Windows Analysis Report
https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd

Overview

General Information

Sample URL:	https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd
Analysis ID:	1640767
Infos:

Detection

HTMLPhisher

Score:	68
Range:	0 - 100
Confidence:	100%

Signatures

AI detected phishing page

Antivirus detection for URL or domain

Yara detected HtmlPhish54

AI detected suspicious Javascript

Creates files inside the system directory

Deletes files inside the Windows folder

HTML body contains low number of good links

HTML page contains hidden javascript code

HTML page contains obfuscated script src

HTML title does not match URL

Classification

Signatures

AV Detection

Antivirus detection for URL or domain

Source: https://hapiinenstys.criadordeconexoes.com.br/	Avira URL Cloud: Label: phishing
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly93d3cub2ZmaWNlLmNvbS9sb2dpbiM=	Avira URL Cloud: Label: phishing
Source: https://hapiinenstys.criadordeconexoes.com.br/?dataXX0=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL2hhcGlpbmVuc3R5cy5jcmlhZG9yZGVjb25leG9lcy5jb20uYnIvIiwiZG9tYWluIjoiaGFwaWluZW5zdHlzLmNyaWFkb3JkZWNvbmV4b2VzLmNvbS5iciIsImtleSI6InFWUDg3RWFGR0NRbiIsInFyYyI6bnVsbCwiaWF0IjoxNzQyMjI5NzYyLCJleHAiOjE3NDIyMjk4ODJ9.bpFU2t6kMODAzyr1sHzSD1xCGWuz2a7omLxO3ziToVg	Avira URL Cloud: Label: phishing
Source: https://hapiinenstys.criadordeconexoes.com.br/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://hapiinenstys.criadordeconexoes.com.br/common/GetCredentialType?mkt=en-US	Avira URL Cloud: Label: phishing

Phishing

AI detected phishing page

Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=true

Joe Sandbox AI: Score: 9 Reasons: The brand 'Microsoft' is classified as 'wellknown'., The URL 'hapiinenstys.criadordeconexoes.com.br' does not match the legitimate domain 'microsoft.com'., The domain 'criadordeconexoes.com.br' is unrelated to Microsoft and appears to be a generic or unrelated domain., The subdomain 'hapiinenstys' is unusual and not associated with Microsoft., The presence of an email-like input field 'wq31bf@oxkfqx.com' suggests potential phishing, as it may be used to collect sensitive information. DOM: 2.8.pages.csv

Yara detected HtmlPhish54

Source: Yara match	File source: 2.11..script.csv, type: HTML
Source: Yara match	File source: 1.2..script.csv, type: HTML
Source: Yara match	File source: 1.4.pages.csv, type: HTML
Source: Yara match	File source: 2.5.pages.csv, type: HTML
Source: Yara match	File source: 2.7.pages.csv, type: HTML
Source: Yara match	File source: 2.9.pages.csv, type: HTML
Source: Yara match	File source: 2.8.pages.csv, type: HTML

AI detected suspicious Javascript

Source: 2.60.d.script.csv

Joe Sandbox AI: Detected suspicious JavaScript with source url: anonymous function... This script demonstrates high-risk behaviors, including dynamic code execution through the use of the `Function` constructor and the ability to modify the `sRandomBlob` property, which could potentially be used for data exfiltration or other malicious purposes. The script is also heavily obfuscated, making it difficult to analyze and understand its true intent. These factors contribute to a high-risk assessment.

HTML body contains low number of good links

HTTP Parser: Number of links: 0

HTML page contains hidden javascript code

HTTP Parser: Base64 decoded: 4f0b0a4a-29ca-42e3-8f03-1a3dd7dfd538f547b57a-3730-406a-a0d8-b5efa22e6ac1

HTML page contains obfuscated script src

Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn

HTML title does not match URL

HTTP Parser: Title: MOD-xq7a2ts6 does not match URL

HTTP Parser: Iframe src: https://login.live.com/Me.htm?v=3

HTTP Parser: <input type="password" .../> found

Source: https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=cebc15b3c86fa69be7285330a66657219c1287ff53c1f7059daa44d10ef1952d669e891ae8484a544c8d16f0be8cc4af98aec84015acb9fd06d2a3ccc941854c	HTTP Parser: No favicon
Source: https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=cebc15b3c86fa69be7285330a66657219c1287ff53c1f7059daa44d10ef1952d669e891ae8484a544c8d16f0be8cc4af98aec84015acb9fd06d2a3ccc941854c	HTTP Parser: No favicon
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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...	HTTP Parser: No favicon

Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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	HTTP Parser: No <meta name="author".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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	HTTP Parser: No <meta name="author".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp	HTTP Parser: No <meta name="author".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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	HTTP Parser: No <meta name="author".. found

Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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...	HTTP Parser: No <meta name="copyright".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp...	HTTP Parser: No <meta name="copyright".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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...	HTTP Parser: No <meta name="copyright".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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...	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 142.250.185.132:443 -> 192.168.2.4:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49735 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49754 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49790 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49791 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.163
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.163
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.122.41
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd HTTP/1.1Host: h89s9dhj.ccbequipamentos.com.brConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?noiajvga=cebc15b3c86fa69be7285330a66657219c1287ff53c1f7059daa44d10ef1952d669e891ae8484a544c8d16f0be8cc4af98aec84015acb9fd06d2a3ccc941854c HTTP/1.1Host: h89s9dhj.ccbequipamentos.com.brConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f3b948d8acb8/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=921df19f1aa9330c&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: h89s9dhj.ccbequipamentos.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=cebc15b3c86fa69be7285330a66657219c1287ff53c1f7059daa44d10ef1952d669e891ae8484a544c8d16f0be8cc4af98aec84015acb9fd06d2a3ccc941854cAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2100462587:1742228952:oCWRJ_9F7aDLWE5rdVZZqokEYX6VeFO4JC8_BuYfHPM/921df19f1aa9330c/5f0QPWAUaeKYb3u9onIZ_IkF5wttGhEKmnf8t0Zrm6E-1742229749-1.1.1.1-yhPGGuzzN6GGa3jTR0pmjl5lW63MvnU_suAvvMWiHP2s4Z8Ctt7xP0BcTNoSFFCa HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/921df19f1aa9330c/1742229751867/S9e8vOBS_eqZ502 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/pat/921df19f1aa9330c/1742229751868/0df0701f524323cd1dd6ed6b0a6c711cea6cb7d910bb71d6d33d24befe49df70/2Si4XeZsCj928_7 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/921df19f1aa9330c/1742229751867/S9e8vOBS_eqZ502 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2100462587:1742228952:oCWRJ_9F7aDLWE5rdVZZqokEYX6VeFO4JC8_BuYfHPM/921df19f1aa9330c/5f0QPWAUaeKYb3u9onIZ_IkF5wttGhEKmnf8t0Zrm6E-1742229749-1.1.1.1-yhPGGuzzN6GGa3jTR0pmjl5lW63MvnU_suAvvMWiHP2s4Z8Ctt7xP0BcTNoSFFCa HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2100462587:1742228952:oCWRJ_9F7aDLWE5rdVZZqokEYX6VeFO4JC8_BuYfHPM/921df19f1aa9330c/5f0QPWAUaeKYb3u9onIZ_IkF5wttGhEKmnf8t0Zrm6E-1742229749-1.1.1.1-yhPGGuzzN6GGa3jTR0pmjl5lW63MvnU_suAvvMWiHP2s4Z8Ctt7xP0BcTNoSFFCa HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?dataXX0=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL2hhcGlpbmVuc3R5cy5jcmlhZG9yZGVjb25leG9lcy5jb20uYnIvIiwiZG9tYWluIjoiaGFwaWluZW5zdHlzLmNyaWFkb3JkZWNvbmV4b2VzLmNvbS5iciIsImtleSI6InFWUDg3RWFGR0NRbiIsInFyYyI6bnVsbCwiaWF0IjoxNzQyMjI5NzYyLCJleHAiOjE3NDIyMjk4ODJ9.bpFU2t6kMODAzyr1sHzSD1xCGWuz2a7omLxO3ziToVg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk
Source: global traffic	HTTP traffic detected: GET /?piwg10otu=aHR0cHM6Ly93d3cub2ZmaWNlLmNvbS9sb2dpbiM= HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; fpc=AjUAFJMlP0ZCgsS-Ll1segI; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEs2cTC55lMzi2CYsw42k_1wqQJXOtMYOzSODe6zEFFYdXCRxaO7gdZQRJIGL8ni-lzNjggwspnf8D3op1jox69xUXOtSl5_g0RklIr1K3i4amZorZVZk5WzXQwODhXgeSWz-JD3usNSG2-o1GAW7N6RK2l6X6aAIHzYd3LZEV1CsgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd
Source: global traffic	HTTP traffic detected: GET /?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA== HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; fpc=AjUAFJMlP0ZCgsS-Ll1segI; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEs2cTC55lMzi2CYsw42k_1wqQJXOtMYOzSODe6zEFFYdXCRxaO7gdZQRJIGL8ni-lzNjggwspnf8D3op1jox69xUXOtSl5_g0RklIr1K3i4amZorZVZk5WzXQwODhXgeSWz-JD3usNSG2-o1GAW7N6RK2l6X6aAIHzYd3LZEV1CsgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/BssoInterrupt_Core_9810YxmrLqOR1rQ4anyNMg2.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; fpc=AjUAFJMlP0ZCgsS-Ll1segI; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEs2cTC55lMzi2CYsw42k_1wqQJXOtMYOzSODe6zEFFYdXCRxaO7gdZQRJIGL8ni-lzNjggwspnf8D3op1jox69xUXOtSl5_g0RklIr1K3i4amZorZVZk5WzXQwODhXgeSWz-JD3usNSG2-o1GAW7N6RK2l6X6aAIHzYd3LZEV1CsgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA
Source: global traffic	HTTP traffic detected: GET /?piwg10otu=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&sso_reload=true HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; fpc=AjUAFJMlP0ZCgsS-Ll1segI; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEs2cTC55lMzi2CYsw42k_1wqQJXOtMYOzSODe6zEFFYdXCRxaO7gdZQRJIGL8ni-lzNjggwspnf8D3op1jox69xUXOtSl5_g0RklIr1K3i4amZorZVZk5WzXQwODhXgeSWz-JD3usNSG2-o1GAW7N6RK2l6X6aAIHzYd3LZEV1CsgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/converged.v2.login.min_81imvbluez-v5hbzpkxfcg2.css HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; es
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/ConvergedLogin_PCore_yYLwtowrqBEhphSPA6BiJQ2.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQE
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_0lh3lajrog_lmhvtw2rbbq2.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/oneDs_641b1cf809bdc17b42ab.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2j
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPja
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_ae573f441ee1cf781ec7.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA;
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5L
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrA
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_80e93b9a4cb13643afca.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; es
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrA
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHr
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHr
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /common/GetCredentialType?mkt=en-US HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0; MSFPC=GUID=6751c3b369904895b224b708101c96d5&HASH=6751&LV=202503&V=4&LU=1742229787531

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: h89s9dhj.ccbequipamentos.com.br
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: hapiinenstys.criadordeconexoes.com.br
Source: global traffic	DNS traffic detected: DNS query: aadcdn.msftauth.net

Source: unknown

HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/g/flow/ov1/2100462587:1742228952:oCWRJ_9F7aDLWE5rdVZZqokEYX6VeFO4JC8_BuYfHPM/921df19f1aa9330c/5f0QPWAUaeKYb3u9onIZ_IkF5wttGhEKmnf8t0Zrm6E-1742229749-1.1.1.1-yhPGGuzzN6GGa3jTR0pmjl5lW63MvnU_suAvvMWiHP2s4Z8Ctt7xP0BcTNoSFFCa HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveContent-Length: 3593sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-Type: text/plain;charset=UTF-8cf-chl: 5f0QPWAUaeKYb3u9onIZ_IkF5wttGhEKmnf8t0Zrm6E-1742229749-1.1.1.1-yhPGGuzzN6GGa3jTR0pmjl5lW63MvnU_suAvvMWiHP2s4Z8Ctt7xP0BcTNoSFFCacf-chl-ra: 0sec-ch-ua-mobile: ?0Accept: */*Origin: https://challenges.cloudflare.comSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 404 Not FoundCache-Control: privateSet-Cookie: x-ms-gateway-slice=estsfd; path=/; secure; samesite=none; httponlyStrict-Transport-Security: max-age=31536000; includeSubDomainsP3P: CP="DSP CUR OTPi IND OTRi ONL FIN"x-ms-request-id: e6aaaeb0-b819-41db-abc5-537f412f4d00x-ms-ests-server: 2.1.20262.4 - WUS3 ProdSlicesnel: {"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}x-ms-srs: 1.PReferrer-Policy: strict-origin-when-cross-originContent-Security-Policy-Report-Only: object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-c0nvQclRZhutGNbYaV4k-Q' 'unsafe-inline' 'unsafe-eval' https://*.msauth.net https://*.msftauth.net https://*.msftauthimages.net https://*.msauthimages.net https://*.msidentity.com https://*.microsoftonline-p.com https://*.microsoftazuread-sso.com https://*.azureedge.net https://*.outlook.com https://*.office.com https://*.office365.com https://*.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-AllDate: Mon, 17 Mar 2025 16:42:47 GMTConnection: closeContent-Length: 0Content-Security-Policy: default-src * data: blob: filesystem: about: ws: wss: 'unsafe-inline' 'unsafe-eval'; form-action * data: blob: 'unsafe-inline' 'unsafe-eval'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: filesystem: ; frame-ancestors 'self' * http://* https://* file://* about: javascript: data: blob: filesystem: ; object-src * data: blob: filesystem: 'unsafe-inline' 'unsafe-eval'; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline';

Source: chromecache_76.2.dr	String found in binary or memory: http://knockoutjs.com/
Source: chromecache_76.2.dr	String found in binary or memory: http://www.json.org/json2.js
Source: chromecache_76.2.dr	String found in binary or memory: http://www.opensource.org/licenses/mit-license.php)
Source: chromecache_76.2.dr	String found in binary or memory: https://js.monitor.azure.com/scripts/c/ms.analytics-web-2.min.js
Source: chromecache_65.2.dr	String found in binary or memory: https://login.microsoftonline.com
Source: chromecache_65.2.dr	String found in binary or memory: https://login.windows-ppe.net

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 142.250.185.132:443 -> 192.168.2.4:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49735 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49754 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49790 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49791 version: TLS 1.2

Creates files inside the system directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir1428_1999611524

Jump to behavior

Deletes files inside the Windows folder

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir1428_1999611524

Jump to behavior

Source: classification engine

Classification label: mal68.phis.win@25/37@16/4

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=3340,i,1354710186197194451,1516178957246450856,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=3440 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=3340,i,1354710186197194451,1516178957246450856,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=3440 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
23.95.206.231	hapiinenstys.criadordeconexoes.com.br	United States	36352	AS-COLOCROSSINGUS	true
104.18.94.41	challenges.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
142.250.185.132	www.google.com	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.4

Contacted Domains

Name	IP	Active
hapiinenstys.criadordeconexoes.com.br	23.95.206.231	true
e329293.dscd.akamaiedge.net	92.123.12.139	true
challenges.cloudflare.com	104.18.94.41	true
www.google.com	142.250.185.132	true
h89s9dhj.ccbequipamentos.com.br	23.95.206.231	true
s-part-0032.t-0009.t-msedge.net	13.107.246.60	true
aadcdn.msftauth.net	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd	false		unknown
https://hapiinenstys.criadordeconexoes.com.br/favicon.ico	false	Avira URL Cloud: phishing	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/d/921df19f1aa9330c/1742229751867/S9e8vOBS_eqZ502	false		high
https://hapiinenstys.criadordeconexoes.com.br/?dataXX0=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL2hhcGlpbmVuc3R5cy5jcmlhZG9yZGVjb25leG9lcy5jb20uYnIvIiwiZG9tYWluIjoiaGFwaWluZW5zdHlzLmNyaWFkb3JkZWNvbmV4b2VzLmNvbS5iciIsImtleSI6InFWUDg3RWFGR0NRbiIsInFyYyI6bnVsbCwiaWF0IjoxNzQyMjI5NzYyLCJleHAiOjE3NDIyMjk4ODJ9.bpFU2t6kMODAzyr1sHzSD1xCGWuz2a7omLxO3ziToVg	false	Avira URL Cloud: phishing	unknown
https://hapiinenstys.criadordeconexoes.com.br/common/GetCredentialType?mkt=en-US	false	Avira URL Cloud: phishing	unknown
https://challenges.cloudflare.com/turnstile/v0/g/f3b948d8acb8/api.js	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=921df19f1aa9330c&lang=auto	false		high
https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=cebc15b3c86fa69be7285330a66657219c1287ff53c1f7059daa44d10ef1952d669e891ae8484a544c8d16f0be8cc4af98aec84015acb9fd06d2a3ccc941854c	false		unknown
https://hapiinenstys.criadordeconexoes.com.br/	false	Avira URL Cloud: phishing	unknown
https://challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback	false		high
https://h89s9dhj.ccbequipamentos.com.br/favicon.ico	false	Avira URL Cloud: safe	unknown
https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly93d3cub2ZmaWNlLmNvbS9sb2dpbiM=	false	Avira URL Cloud: phishing	unknown
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/	false		high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/921df19f1aa9330c/1742229751868/0df0701f524323cd1dd6ed6b0a6c711cea6cb7d910bb71d6d33d24befe49df70/2Si4XeZsCj928_7	false		high

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 61	gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1592	4761405717E938D7E7400BB15715DB1E	76FED7C229D353A27DB3257F5927C1EAF0AB8DE9	F7ED91A1DAB5BB2802A7A3B3890DF4777588CCBE04903260FBA83E6E64C90DDF
Chrome Cache Entry: 62	PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced	9246CCA8FC3C00F50035F28E9F6B7F7D	3AA538440F70873B574F40CD793060F53EC17A5D	C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84
Chrome Cache Entry: 63	GIF image data, version 89a, 352 x 3	B540A8E518037192E32C4FE58BF2DBAB	3047C1DB97B86F6981E0AD2F96AF40CDF43511AF	8737D721808655F37B333F08A90185699E7E8B9BDAAA15CDB63C8448B426F95D
Chrome Cache Entry: 64	gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1864	0E176276362B94279A4492511BFCBD98	389FE6B51F62254BB98939896B8C89EBEFFE2A02	9A2C174AE45CAC057822844211156A5ED293E65C5F69E1D211A7206472C5C80C
Chrome Cache Entry: 65	HTML document, ASCII text, with very long lines (3445), with CRLF line terminators	ACDEC8DAD3164FBA20E86D50F1B979F1	0C5FD1CCA5BECDB0080D20E6A90CCD91BC0D5894	1D2CDE2E778A731CBD158758F735E1BCC2508A8252720D261D94068AFF45AACC
Chrome Cache Entry: 66	ASCII text, with very long lines (48238)	184E29DE57C67BC329C650F294847C16	961208535893142386BA3EFE1444B4F8A90282C3	DD03BA1DD6D73643A8ED55F4CEBC059D673046975D106D26D245326178C2EB9D
Chrome Cache Entry: 67	PNG image data, 9 x 40, 8-bit/color RGB, non-interlaced	E27CBA59C9BFFD33F6CD6ACB21D4D5C0	A15E5BC2CEA9929480BD645687ACA09732B16966	12A0C47CCD7CA1385035882D68EA88DFB55A0E71E053D92FEC9182408453D72D
Chrome Cache Entry: 68	MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors	12E3DAC858061D088023B2BD48E2FA96	E08CE1A144ECEAE0C3C2EA7A9D6FBC5658F24CE5	90CDAF487716184E4034000935C605D1633926D348116D198F355A98B8C6CD21
Chrome Cache Entry: 69	gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1864	0E176276362B94279A4492511BFCBD98	389FE6B51F62254BB98939896B8C89EBEFFE2A02	9A2C174AE45CAC057822844211156A5ED293E65C5F69E1D211A7206472C5C80C
Chrome Cache Entry: 70	ASCII text, with no line terminators	9F9FA94F28FE0DE82BC8FD039A7BDB24	6FE91F82974BD5B101782941064BCB2AFDEB17D8	9A37FDC0DBA8B23EB7D3AA9473D59A45B3547CF060D68B4D52253EE0DA1AF92E
Chrome Cache Entry: 71	GIF image data, version 89a, 352 x 3	166DE53471265253AB3A456DEFE6DA23	17C6DF4D7CCF1FA2C9EFD716FBAE0FC2C71C8D6D	A46201581A7C7C667FD42787CD1E9ADF2F6BF809EFB7596E61A03E8DBA9ADA13
Chrome Cache Entry: 72	ASCII text, with no line terminators	6AAB5444A217195068E4B25509BC0C50	7B22EAF7EAA9B7E1F664A0632D3894D406FE7933	FC5525D427BFA27792D3A87411BE241C047D07F07C18E2FC36BF00B1C2E33D07
Chrome Cache Entry: 73	gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 1592	4761405717E938D7E7400BB15715DB1E	76FED7C229D353A27DB3257F5927C1EAF0AB8DE9	F7ED91A1DAB5BB2802A7A3B3890DF4777588CCBE04903260FBA83E6E64C90DDF
Chrome Cache Entry: 74	MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors	12E3DAC858061D088023B2BD48E2FA96	E08CE1A144ECEAE0C3C2EA7A9D6FBC5658F24CE5	90CDAF487716184E4034000935C605D1633926D348116D198F355A98B8C6CD21
Chrome Cache Entry: 75	JSON data	9E576E34B18E986347909C29AE6A82C6	532C767978DC2B55854B3CA2D2DF5B4DB221C934	88BDF5AF090328963973990DE427779F9C4DF3B8E1F5BADC3D972BAC3087006D
Chrome Cache Entry: 76	ASCII text	3E89AE909C6A8D8C56396830471F3373	2632F95A5BE7E4C589402BF76E800A8151CD036B	6665CA6A09F770C6679556EB86CF4234C8BDB0271049620E03199B34B4A16099
Chrome Cache Entry: 77	PNG image data, 9 x 40, 8-bit/color RGB, non-interlaced	E27CBA59C9BFFD33F6CD6ACB21D4D5C0	A15E5BC2CEA9929480BD645687ACA09732B16966	12A0C47CCD7CA1385035882D68EA88DFB55A0E71E053D92FEC9182408453D72D
Chrome Cache Entry: 78	GIF image data, version 89a, 352 x 3	166DE53471265253AB3A456DEFE6DA23	17C6DF4D7CCF1FA2C9EFD716FBAE0FC2C71C8D6D	A46201581A7C7C667FD42787CD1E9ADF2F6BF809EFB7596E61A03E8DBA9ADA13
Chrome Cache Entry: 79	gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 3651	9F368BC4580FED907775F31C6B26D6CF	E393A40B3E337F43057EEE3DE189F197AB056451	7ECBBA946C099539C3D9C03F4B6804958900E5B90D48336EEA7E5A2ED050FA36
Chrome Cache Entry: 80	GIF image data, version 89a, 352 x 3	B540A8E518037192E32C4FE58BF2DBAB	3047C1DB97B86F6981E0AD2F96AF40CDF43511AF	8737D721808655F37B333F08A90185699E7E8B9BDAAA15CDB63C8448B426F95D
Chrome Cache Entry: 81	PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced	9246CCA8FC3C00F50035F28E9F6B7F7D	3AA538440F70873B574F40CD793060F53EC17A5D	C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84
Chrome Cache Entry: 82	gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 113424	3BA4D76A17ADD0A6C34EE696F28C8541	5E8A4B8334539A7EAB798A7799F6E232016CB263	17D6FF63DD857A72F37292B5906B40DC087EA27D7B1DEFCFA6DD1BA82AEA0B59
Chrome Cache Entry: 83	gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT), original size modulo 2^32 3651	9F368BC4580FED907775F31C6B26D6CF	E393A40B3E337F43057EEE3DE189F197AB056451	7ECBBA946C099539C3D9C03F4B6804958900E5B90D48336EEA7E5A2ED050FA36

AV Detection

Antivirus detection for URL or domain

Source: https://hapiinenstys.criadordeconexoes.com.br/	Avira URL Cloud: Label: phishing
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly93d3cub2ZmaWNlLmNvbS9sb2dpbiM=	Avira URL Cloud: Label: phishing
Source: https://hapiinenstys.criadordeconexoes.com.br/?dataXX0=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL2hhcGlpbmVuc3R5cy5jcmlhZG9yZGVjb25leG9lcy5jb20uYnIvIiwiZG9tYWluIjoiaGFwaWluZW5zdHlzLmNyaWFkb3JkZWNvbmV4b2VzLmNvbS5iciIsImtleSI6InFWUDg3RWFGR0NRbiIsInFyYyI6bnVsbCwiaWF0IjoxNzQyMjI5NzYyLCJleHAiOjE3NDIyMjk4ODJ9.bpFU2t6kMODAzyr1sHzSD1xCGWuz2a7omLxO3ziToVg	Avira URL Cloud: Label: phishing
Source: https://hapiinenstys.criadordeconexoes.com.br/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://hapiinenstys.criadordeconexoes.com.br/common/GetCredentialType?mkt=en-US	Avira URL Cloud: Label: phishing

Phishing

AI detected phishing page

Yara detected HtmlPhish54

Source: Yara match	File source: 2.11..script.csv, type: HTML
Source: Yara match	File source: 1.2..script.csv, type: HTML
Source: Yara match	File source: 1.4.pages.csv, type: HTML
Source: Yara match	File source: 2.5.pages.csv, type: HTML
Source: Yara match	File source: 2.7.pages.csv, type: HTML
Source: Yara match	File source: 2.9.pages.csv, type: HTML
Source: Yara match	File source: 2.8.pages.csv, type: HTML

AI detected suspicious Javascript

Source: 2.60.d.script.csv

HTML body contains low number of good links

HTTP Parser: Number of links: 0

HTML page contains hidden javascript code

HTTP Parser: Base64 decoded: 4f0b0a4a-29ca-42e3-8f03-1a3dd7dfd538f547b57a-3730-406a-a0d8-b5efa22e6ac1

HTML page contains obfuscated script src

Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2Zma	HTTP Parser: Script src: data:text/javascript;base64,ZnVuY3Rpb24gY3VzdG9tRnVuY3Rpb24oKSB7CiAgICBpZiAoIWRvY3VtZW50LnF1ZXJ5U2VsZWN0b3IoIi5jdXN0b20tY2xhc3MiKSB8fCAhZG9jdW1lbnQucXVlcnlTZWxlY3RvcigiLnJvdGF0ZS1jbGFzcyIpKSB7CiAgICAgICAgdmFyIG5ld0RpdiA9IGRvY3VtZW50LmNyZWF0ZUVsZW1lbn

HTML title does not match URL

HTTP Parser: Title: MOD-xq7a2ts6 does not match URL

HTTP Parser: Iframe src: https://login.live.com/Me.htm?v=3

HTTP Parser: <input type="password" .../> found

Source: https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=cebc15b3c86fa69be7285330a66657219c1287ff53c1f7059daa44d10ef1952d669e891ae8484a544c8d16f0be8cc4af98aec84015acb9fd06d2a3ccc941854c	HTTP Parser: No favicon
Source: https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=cebc15b3c86fa69be7285330a66657219c1287ff53c1f7059daa44d10ef1952d669e891ae8484a544c8d16f0be8cc4af98aec84015acb9fd06d2a3ccc941854c	HTTP Parser: No favicon
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp...	HTTP Parser: No favicon

Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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	HTTP Parser: No <meta name="author".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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	HTTP Parser: No <meta name="author".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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	HTTP Parser: No <meta name="author".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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	HTTP Parser: No <meta name="author".. found

Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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...	HTTP Parser: No <meta name="copyright".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp...	HTTP Parser: No <meta name="copyright".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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...	HTTP Parser: No <meta name="copyright".. found
Source: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp...	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 142.250.185.132:443 -> 192.168.2.4:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49735 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49754 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49790 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49791 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 131.253.33.254
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.17.190.73
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.163
Source: unknown	TCP traffic detected without corresponding DNS query: 142.250.186.163
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.122.41
Source: unknown	TCP traffic detected without corresponding DNS query: 217.20.57.19
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd HTTP/1.1Host: h89s9dhj.ccbequipamentos.com.brConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?noiajvga=cebc15b3c86fa69be7285330a66657219c1287ff53c1f7059daa44d10ef1952d669e891ae8484a544c8d16f0be8cc4af98aec84015acb9fd06d2a3ccc941854c HTTP/1.1Host: h89s9dhj.ccbequipamentos.com.brConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/f3b948d8acb8/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=921df19f1aa9330c&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: h89s9dhj.ccbequipamentos.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=cebc15b3c86fa69be7285330a66657219c1287ff53c1f7059daa44d10ef1952d669e891ae8484a544c8d16f0be8cc4af98aec84015acb9fd06d2a3ccc941854cAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2100462587:1742228952:oCWRJ_9F7aDLWE5rdVZZqokEYX6VeFO4JC8_BuYfHPM/921df19f1aa9330c/5f0QPWAUaeKYb3u9onIZ_IkF5wttGhEKmnf8t0Zrm6E-1742229749-1.1.1.1-yhPGGuzzN6GGa3jTR0pmjl5lW63MvnU_suAvvMWiHP2s4Z8Ctt7xP0BcTNoSFFCa HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/921df19f1aa9330c/1742229751867/S9e8vOBS_eqZ502 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/pat/921df19f1aa9330c/1742229751868/0df0701f524323cd1dd6ed6b0a6c711cea6cb7d910bb71d6d33d24befe49df70/2Si4XeZsCj928_7 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv/va3bb/0x4AAAAAABAbx3VGqcPC-OGo/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/d/921df19f1aa9330c/1742229751867/S9e8vOBS_eqZ502 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2100462587:1742228952:oCWRJ_9F7aDLWE5rdVZZqokEYX6VeFO4JC8_BuYfHPM/921df19f1aa9330c/5f0QPWAUaeKYb3u9onIZ_IkF5wttGhEKmnf8t0Zrm6E-1742229749-1.1.1.1-yhPGGuzzN6GGa3jTR0pmjl5lW63MvnU_suAvvMWiHP2s4Z8Ctt7xP0BcTNoSFFCa HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/2100462587:1742228952:oCWRJ_9F7aDLWE5rdVZZqokEYX6VeFO4JC8_BuYfHPM/921df19f1aa9330c/5f0QPWAUaeKYb3u9onIZ_IkF5wttGhEKmnf8t0Zrm6E-1742229749-1.1.1.1-yhPGGuzzN6GGa3jTR0pmjl5lW63MvnU_suAvvMWiHP2s4Z8Ctt7xP0BcTNoSFFCa HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?dataXX0=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1cmwiOiJodHRwczovL2hhcGlpbmVuc3R5cy5jcmlhZG9yZGVjb25leG9lcy5jb20uYnIvIiwiZG9tYWluIjoiaGFwaWluZW5zdHlzLmNyaWFkb3JkZWNvbmV4b2VzLmNvbS5iciIsImtleSI6InFWUDg3RWFGR0NRbiIsInFyYyI6bnVsbCwiaWF0IjoxNzQyMjI5NzYyLCJleHAiOjE3NDIyMjk4ODJ9.bpFU2t6kMODAzyr1sHzSD1xCGWuz2a7omLxO3ziToVg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk
Source: global traffic	HTTP traffic detected: GET /?piwg10otu=aHR0cHM6Ly93d3cub2ZmaWNlLmNvbS9sb2dpbiM= HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; fpc=AjUAFJMlP0ZCgsS-Ll1segI; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEs2cTC55lMzi2CYsw42k_1wqQJXOtMYOzSODe6zEFFYdXCRxaO7gdZQRJIGL8ni-lzNjggwspnf8D3op1jox69xUXOtSl5_g0RklIr1K3i4amZorZVZk5WzXQwODhXgeSWz-JD3usNSG2-o1GAW7N6RK2l6X6aAIHzYd3LZEV1CsgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd
Source: global traffic	HTTP traffic detected: GET /?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA== HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveCache-Control: max-age=0Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://h89s9dhj.ccbequipamentos.com.br/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; fpc=AjUAFJMlP0ZCgsS-Ll1segI; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEs2cTC55lMzi2CYsw42k_1wqQJXOtMYOzSODe6zEFFYdXCRxaO7gdZQRJIGL8ni-lzNjggwspnf8D3op1jox69xUXOtSl5_g0RklIr1K3i4amZorZVZk5WzXQwODhXgeSWz-JD3usNSG2-o1GAW7N6RK2l6X6aAIHzYd3LZEV1CsgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/BssoInterrupt_Core_9810YxmrLqOR1rQ4anyNMg2.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; fpc=AjUAFJMlP0ZCgsS-Ll1segI; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEs2cTC55lMzi2CYsw42k_1wqQJXOtMYOzSODe6zEFFYdXCRxaO7gdZQRJIGL8ni-lzNjggwspnf8D3op1jox69xUXOtSl5_g0RklIr1K3i4amZorZVZk5WzXQwODhXgeSWz-JD3usNSG2-o1GAW7N6RK2l6X6aAIHzYd3LZEV1CsgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA
Source: global traffic	HTTP traffic detected: GET /?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==&sso_reload=true HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; fpc=AjUAFJMlP0ZCgsS-Ll1segI; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEs2cTC55lMzi2CYsw42k_1wqQJXOtMYOzSODe6zEFFYdXCRxaO7gdZQRJIGL8ni-lzNjggwspnf8D3op1jox69xUXOtSl5_g0RklIr1K3i4amZorZVZk5WzXQwODhXgeSWz-JD3usNSG2-o1GAW7N6RK2l6X6aAIHzYd3LZEV1CsgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/converged.v2.login.min_81imvbluez-v5hbzpkxfcg2.css HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; es
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/ConvergedLogin_PCore_yYLwtowrqBEhphSPA6BiJQ2.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQE
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_0lh3lajrog_lmhvtw2rbbq2.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/oneDs_641b1cf809bdc17b42ab.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2j
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPja
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_ae573f441ee1cf781ec7.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=aHR0cHM6Ly9sb2dpbi5taWNyb3NvZnRvbmxpbmUuY29tL2NvbW1vbi9vYXV0aDIvdjIuMC9hdXRob3JpemU/Y2xpZW50X2lkPTQ3NjU0NDViLTMyYzYtNDliMC04M2U2LTFkOTM3NjUyNzZjYSZyZWRpcmVjdF91cmk9aHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRmxhbmRpbmd2MiZyZXNwb25zZV90eXBlPWNvZGUlMjBpZF90b2tlbiZzY29wZT1vcGVuaWQlMjBwcm9maWxlJTIwaHR0cHMlM0ElMkYlMkZ3d3cub2ZmaWNlLmNvbSUyRnYyJTJGT2ZmaWNlSG9tZS5BbGwmcmVzcG9uc2VfbW9kZT1mb3JtX3Bvc3Qmbm9uY2U9NjM4Nzc4MjY1NjUxMDA2ODgwLk5HWXdZakJoTkdFdE1qbGpZUzAwTW1VekxUaG1NRE10TVdFelpHUTNaR1prTlRNNFpqVTBOMkkxTjJFdE16Y3pNQzAwTURaaExXRXdaRGd0WWpWbFptRXlNbVUyWVdNeCZ1aV9sb2NhbGVzPWVuLVVTJm1rdD1lbi1VUyZjbGllbnQtcmVxdWVzdC1pZD0zOTE5ZDJiOC1lZjIwLTQ0MDctOTI4Ni1jYjNlOWMxYWJhNzEmc3RhdGU9WHY5MFNmNENmWlFJcFE3WFFDQmFMUHYwMTRWcVd4dEk2d3dpbDBfZXdPRVNEc1BfQS1mOGEtN29CcTlQejdKZDhQcF9qcHJLQm1lR3ZodDdvU3RwR1ZUR1NlYkpacUdvNE1oN3h6eWdOZlh5V3ljQzFxSktEZ1ZLcV8xX3U1T0w4VFd5OFJnbWpBN3lzLS1RZDFhTjktSUFHc2F4aDVnWHpEYWZsZmp1NzBLZkc4eWMtamRHM2t2MzZWclY2THVXMGEwTkpaOTN4aHdnUXhkVG51S3NraDBaZnhYMGp2M29Ub2JqdGllQnRqd0pQNHdBTmZwbjlCNWdKVXN1TkFibFNmSGtJTlRtcVhPQ2dZRGtxUU9ZX2cmeC1jbGllbnQtU0tVPUlEX05FVDhfMCZ4LWNsaWVudC12ZXI9OC4zLjAuMA==&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA;
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5L
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrA
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_80e93b9a4cb13643afca.js HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; es
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrA
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHr
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://hapiinenstys.criadordeconexoes.com.br/?piwg10otu=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&sso_reload=trueAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHr
Source: global traffic	HTTP traffic detected: GET /aadcdn.msauth.net/~/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0
Source: global traffic	HTTP traffic detected: GET /common/GetCredentialType?mkt=en-US HTTP/1.1Host: hapiinenstys.criadordeconexoes.com.brConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: qPdM=qVP87EaFGCQn; qPdM.sig=570GYc2IN2-96anUzPhqwcPBcBk; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; OH.FLID=e4bebde7-5ba4-49d8-b476-931756888516; .AspNetCore.OpenIdConnect.Nonce.49USBfOQied3yWeklneNnBRgMp5V6TCkW50B00X8sZN6-08gUP7C4VT8ltpLeyjKw6t0mWmXCmBMRZb3H0ziB4fa6mZ1mkbAWHlQ5aw3TxS6XAWJfHgahBcWIu2vzNCIOPDrnm96RaYKqI-252pJ-UZjV7QUHfdMfKdYx1uHnSjp6-HfVfS3Kmq9tXZM2YhpqlGz5i1CuYbEO2fzxB7icNR4fUgESr_VGJC8OYz2CXPlROML_6eU_GrG417A1wJo=N; .AspNetCore.Correlation.ZMc9lLc8XG_FHA7AsKemKsGhCyJShH-wCn7fNfhS9zc=N; esctx-jkXTnxbCM=AQABCQEAAABVrSpeuWamRam2jAF1XRQEDNAk-B-2E58z_H0-QJLvGLCw396iyFQ0SQlwZgT_rkZMOjIX0BlREk7SdS_3Gjck40Z4fztkvwmcn1sQXSriR2IzpxLrG5sEdaAuFg4w1VF7xM9sRR01IbnLTCxFsZcflc2zCEZkG2HUgNsPDnuWAiAA; AADSSO=NA\|NoExtension; SSOCOOKIEPULLED=1; buid=1.AXUAMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAB1AA.AQABGgEAAABVrSpeuWamRam2jAF1XRQEVTA4RXRMIoxXIbr9n-iyLGrqtPHzQRAW7rkde36tgl54eAYfT65Cw1l2I1F_yOUHXQ4Bf1-8uxohLxNhP3vhk1hOwXrHhhSan6gxhQJ0vFwgAA; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEF9qztFF8TzKJ8yw-qNgY0YijTe-f6Gn3S_zDUdoMo8ADtwS0kOnPTxatotFeDv9eVfixtbrERDFOAClRQW0h4USvUoYGxKlKqwMOvcH4jVirT7FSHQ0PPhXWhWAwlg5LGVZHrAvF9VazivTmPjaw1zPF1i3dl_I0Em_rxID5G6YgAA; esctx-rd9uwk5JNAs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEwzs_ase4bdeAJM7aGxvEK2c5L1QtB0NKAZv4B1UaWjL-AK_Cu__6qtcBJFGQH8nRp--TMNQSmnrYyl6ag0NqYCBPdvaZXGiF7AEaKfUfsdQJzkae4DNOLp5iu5z_Bkw-6jheXkX-xKMjBcl_UvWeliAA; fpc=AjUAFJMlP0ZCgsS-Ll1segK8Ae7AAQAAAAdIat8OAAAA; brcap=0; MSFPC=GUID=6751c3b369904895b224b708101c96d5&HASH=6751&LV=202503&V=4&LU=1742229787531

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: h89s9dhj.ccbequipamentos.com.br
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: hapiinenstys.criadordeconexoes.com.br
Source: global traffic	DNS traffic detected: DNS query: aadcdn.msftauth.net

Source: unknown

Source: global traffic

Source: chromecache_76.2.dr	String found in binary or memory: http://knockoutjs.com/
Source: chromecache_76.2.dr	String found in binary or memory: http://www.json.org/json2.js
Source: chromecache_76.2.dr	String found in binary or memory: http://www.opensource.org/licenses/mit-license.php)
Source: chromecache_76.2.dr	String found in binary or memory: https://js.monitor.azure.com/scripts/c/ms.analytics-web-2.min.js
Source: chromecache_65.2.dr	String found in binary or memory: https://login.microsoftonline.com
Source: chromecache_65.2.dr	String found in binary or memory: https://login.windows-ppe.net

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49729 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745

Source: unknown	HTTPS traffic detected: 142.250.185.132:443 -> 192.168.2.4:49725 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49729 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49728 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49735 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.4:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49754 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49757 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49790 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.95.206.231:443 -> 192.168.2.4:49791 version: TLS 1.2

Creates files inside the system directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir1428_1999611524

Jump to behavior

Deletes files inside the Windows folder

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir1428_1999611524

Jump to behavior

Source: classification engine

Classification label: mal68.phis.win@25/37@16/4

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=3340,i,1354710186197194451,1516178957246450856,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=3440 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=3340,i,1354710186197194451,1516178957246450856,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=3440 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1640767
Product:	CloudBasic
Start time:	17:41:24
Start date:	17.03.2025
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://h89s9dhj.ccbequipamentos.com.br/?noiajvga=2bdd817baf4e46e28f740a82bff8e850881b2c9159d1f9f1d332e339e76eea813a3f5893897cb7539a84e2eac2026594b5d62df0bbf5820b252c5afd2b02c9cd