| Source: https://degrgd.dailyenglish.it.com/ODIWCBlb | Joe Sandbox AI: Score: 9 Reasons: The brand 'Microsoft' is well-known and typically associated with the domain 'microsoft.com'., The URL 'degrgd.dailyenglish.it.com' does not match the legitimate domain 'microsoft.com'., The URL contains multiple subdomains and an unusual structure, which is a common tactic in phishing attempts., The presence of unrelated words like 'degrgd' and 'dailyenglish' in the URL is suspicious and not associated with Microsoft., The domain extension '.it.com' is unusual for Microsoft, which typically uses '.com'. DOM: 0.6.pages.csv |
| Source: https://degrgd.dailyenglish.it.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638803223582996234.YjkyNGM1MTQtNGJhMC00OTRjLWE5ZWEtZWI5ZGNiMDQwN2YwODllM2ViN2ItOWMyYy00YjM1LTgyNzktMjU2MTgxNTllMzQ4&ui_locales=en-US&mkt=en-US&client-request-id=e9e974f3-0bcc-4629-864e-6b779940b50e&state=j66KbZnke_PRzmWZ97DFy1cY1qdZIXC8UP5l0eMVQ2CtirO4yt4iKCM57Y0rnLT1CnUvERH4_ps9t4VN7Czw7ww4gr2n_QGwIJd0OBJaMZpjBH3K30ghhDhXLu_v_kBZd7Wzsmg2N8F7VDZdM4hm2ckzSVoGLpsIlSyoxe2t20iZerR2Dg7STg7xOEiiDv-3ZyYpXqinSH7BGW7iHlqPv2W0_sdy84LzLfFD7dbUefSAwJxIBKU6GStZSwdAnCykiO4ZDqBEM-_qxyyM2CjB_w&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0&sso_reload=true | Joe Sandbox AI: Score: 9 Reasons: The brand 'Microsoft' is a well-known global technology company., The legitimate domain for Microsoft is 'microsoft.com'., The provided URL 'degrgd.dailyenglish.it.com' does not match the legitimate domain for Microsoft., The URL contains multiple subdomains and an unusual structure, which is a common tactic in phishing attempts., The domain 'it.com' is not associated with Microsoft and could be used to mislead users., The presence of input fields for 'Email, phone, or Skype' is typical for phishing sites targeting Microsoft accounts. DOM: 2.9.pages.csv |
| Source: https://degrgd.dailyenglish.it.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638803223582996234.YjkyNGM1MTQtNGJhMC00OTRjLWE5ZWEtZWI5ZGNiMDQwN2YwODllM2ViN2ItOWMyYy00YjM1LTgyNzktMjU2MTgxNTllMzQ4&ui_locales=en-US&mkt=en-US&client-request-id=e9e974f3-0bcc-4629-864e-6b779940b50e&state=j66KbZnke_PRzmWZ97DFy1cY1qdZIXC8UP5l0eMVQ2CtirO4yt4iKCM57Y0rnLT1CnUvERH4_ps9t4VN7Czw7ww4gr2n_QGwIJd0OBJaMZpjBH3K30ghhDhXLu_v_kBZd7Wzsmg2N8F7VDZdM4hm2ckzSVoGLpsIlSyoxe2t20iZerR2Dg7STg7xOEiiDv-3ZyYpXqinSH7BGW7iHlqPv2W0_sdy84LzLfFD7dbUefSAwJxIBKU6GStZSwdAnCykiO4ZDqBEM-_qxyyM2CjB_w&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0&sso_reload=true | Joe Sandbox AI: Score: 9 Reasons: The brand 'Microsoft' is a well-known global technology company., The legitimate domain for Microsoft is 'microsoft.com'., The provided URL 'degrgd.dailyenglish.it.com' does not match the legitimate domain for Microsoft., The URL contains multiple subdomains and an unusual structure, which is a common tactic in phishing attempts., The domain 'it.com' is not typically associated with Microsoft., The presence of unrelated terms like 'degrgd' and 'dailyenglish' in the URL is suspicious. DOM: 2.10.pages.csv |
| Source: unknown | HTTPS traffic detected: 74.125.138.105:443 -> 192.168.2.5:49701 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49702 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49703 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.5:49705 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 104.19.229.21:443 -> 192.168.2.5:49706 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 104.19.229.21:443 -> 192.168.2.5:49711 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.5:49713 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 104.19.230.21:443 -> 192.168.2.5:49716 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 104.18.94.41:443 -> 192.168.2.5:49717 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 104.19.229.21:443 -> 192.168.2.5:49720 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 23.47.218.166:443 -> 192.168.2.5:49721 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49734 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49736 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49737 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49738 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49739 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49740 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49743 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49744 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49742 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 96.7.218.8:443 -> 192.168.2.5:49746 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 96.7.218.8:443 -> 192.168.2.5:49747 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 96.7.218.8:443 -> 192.168.2.5:49748 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49750 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 96.7.218.8:443 -> 192.168.2.5:49751 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 96.7.218.8:443 -> 192.168.2.5:49754 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 96.7.218.8:443 -> 192.168.2.5:49760 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 96.7.218.8:443 -> 192.168.2.5:49762 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49761 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49773 version: TLS 1.2 |
| Source: unknown | HTTPS traffic detected: 107.189.3.246:443 -> 192.168.2.5:49774 version: TLS 1.2 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.14 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.14 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.14 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 204.79.197.203 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 20.189.173.14 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 2.23.227.208 |
| Source: unknown | TCP traffic detected without corresponding DNS query: 150.171.27.10 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: unknown | UDP traffic detected without corresponding DNS query: 1.1.1.1 |
| Source: global traffic | HTTP traffic detected: GET /ODIWCBlb HTTP/1.1Host: degrgd.dailyenglish.it.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /1/api.js HTTP/1.1Host: js.hcaptcha.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://degrgd.dailyenglish.it.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://degrgd.dailyenglish.it.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /turnstile/v0/b/580ba44007a6/api.js HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://degrgd.dailyenglish.it.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /captcha/v1/fe490febf8ce2186990346eb596f68fafef50dd5/static/hcaptcha.html HTTP/1.1Host: newassets.hcaptcha.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://degrgd.dailyenglish.it.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cbyov/0x4AAAAAABLi5LgA1WqX3aiD/auto/fbE/new/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://degrgd.dailyenglish.it.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=930bf6057dff1f9e&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cbyov/0x4AAAAAABLi5LgA1WqX3aiD/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cbyov/0x4AAAAAABLi5LgA1WqX3aiD/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: degrgd.dailyenglish.it.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://degrgd.dailyenglish.it.com/ODIWCBlbAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 25d3-c319=a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /c/7e4aa90329fe7d457c69369bb6cbcb914f524f40b8c0720fb36b517a1da9d6e8/hsw.js HTTP/1.1Host: newassets.hcaptcha.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://newassets.hcaptcha.com/captcha/v1/fe490febf8ce2186990346eb596f68fafef50dd5/static/hcaptcha.htmlAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /checksiteconfig?v=fe490febf8ce2186990346eb596f68fafef50dd5&host=degrgd.dailyenglish.it.com&sitekey=234adb2f-52ba-4697-82fa-abecbb14b173&sc=1&swa=1&spst=1 HTTP/1.1Host: api.hcaptcha.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/d/930bf6057dff1f9e/1744725542046/itia_1t7xfDEZJm HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cbyov/0x4AAAAAABLi5LgA1WqX3aiD/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/2030052031:1744723826:XLqiIAxL0toM85Hi3ud9ctyH35FLQftChzlZTUSpeTs/930bf6057dff1f9e/NK2fpWpBcom_ubEAmE6z0UANRnaqZ.KGkCPLdXGJsPk-1744725540-1.1.1.1-bD_5yin7K32e_xLJK8yk7rkU4SWYNlsgEwsK0hfQ2oJf5qw8lWsi6w9hma.X9d2o HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/d/930bf6057dff1f9e/1744725542046/itia_1t7xfDEZJm HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/pat/930bf6057dff1f9e/1744725542054/9775804cf22d827c57ff39a4f376ac1e2423f0820e4bb7fb6915a4572926fc27/rfVKYgobCRtHYj2 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/cbyov/0x4AAAAAABLi5LgA1WqX3aiD/auto/fbE/new/normal/auto/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/2030052031:1744723826:XLqiIAxL0toM85Hi3ud9ctyH35FLQftChzlZTUSpeTs/930bf6057dff1f9e/NK2fpWpBcom_ubEAmE6z0UANRnaqZ.KGkCPLdXGJsPk-1744725540-1.1.1.1-bD_5yin7K32e_xLJK8yk7rkU4SWYNlsgEwsK0hfQ2oJf5qw8lWsi6w9hma.X9d2o HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/2030052031:1744723826:XLqiIAxL0toM85Hi3ud9ctyH35FLQftChzlZTUSpeTs/930bf6057dff1f9e/NK2fpWpBcom_ubEAmE6z0UANRnaqZ.KGkCPLdXGJsPk-1744725540-1.1.1.1-bD_5yin7K32e_xLJK8yk7rkU4SWYNlsgEwsK0hfQ2oJf5qw8lWsi6w9hma.X9d2o HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9 |
| Source: global traffic | HTTP traffic detected: GET /ODIWCBlb?p=1w9eIEo HTTP/1.1Host: degrgd.dailyenglish.it.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://degrgd.dailyenglish.it.com/ODIWCBlbAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 25d3-c319=a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40; x-ms-gateway-slice=estsfd |
| Source: global traffic | HTTP traffic detected: GET / HTTP/1.1Host: degrgd.dailyenglish.it.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://degrgd.dailyenglish.it.com/ODIWCBlbAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 25d3-c319=a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40; x-ms-gateway-slice=estsfd |
| Source: global traffic | HTTP traffic detected: GET /login HTTP/1.1Host: nbjb.dailyenglish.it.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://degrgd.dailyenglish.it.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 25d3-c319=a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40 |
| Source: global traffic | HTTP traffic detected: GET /common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638803223582996234.YjkyNGM1MTQtNGJhMC00OTRjLWE5ZWEtZWI5ZGNiMDQwN2YwODllM2ViN2ItOWMyYy00YjM1LTgyNzktMjU2MTgxNTllMzQ4&ui_locales=en-US&mkt=en-US&client-request-id=e9e974f3-0bcc-4629-864e-6b779940b50e&state=j66KbZnke_PRzmWZ97DFy1cY1qdZIXC8UP5l0eMVQ2CtirO4yt4iKCM57Y0rnLT1CnUvERH4_ps9t4VN7Czw7ww4gr2n_QGwIJd0OBJaMZpjBH3K30ghhDhXLu_v_kBZd7Wzsmg2N8F7VDZdM4hm2ckzSVoGLpsIlSyoxe2t20iZerR2Dg7STg7xOEiiDv-3ZyYpXqinSH7BGW7iHlqPv2W0_sdy84LzLfFD7dbUefSAwJxIBKU6GStZSwdAnCykiO4ZDqBEM-_qxyyM2CjB_w&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0 HTTP/1.1Host: degrgd.dailyenglish.it.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://degrgd.dailyenglish.it.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 25d3-c319=a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40; x-ms-gateway-slice=estsfd; fpc=ApisH44du3hEp87EtcIcF4A; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEMQxq5A1Y2VgOEs89Am-0w4czwJUtquD_Qs6YZ2TlpIlUSSZybEzGH8Vpqy49vHzwSrPhODLUN5GyWm8wMMZIis1cDQk8JTLFTuaJi9TBUf7HCL0lS1ZqpVvXNEbX1daq37RVInGJs3txSjbp6P5wdqhfd926beMw8a-1h0wSB3cgAA; stsservicecookie=estsfd |
| Source: global traffic | HTTP traffic detected: GET /s/a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40/41f165aa64d8bd0e0ec95abcdccc03f6707b985a0cda03faa79243d1e03be974.js HTTP/1.1Host: degrgd.dailyenglish.it.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://degrgd.dailyenglish.it.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638803223582996234.YjkyNGM1MTQtNGJhMC00OTRjLWE5ZWEtZWI5ZGNiMDQwN2YwODllM2ViN2ItOWMyYy00YjM1LTgyNzktMjU2MTgxNTllMzQ4&ui_locales=en-US&mkt=en-US&client-request-id=e9e974f3-0bcc-4629-864e-6b779940b50e&state=j66KbZnke_PRzmWZ97DFy1cY1qdZIXC8UP5l0eMVQ2CtirO4yt4iKCM57Y0rnLT1CnUvERH4_ps9t4VN7Czw7ww4gr2n_QGwIJd0OBJaMZpjBH3K30ghhDhXLu_v_kBZd7Wzsmg2N8F7VDZdM4hm2ckzSVoGLpsIlSyoxe2t20iZerR2Dg7STg7xOEiiDv-3ZyYpXqinSH7BGW7iHlqPv2W0_sdy84LzLfFD7dbUefSAwJxIBKU6GStZSwdAnCykiO4ZDqBEM-_qxyyM2CjB_w&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 25d3-c319=a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40; x-ms-gateway-slice=estsfd; fpc=ApisH44du3hEp87EtcIcF4A; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEMQxq5A1Y2VgOEs89Am-0w4czwJUtquD_Qs6YZ2TlpIlUSSZybEzGH8Vpqy49vHzwSrPhODLUN5GyWm8wMMZIis1cDQk8JTLFTuaJi9TBUf7HCL0lS1ZqpVvXNEbX1daq37RVInGJs3txSjbp6P5wdqhfd926beMw8a-1h0wSB3cgAA; stsservicecookie=estsfd; esctx-gs7IsxifaRs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEfKWtjVSMkdr5mJ3cG2JX1Qz9gEO9hX_exHFnL8S_jzPdM7GHSzDtNn01YE55VW0Gv_K7qIIrV81sgyY4oR1hchLCxd4G7UMzDSODDjaarB7jcSjoCaFnL0BL5PouD2eWwUyRcUB84kFmpNPLkuNwoCAA |
| Source: global traffic | HTTP traffic detected: GET /s/a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40.js HTTP/1.1Host: degrgd.dailyenglish.it.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://degrgd.dailyenglish.it.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638803223582996234.YjkyNGM1MTQtNGJhMC00OTRjLWE5ZWEtZWI5ZGNiMDQwN2YwODllM2ViN2ItOWMyYy00YjM1LTgyNzktMjU2MTgxNTllMzQ4&ui_locales=en-US&mkt=en-US&client-request-id=e9e974f3-0bcc-4629-864e-6b779940b50e&state=j66KbZnke_PRzmWZ97DFy1cY1qdZIXC8UP5l0eMVQ2CtirO4yt4iKCM57Y0rnLT1CnUvERH4_ps9t4VN7Czw7ww4gr2n_QGwIJd0OBJaMZpjBH3K30ghhDhXLu_v_kBZd7Wzsmg2N8F7VDZdM4hm2ckzSVoGLpsIlSyoxe2t20iZerR2Dg7STg7xOEiiDv-3ZyYpXqinSH7BGW7iHlqPv2W0_sdy84LzLfFD7dbUefSAwJxIBKU6GStZSwdAnCykiO4ZDqBEM-_qxyyM2CjB_w&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 25d3-c319=a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40; x-ms-gateway-slice=estsfd; fpc=ApisH44du3hEp87EtcIcF4A; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEMQxq5A1Y2VgOEs89Am-0w4czwJUtquD_Qs6YZ2TlpIlUSSZybEzGH8Vpqy49vHzwSrPhODLUN5GyWm8wMMZIis1cDQk8JTLFTuaJi9TBUf7HCL0lS1ZqpVvXNEbX1daq37RVInGJs3txSjbp6P5wdqhfd926beMw8a-1h0wSB3cgAA; stsservicecookie=estsfd; esctx-gs7IsxifaRs=AQABCQEAAABVrSpeuWamRam2jAF1XRQEfKWtjVSMkdr5mJ3cG2JX1Qz9gEO9hX_exHFnL8S_jzPdM7GHSzDtNn01YE55VW0Gv_K7qIIrV81sgyY4oR1hchLCxd4G7UMzDSODDjaarB7jcSjoCaFnL0BL5PouD2eWwUyRcUB84kFmpNPLkuNwoCAA |
| Source: global traffic | HTTP traffic detected: GET /common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638803223582996234.YjkyNGM1MTQtNGJhMC00OTRjLWE5ZWEtZWI5ZGNiMDQwN2YwODllM2ViN2ItOWMyYy00YjM1LTgyNzktMjU2MTgxNTllMzQ4&ui_locales=en-US&mkt=en-US&client-request-id=e9e974f3-0bcc-4629-864e-6b779940b50e&state=j66KbZnke_PRzmWZ97DFy1cY1qdZIXC8UP5l0eMVQ2CtirO4yt4iKCM57Y0rnLT1CnUvERH4_ps9t4VN7Czw7ww4gr2n_QGwIJd0OBJaMZpjBH3K30ghhDhXLu_v_kBZd7Wzsmg2N8F7VDZdM4hm2ckzSVoGLpsIlSyoxe2t20iZerR2Dg7STg7xOEiiDv-3ZyYpXqinSH7BGW7iHlqPv2W0_sdy84LzLfFD7dbUefSAwJxIBKU6GStZSwdAnCykiO4ZDqBEM-_qxyyM2CjB_w&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0&sso_reload=true HTTP/1.1Host: degrgd.dailyenglish.it.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://degrgd.dailyenglish.it.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638803223582996234.YjkyNGM1MTQtNGJhMC00OTRjLWE5ZWEtZWI5ZGNiMDQwN2YwODllM2ViN2ItOWMyYy00YjM1LTgyNzktMjU2MTgxNTllMzQ4&ui_locales=en-US&mkt=en-US&client-request-id=e9e974f3-0bcc-4629-864e-6b779940b50e&state=j66KbZnke_PRzmWZ97DFy1cY1qdZIXC8UP5l0eMVQ2CtirO4yt4iKCM57Y0rnLT1CnUvERH4_ps9t4VN7Czw7ww4gr2n_QGwIJd0OBJaMZpjBH3K30ghhDhXLu_v_kBZd7Wzsmg2N8F7VDZdM4hm2ckzSVoGLpsIlSyoxe2t20iZerR2Dg7STg7xOEiiDv-3ZyYpXqinSH7BGW7iHlqPv2W0_sdy84LzLfFD7dbUefSAwJxIBKU6GStZSwdAnCykiO4ZDqBEM-_qxyyM2CjB_w&x-client-SKU=ID_NET8_0&x-client-ver=8.5.0.0Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: 25d3-c319=a48fa777c2f23e871b6bf7203b6852d5e3a45a11216271459bcf885921a90d40; x-ms-gateway-slice=estsfd; fpc=ApisH44du3hEp87EtcIcF4A; esctx=PAQABBwEAAABVrSpeuWamRam2jAF1XRQEMQxq |
Edit tour
chrome.exe (PID: 6240 cmdline: 
