload()};window.zaraz._al=function(dZ,d$,ea){w.zaraz.listeners.push({item:dZ,type:d$,callback:ea});dZ.addEventListener(d$,ea)};zaraz.preview=(db="")=>{document.cookie=`zarazPreview=${db}; path=/`;location.reload()};zaraz.i=function(eH){const eI=d.createElement("div");eI.innerHTML=unescape(eH);const eJ=eI.querySelectorAll("script"),eK=d.querySelector("script[nonce]"),eL=eK?.nonce\|\|eK?.getAttribute("nonce");for(let eM=0;eM<eJ.length;eM++){const eN=d.createElement("script");eL&&(eN.nonce=eL);eJ[eM].innerHTML&&(eN.innerHTML=eJ[eM].innerHTML);for(const eO of eJ[eM].attributes)eN.setAttribute(eO.name,eO.value);d.head.appendChild(eN);eJ[eM].remove()}d.body.appendChild(eI)};zaraz.f=async function(eb,ec){const ed={credentials:"include",keepalive:!0,mode:"no-cors"};if(ec){ed.method="POST";ed.body=new URLSearchParams(ec);ed.headers={"Content-Type":"application/x-www-form-urlencoded"}}return await fetch(e

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	1135
Entropy (8bit):	5.195218939009382
Encrypted:	false
SSDEEP:	24:YgGXhXo4YAGKooB80ar1qhqo4YAGADwB0arE:YcKoaarUcarE
MD5:	EBEEA0414FED32193900E84E33F2BE1B
SHA1:	8EFBADFF74F2B75D7BC755254E2369B27DBE8F32
SHA-256:	911BA3DE8DCDA879031896EFB4FF7EAF448FF44FC448F6AFB1281B606BD5B323
SHA-512:	16F367EA2F09F67390F1083398F7D3B4AA5369259EC25819A0A93DDAA33334563B939315503B429996662E402CBBB6AA8A376DD7F4BC595D96938A2AACBB72FB
Malicious:	false
Reputation:	low
Preview:	{"data":{"gray":{"id":"67775c6d-87bd-5a24-a947-3518902c5081","altText":"Google Cloud Platform - GCP Gray Logo","title":"Google Cloud Platform - GCP Gray Logo","activeAsset":"Contentful Asset","locale":"en-US","contentfulAsset":{"file":{"publicURL":"https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab93d8d/button_bandwidth-calculator_google-cloud.svg"},"description":"Google Cloud Platform - GCP Gray Logo used as a button image on egress savings calculator"},"brandfolderAsset":null,"brandfolderAssetMobile":null},"orange":{"id":"e7dd6567-30d1-5534-921f-aa6f0713df49","altText":"Google Cloud Platform - GCP Orange Logo","title":"Google Cloud Platform - GCP Orange Logo","activeAsset":"Contentful Asset","locale":"en-US","contentfulAsset":{"file":{"publicURL":"https://cf-assets.www.cloudflare.com/slt3lc6tev37/42XkFj9Uywkm8Jahf62RtP/0563d91cc1fa54da2bf2c50bad815fa9/button_bandwidth-calculator_orange-google-cloud.svg"},"description":"Google Cloud Pl

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (65448)
Category:	downloaded
Size (bytes):	141409
Entropy (8bit):	5.2689081924592935
Encrypted:	false
SSDEEP:	1536:vvRhq5eZ7j9fohDQde9yuYvBSyYnDQSTf3W5aUG+rdPAQ9l:vxE9oSfrf3W5Io9l
MD5:	5ECE435F1C64EEB216E3C40C34129DFF
SHA1:	12C84F3876589F43AC5DCFFAE6316420FD4750FC
SHA-256:	FC9585F08E201191E8269F67184DCB5A0DFF1354F6397C38E795E489ABBA4F4F
SHA-512:	215B97A411A051220A48C97A0C1A2A6CDFD73D8CF289C6900B09B5BD47633424FEE5F1AADC8B3E2AEDA384E3B1F31CF550A1C63ED8B84960420BBCF2EC25F329
Malicious:	false
Reputation:	low
URL:	https://www.cloudflare.com/framework-957a522640f43541ca6a.js
Preview:	/! For license information please see framework-957a522640f43541ca6a.js.LICENSE.txt /.(self.webpackChunk_cloudflare_mrkeng_redwood=self.webpackChunk_cloudflare_mrkeng_redwood\|\|[]).push([[593],{2694:function(e,n,t){"use strict";var r=t(6925);function l(){}function a(){}a.resetWarningCache=l,e.exports=function(){function e(e,n,t,l,a,o){if(o!==r){var u=new Error("Calling PropTypes validators directly is not supported by the `prop-types` package. Use PropTypes.checkPropTypes() to call them. Read more at http://fb.me/use-check-prop-types");throw u.name="Invariant Violation",u}}function n(){return e}e.isRequired=e;var t={array:e,bigint:e,bool:e,func:e,number:e,object:e,string:e,symbol:e,any:e,arrayOf:n,element:e,elementType:e,instanceOf:n,node:e,objectOf:n,oneOf:n,oneOfType:n,shape:n,exact:n,checkPropTypes:a,resetWarningCache:l};return t.PropTypes=t,t}},5556:function(e,n,t){e.exports=t(2694)()},6925:function(e){"use strict";e.exports="SECRET_DO_NOT_PASS_THIS_OR_YOU_WILL_BE_FIRED"},22551:fu

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	downloaded
Size (bytes):	1135
Entropy (8bit):	5.195218939009382
Encrypted:	false
SSDEEP:	24:YgGXhXo4YAGKooB80ar1qhqo4YAGADwB0arE:YcKoaarUcarE
MD5:	EBEEA0414FED32193900E84E33F2BE1B
SHA1:	8EFBADFF74F2B75D7BC755254E2369B27DBE8F32
SHA-256:	911BA3DE8DCDA879031896EFB4FF7EAF448FF44FC448F6AFB1281B606BD5B323
SHA-512:	16F367EA2F09F67390F1083398F7D3B4AA5369259EC25819A0A93DDAA33334563B939315503B429996662E402CBBB6AA8A376DD7F4BC595D96938A2AACBB72FB
Malicious:	false
Reputation:	low
URL:	https://www.cloudflare.com/page-data/sq/d/3934964512.json
Preview:	{"data":{"gray":{"id":"67775c6d-87bd-5a24-a947-3518902c5081","altText":"Google Cloud Platform - GCP Gray Logo","title":"Google Cloud Platform - GCP Gray Logo","activeAsset":"Contentful Asset","locale":"en-US","contentfulAsset":{"file":{"publicURL":"https://cf-assets.www.cloudflare.com/slt3lc6tev37/4sfL2iS6H10uq2waT6ehym/ad18b77fa469ce07f23d22e19ab93d8d/button_bandwidth-calculator_google-cloud.svg"},"description":"Google Cloud Platform - GCP Gray Logo used as a button image on egress savings calculator"},"brandfolderAsset":null,"brandfolderAssetMobile":null},"orange":{"id":"e7dd6567-30d1-5534-921f-aa6f0713df49","altText":"Google Cloud Platform - GCP Orange Logo","title":"Google Cloud Platform - GCP Orange Logo","activeAsset":"Contentful Asset","locale":"en-US","contentfulAsset":{"file":{"publicURL":"https://cf-assets.www.cloudflare.com/slt3lc6tev37/42XkFj9Uywkm8Jahf62RtP/0563d91cc1fa54da2bf2c50bad815fa9/button_bandwidth-calculator_orange-google-cloud.svg"},"description":"Google Cloud Pl

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (19948), with no line terminators
Category:	downloaded
Size (bytes):	19948
Entropy (8bit):	5.261902742187293
Encrypted:	false
SSDEEP:	384:XriNpnjyMkg8XMtExRN1w29JIOzahXtO2nJ65:GijgSWuanfJ65
MD5:	EC18AF6D41F6F278B6AED3BDABFFA7BC
SHA1:	62C9E2CAB76B888829F3C5335E91C320B22329AE
SHA-256:	8A18D13015336BC184819A5A768447462202EF3105EC511BF42ED8304A7ED94F
SHA-512:	669B0E9A545057ACBDD3B4C8D1D2811EAF4C776F679DA1083E591FF38AE7684467ABACEF5AF3D4AABD9FB7C335692DBCA0DEF63DDAC2CD28D8E14E95680C3511
Malicious:	false
Reputation:	low
URL:	https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
Preview:	!function(){var e={343:function(e){"use strict";for(var t=[],n=0;n<256;++n)t[n]=(n+256).toString(16).substr(1);e.exports=function(e,n){var r=n\|\|0,i=t;return[i[e[r++]],i[e[r++]],i[e[r++]],i[e[r++]],"-",i[e[r++]],i[e[r++]],"-",i[e[r++]],i[e[r++]],"-",i[e[r++]],i[e[r++]],"-",i[e[r++]],i[e[r++]],i[e[r++]],i[e[r++]],i[e[r++]],i[e[r++]]].join("")}},944:function(e){"use strict";var t="undefined"!=typeof crypto&&crypto.getRandomValues&&crypto.getRandomValues.bind(crypto)\|\|"undefined"!=typeof msCrypto&&"function"==typeof window.msCrypto.getRandomValues&&msCrypto.getRandomValues.bind(msCrypto);if(t){var n=new Uint8Array(16);e.exports=function(){return t(n),n}}else{var r=new Array(16);e.exports=function(){for(var e,t=0;t<16;t++)0==(3&t)&&(e=4294967296*Math.random()),r[t]=e>>>((3&t)<<3)&255;return r}}},508:function(e,t,n){"use strict";var r=n(944),i=n(343);e.exports=function(e,t,n){var o=t&&n\|\|0;"string"==typeof e&&(t="binary"===e?new Array(16):null,e=null);var a=(e=e\|\|{}).random\|\|(e.rng\|\|r)();if(

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://test.novanotes.de/

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 100

Chrome Cache Entry: 101

Chrome Cache Entry: 102

Chrome Cache Entry: 103

Chrome Cache Entry: 104

Chrome Cache Entry: 105

Chrome Cache Entry: 106

Chrome Cache Entry: 107

Chrome Cache Entry: 108

Chrome Cache Entry: 109

Chrome Cache Entry: 110

Chrome Cache Entry: 111

Chrome Cache Entry: 112

Chrome Cache Entry: 113

Chrome Cache Entry: 114

Chrome Cache Entry: 115

Chrome Cache Entry: 116

Chrome Cache Entry: 117

Chrome Cache Entry: 118

Chrome Cache Entry: 119

Chrome Cache Entry: 120

Chrome Cache Entry: 121

Chrome Cache Entry: 122

Chrome Cache Entry: 123

Chrome Cache Entry: 124

Chrome Cache Entry: 125

Chrome Cache Entry: 126

Chrome Cache Entry: 127

Chrome Cache Entry: 128

Windows Analysis Report
https://test.novanotes.de/