From 88bd0eeea9c7d5f01c1f9604e2cecfa27263f00e Mon Sep 17 00:00:00 2001
From: Nardi Ivan <nardi.ivan@gmail.com>
Date: Sat, 4 May 2024 22:58:15 +0200
Subject: [PATCH] Add support for Mastodon, Bluesky and (FB-)Threads

---
 doc/protocols.rst                             |  27 ++++
 src/include/ndpi_protocol_ids.h               |   3 +
 src/lib/ndpi_content_match.c.inc              |  10 +-
 tests/cfgs/default/pcap/sites.pcapng          | Bin 357756 -> 380108 bytes
 ...om_rules_same-ip_multiple_ports.pcapng.out |   4 +-
 tests/cfgs/default/result/sites.pcapng.out    | 127 ++++++++++--------
 tests/cfgs/default/result/synscan.pcap.out    |   4 +-
 7 files changed, 111 insertions(+), 64 deletions(-)

diff --git a/doc/protocols.rst b/doc/protocols.rst
index 7d77214d921..dc4f08d4e2a 100644
--- a/doc/protocols.rst
+++ b/doc/protocols.rst
@@ -760,3 +760,30 @@ References: `RFC <https://datatracker.ietf.org/doc/html/rfc5036>`_
 KNXnet/IP is a building automation protocol that enables the exchange of data and control information over IP networks, extending the KNX standard for home and building automation.
 
 References: `Paid Specs: <https://webstore.ansi.org/standards/ds/dsiso225102019>`_
+
+
+.. _Proto 411:
+
+`NDPI_PROTOCOL_BLUESKY`
+======================
+Bluesky, also known as Bluesky Social, is a decentralized microblogging social platform.
+
+References: `Main site: <https://bsky.app/>`_
+
+
+.. _Proto 412:
+
+`NDPI_PROTOCOL_MASTODON`
+=======================
+Mastodon is free and open-source software for running self-hosted social networking services. It has microblogging features similar to Twitter.
+
+References: `Main site: <https://joinmastodon.org/>`_
+
+
+.. _Proto 413:
+
+`NDPI_PROTOCOL_THREADS`
+======================
+Threads is an online social media and social networking service operated by Meta Platforms.
+
+References: `Main site: <https://www.threads.net>`_
diff --git a/src/include/ndpi_protocol_ids.h b/src/include/ndpi_protocol_ids.h
index 1d62f893d87..b81a017ac88 100644
--- a/src/include/ndpi_protocol_ids.h
+++ b/src/include/ndpi_protocol_ids.h
@@ -439,6 +439,9 @@ typedef enum {
   NDPI_PROTOCOL_TESO                  = 408,
   NDPI_PROTOCOL_LDP                   = 409,
   NDPI_PROTOCOL_KNXNET_IP             = 410,
+  NDPI_PROTOCOL_BLUESKY               = 411,
+  NDPI_PROTOCOL_MASTODON              = 412,
+  NDPI_PROTOCOL_THREADS               = 413,
 
 #ifdef CUSTOM_NDPI_PROTOCOLS
 #include "../../../nDPI-custom/custom_ndpi_protocol_ids.h"
diff --git a/src/lib/ndpi_content_match.c.inc b/src/lib/ndpi_content_match.c.inc
index f26968fe7f5..8fac8ad10ed 100644
--- a/src/lib/ndpi_content_match.c.inc
+++ b/src/lib/ndpi_content_match.c.inc
@@ -1521,7 +1521,7 @@ static ndpi_protocol_match host_match[] =
    { "livejasmin.",                      "AdultContent", NDPI_PROTOCOL_ADULT_CONTENT, NDPI_PROTOCOL_CATEGORY_ADULT_CONTENT, NDPI_PROTOCOL_ACCEPTABLE, NDPI_PROTOCOL_DEFAULT_LEVEL },
    { "livejasminacademy.",               "AdultContent", NDPI_PROTOCOL_ADULT_CONTENT, NDPI_PROTOCOL_CATEGORY_ADULT_CONTENT, NDPI_PROTOCOL_ACCEPTABLE, NDPI_PROTOCOL_DEFAULT_LEVEL },
    { "livejasmincdn.com",                "AdultContent", NDPI_PROTOCOL_ADULT_CONTENT, NDPI_PROTOCOL_CATEGORY_ADULT_CONTENT, NDPI_PROTOCOL_ACCEPTABLE, NDPI_PROTOCOL_DEFAULT_LEVEL },
-   { "mylivejasmin.org",                "AdultContent", NDPI_PROTOCOL_ADULT_CONTENT, NDPI_PROTOCOL_CATEGORY_ADULT_CONTENT, NDPI_PROTOCOL_ACCEPTABLE, NDPI_PROTOCOL_DEFAULT_LEVEL },
+   { "mylivejasmin.org",                 "AdultContent", NDPI_PROTOCOL_ADULT_CONTENT, NDPI_PROTOCOL_CATEGORY_ADULT_CONTENT, NDPI_PROTOCOL_ACCEPTABLE, NDPI_PROTOCOL_DEFAULT_LEVEL },
    { "dmm.co.jp",                        "AdultContent", NDPI_PROTOCOL_ADULT_CONTENT, NDPI_PROTOCOL_CATEGORY_ADULT_CONTENT, NDPI_PROTOCOL_ACCEPTABLE, NDPI_PROTOCOL_DEFAULT_LEVEL },
    { "youporn.",                         "AdultContent", NDPI_PROTOCOL_ADULT_CONTENT, NDPI_PROTOCOL_CATEGORY_ADULT_CONTENT, NDPI_PROTOCOL_ACCEPTABLE, NDPI_PROTOCOL_DEFAULT_LEVEL },
    { "xhamsterlive.com",                 "AdultContent", NDPI_PROTOCOL_ADULT_CONTENT, NDPI_PROTOCOL_CATEGORY_ADULT_CONTENT, NDPI_PROTOCOL_ACCEPTABLE, NDPI_PROTOCOL_DEFAULT_LEVEL },
@@ -1605,6 +1605,14 @@ static ndpi_protocol_match host_match[] =
    /* Adobe Connect */
    { "adobeconnect.com",                 "AdobeConnect", NDPI_PROTOCOL_ADOBE_CONNECT, NDPI_PROTOCOL_CATEGORY_VIDEO, NDPI_PROTOCOL_ACCEPTABLE, NDPI_PROTOCOL_DEFAULT_LEVEL },
 
+   { "bsky.app",                         "Bluesky", NDPI_PROTOCOL_BLUESKY, NDPI_PROTOCOL_CATEGORY_SOCIAL_NETWORK, NDPI_PROTOCOL_FUN, NDPI_PROTOCOL_DEFAULT_LEVEL },
+   { "bsky.social",                      "Bluesky", NDPI_PROTOCOL_BLUESKY, NDPI_PROTOCOL_CATEGORY_SOCIAL_NETWORK, NDPI_PROTOCOL_FUN, NDPI_PROTOCOL_DEFAULT_LEVEL },
+   { "bsky.network",                     "Bluesky", NDPI_PROTOCOL_BLUESKY, NDPI_PROTOCOL_CATEGORY_SOCIAL_NETWORK, NDPI_PROTOCOL_FUN, NDPI_PROTOCOL_DEFAULT_LEVEL },
+
+   { "mastodon.",                        "Mastodon", NDPI_PROTOCOL_MASTODON, NDPI_PROTOCOL_CATEGORY_SOCIAL_NETWORK, NDPI_PROTOCOL_FUN, NDPI_PROTOCOL_DEFAULT_LEVEL },
+
+   { "threads.net",                      "Threads", NDPI_PROTOCOL_THREADS, NDPI_PROTOCOL_CATEGORY_SOCIAL_NETWORK, NDPI_PROTOCOL_FUN, NDPI_PROTOCOL_DEFAULT_LEVEL },
+
 #ifdef CUSTOM_NDPI_PROTOCOLS
 #include "../../../nDPI-custom/custom_ndpi_content_match_host_match.c.inc"
 #endif
diff --git a/tests/cfgs/default/pcap/sites.pcapng b/tests/cfgs/default/pcap/sites.pcapng
index b2314b718e43fcf05bab83babcde4e3fc77f8b46..45a299d12370e154bd220aeabd2c5a451f50d1aa 100644
GIT binary patch
delta 20792
zcmb@tbyOT%_Ws>?Z~_E(clY2LJh;2NyEN{W;O-Ve(BQ${U4y&3+uPhbGk4~GXV&kZ
zx7Iq{T~PJxeTwI-uKi)x)4_+~R7@ZoA|hNI005BXrNsdQy}$lrg8*OwWGrl5+=<v3
znAsVa=$V<=>CH@RO&l$ZAOUg!SrbPy6C(qAA}TctM-wM=14k=rA~psV1~wup2@7W;
z*FQho8yHy`n3)(8894p<TY6?+7eg0YXBQSG1|~KJBqm>bdjn=_P-M^+S0!5y74HW@
zLioRfza1wU?*l>p|Hm<bV9=pp&|she4jK@k0a*_Q4drEr4h;%p4H{^m5o|P!*)Miq
zpZxg?Bo5Q_XF-4<wAiQi60mECFy@!86|m-e;qM2a0|7bU4`+7@001~7R4pX<J2-on
zSm|WnTyTu{|I~5Je`%Eh9VwOUZw863#0vlj0`{R(Q{I%`6v3LiR^$NK??8%&IjH8V
z(0qTX!J$GTyeWb~K)m}iySFTjLF1q5dG4>R$tWC9IP%X5e`G2Dw=54q+OU2oU^jP?
z000=+9~rj4>HewnrgsJYm)`CTR@)?Ke=_-tF(f*$`&sc#Rk-!Ps$zlNJS_Z6wew9C
z0|E>@5)1$y3IP$dMm41zA=qHnfC2aEPN{1vtj-!93wdXoVV&+_sl$b6r}w1eL-uO&
zOWp7+0fq$~N{U=l&+^e^{dVugQD4|IfFyZs9+Dgt50oP!03HB%XXs?*!C+u-A75pv
zZgSrdaa+MSc9;bYmG%?QRjh4@y_B@7k71EPf5mVLKmx!72tl@MVVx8a%*&uBX{p*q
zGPv@Rm0=<_POP_GEj`6hB!v><h4Fq?nMY~CmU@~8{34V+<$nm*B2(On?j9Y|Fwse#
zSO#ZK&b)(!1$F|6jPZM!Yd7eSS(|Ml2e5RnOe)92uFjOL5+s*+xhxwP0jGM8%O}wM
zI^SO0D;H<O)!X7t8kV-CKHKUNK-Bm7*tu=sX9ly4d3%-x**>YAlmwSQ=v6??1j)#B
z$TuWUTxqVUg;l%T_CkW~)sUnjdsz~ixTNLs#dtXk0T0<sI--g_5!%)t+hD6N?c_D^
zBfdyjm726iY;Wuy`LZ7#RF|0LTqgAx1q4LoM6s$gEcl1L*u*tg=lW!4TSeSbVPL`T
z9qP)O8Z!~mYGOzWFw$f1;5+ugf+>wnGyEv}W#IKWfP~hQO0AI2t8ELC^PP2&EZfvO
zeG72J87BX$cHiw|;kGmDDR790xZ8!hxmwfOKkf5(TSkNt^d^rRLE^|`+rHV|kL7Q6
zhrJiB@bW_e*rq=JX&{h!0zp>q{L7Zw@Bgx;S2#g04``n!S-~4*OFC@3H&r|C|D_5m
z{GX~A5D)-QkgZ)IAikn}yt4TQ*=boMYJycMl+SMd**kDSO9}axO_~Icl-d8&mS|u=
z0Du8N3jl|J1h4|g0Qdl+_+ZkIXhDi?yf~fUsCjQl2B)^{4($67IF<~ZKy?ppbWnUS
zFig-Z8M)E7b~$L*h>NgzXjx`nH?4YB+5K6mTP9Wc{%*%_wZc1B@t_0I^p^O13OK@F
zxH&g#;K&N5Pg*AnLk(aXG}hvPXIo@L%)ZMt+yfe3cGn|fHwspFJ2$lN3A%HP&O_dv
zX~%UncC*P!<~Cs<*lc*EOVAj0g^mR1n0@VsIQ%&UtQ;<pH-z}vlSJRuFS1dqNgUF0
zG7bAa$rVsKrUzXcndLvE;Mu)|;i59h!0j~F=+1HwANX76pzJkVp`F<bNJJnQ`#ab|
z+ahf?DocE<XIER!;ubIeSoVb2dXw`>caNW)28FK4ALa47lKg^Lt(?d$;`7<?6N#of
zmymbqOdexd0&yhyXmT-Yo35u$k@!$A0+sK3e()f$=HO;IWo^-mOWI```$>#1t(X(e
zS_wS*C>chx@kDZK90}d@z$qWTEsU_OB!wr^U{>-2;$=T7CX$BK)m<prqVmA`IeGiw
z<&xI=ON@_Om>%I8-FJ!FK1>3!+T^iGzO#_pIc|BkAEXIH77InOx+0qCgRE0*+e`$Y
z3%R?4p?AR9=wvsGYi1rlVbg)vJ%h=`h$odSjR}a`yEqKjx!et60*T)XwH$>_LwapP
zM{gb5cvDDXh)ta-sh7jk3dOGAh)XYVJv%K{5UQ%V3XVfqYt>pvcma=HBiauk5cXLk
zqxOa+dWAZyRl&`&nz2=Q(PoUq=QQ?2oAV{4x<b@G4wYzFZWrj%W{D{yN>RZ>M*xUL
zB{V|xO`>F$ML5*$fxb9<NDfuG0b0??k+?Vtx0`8rJZ$V`S|ns$k0^Dz5$ifyl)oAr
zs&i#(@-_mQ&8kTe2AaMHr`V)ipUUc?6BA+~G>q6c>bjL9SIG@Tt*PvWP-V%|m8B9v
zCAL-SM9o8sB$^6g`$?^$QZ&dEdIzNj5s#T^VU(wcDL}r`07;!h*<$O{rBA@7RAx2P
zqeM*SNJUyqhJq>;jt1Dm!b+u)Y2glCVNx**1`U@XxKHflG{gKGwXreE#Xpw%VBd7H
zkmrpZg2}}p;xs&em9EzkB`qXQz6s=y?vQ7*VP@qs?Nw4>@XFtn(QrMeM8#3=W#wzC
zI|^T%g7x^S3XHP|Hl0I3hV+QV>U(wjI9xjUlGcvHsSuSxda#;}+EUbKbAIl|m7D2W
zhPFsn1@`*ki+Zv*3KPM6u2KN<Cr3Y`z?JmF7^WWsSTA*$X6N9lQARcuK7HRDTc6?l
zHCL=N2|ucrHHu5pB@&70wnix0e!4(A`)YslB#OYTHV8B<E~CMeDLc6g{H~2;M3*gP
zC>>3wROh~~!pP~}^C9y<V`|-uCkwzF&Gz*?iL!c3U`Zt;Zn*n4g<=%GqD}R%l*dgd
zG%&LeW<4^;kIZ+9#GrJhhgo-JzzWSApD8OJWmo5rV?_(wT*DNDh+ilkDVL&13%8;n
zvgz<=lOHhZ`Vy1(>k#3m&$Q^hZF;_mkik3ikN&4O`81fR;9jqy4{}x5TY1ypT!c7<
z*jGk%A5k4lfwv@)(*r+LXB^5V5SZ@drl@Ow=Z#q#v$-}%ae#N|cQEu97lVJpxN2+V
zbA|3P5~5M|DpP(zrbmL0k3@S#f??<xzO1AQ$Tk7S_u(~OZ+_Ih?{Xp2(*3#kVk3X=
zX6<&nf~Uhe_87U`l-U{$b;;n?{tPb}SVRP$Aku`PSzT*XA8lB}b9E4LbwXZj8K}+B
zyEkc^cXZN{ts39s88idD{fO)qTI#)cQM$Kf1WE6u;+g)Xp+<M6QdQUJSGrlTtH7Xj
zt57JgvbiY7YQ0+>LBTM=UO-_kJtN(X7Ar{is}=A2+#1QD-o(HQw-J@EtK{0EIsLPo
z_AmgVxD<}%T<{-7yGA>t7#7v!KE^M0$oPj9ly?f-2g+z`%<5&|vkUHpR!nim{I?Se
zu9cW@?vC*UvOR^jHqcfPy!9nC2Nj1`Y-j0#^gjkG-1jk~y|VSOKdSp$7z-Snw|-0|
z$x<2Y7x9M@jqR3IIovE9rn5PMP{3dtGv<$bI6pQELszbK0zY$-na{qH;<$>2S+Uk?
z-a?OZ_pYAgY10nngHn#hi$>&_!1_G)MfdmR!I{9Tl3DC0Mb-Aff@8hQq>5kpAp#!_
zfKRNb0>rRNA^xhgZ90oSLIRI4X0)8PL=#c*ULWo`_qVD`OW5Oa#9Kaf1PawI6+ut5
zT8%kaM8B%Djc3pkQWJ4(tB*!;Ub;9y1XvfP`|aq;l=I^X*8b!^%arNrav2{uv*j3X
zR7YPCb)R}9PBGIlcV!&-u@99x{AHk#2$*0%Y49_TVzA?Osd-Bw<@>um_$8U);43*O
z52H0t^a?HMAe-tiXr^`WszB2gwnRqHDDjjEkhA^AI9bv8zQ`Wr<|)~$uGi}fM9G-a
z7que_q1-Wa7-ZZf(`F)Tg$z;uI5Y7pm+(|))n@by|D`t1RGISLjWQu})_jnTA4sOH
zS7qJchO>KH^y~AdZ_vpwqRx7@)G!I!i^xLDUs$DI;<P6N7rsx{P90;vXA->ms6r7z
z8UzW%K|}lWVfVF!FFPKgAqgcv(}wA@r{aKTZNDr92RWMjhGWDnK3P`jFa$oDATDMJ
zEs{_7yH_VVgW&HT1}#S5lV-;A&2d1^v+rk`lbJ;_Ulxp>jewywIL~`Cx!@?yu`DD|
zzz@|ZTy8)38IkSJk~(aKjf>&N;F9qk;a7syMvQ+_a}J#8ONxAdPN=#n&fNgBYmj_t
z>5oG_F74?KE90rc^RC5~TO&R4>f2mZm^4I9*Ot+>fWX(%so%aUF!>loxKscf8teVl
z8Edq;cx9g(orzprti@xNGSn;@%%gIeyt;y^NU(SlTq#|grpwpQ5`08W4(?fLeFNV#
zSZ29y;=vU(8WhxhqfN@P_hfJ>t%&Py2ci7H0@LFbXaZiIVfcCY^Fk)^2Sl_Y=NBze
zC&Y??`c4CR2hR3Wb3UVI5+y$%gN|e7?l7kSe=T45Nu9sRNpch`?xt0eb2=&oXHKQ2
zSTHdq7|SCgg_HpKeSYX^Aj=3eLhW=-a4<6@g*mJbZ6lQt5^Ie!!DBj>srSb|iRC3C
z@*ZMTrdp)+;e>KHwWqMCsw(m-Qa6RVo3&dpR#nLi=M;#dG(fHw3z`*>aykBXwGT4!
z_Xl@7C-=fDEVoD5w&tX7C71(_j?QN_Q2AVL2<z5m@0=PICCeD&^d6JYr`_wkCbC~U
z*krbpy9iH=Wt<*(2|lV0ba#HmnYj}xA;Gfky5hqnU;y?%dk&*<7h>=;)}?qOKINc}
zvo!*4FmeRBhO0Fa<LKLf75nya-tr|Y?@C|Tl@pRRz8>N|#D>po-Z+@3hv#&?jyrsz
zsB1Ozb_-_1L7%5TtN2FTdl$L~K8Jd0IS@kmE<5IN%Td^n2bIHx);1nWMmx_Bcr<c4
zeL<);UVL*l;zxi#I6jIf%yFDRXqBtvEJkh;Q|4ovGWXCIeHcm(%vWu2%XJQy*z<+J
zZ|f$nv9qQ_(zJchZUL{c*#VQcSdYcT)hO&VsJ^Q<b9jDoP`8+-mDh5ni0=!W-`M=s
z6z{Sa9F5s5veKWlswCj68TRa|lPv!wBVLO0O7Xi;c$R^FRIKAv82Uk|lYZ;+-E0Al
zl?aU$82NI*G~FdB5U<w0B*FYh=Dh1zOL(RQ5ZYVvB6iH;^E*pwa+Sp>>!q|l02>;a
z>NJO-fioxD`Zf>h@mMZy;6!6p9)lBTWy-V<WtD46%_^OsyL}>Vp@y2iYDAfFhU}>A
zk9B%eZiU=eXxm=>t9V4wzW5&h6EWvihm|I*B!yTon6y6%P@Esydwk2DCyoBQ#q|yn
z*90j{a7FBBh$P*iLBz*%qD?c}W80^!*H@8(G9vt>sbu0(jF6H8li8)Sohp;xKSJ^1
z)c{R9hjInoxct-lyV6wyJnSq#??ZCIc^R}m<neX(ORtS9Y8RTJG3Gq4{D{+6^69KQ
zZ@D{f+&jWc1K#}nM()}^sC?tfXB5Xn>?7<~zbw?faFnMMQAqWTtf#hxk$P%h=tG)O
zI_xU#JD|W#z=F)Ax=eu0XcyL}+IjhJcPIn))k${@;w`5X@0Ef&&j`i%)qDJGJG7XA
zl{kB90$KO*<HacLyd@(}ON}Br=u}_bzNZv0Bd>qL#RQrv<qU@-R_h*KG$IVSu>X*S
zOEwg@6?t#+^R?umljSk9t1(N@0?NH2(Ik!LlRzyUJ{YHSY542Ijb=}4=<j%AjqFg3
z>g_xg;IA@~lBjVuErLE?JAGPGPF)h#oDjxGYeZ~)i#@as^+KowEglNIMk<s~E=|!9
zg|Zxy!COGKSif7mZ*D7on%=(<38y2fy1ttpVQxI`)@Cu&BU521${>NU?Fcs^Co#a5
zCn4OA7$o)|!Jn)C8lJ{JB*zbh-nc_5Wci`jC}2KEC3!cOIYm#%j-#H-EP62bT0hfg
zzem0&V_r}5&~vOg?c)3X^n+9Z{sT&@61rW)h}a7-50~AJ4pjsE8P8vm)vWVZxOVu`
zw{_aifx4y$-z-&!BEii%v#YN3$z7{x4R{2B{yGn=9|yht<q6qT7$i+(;2W@P(bcig
z4!=ZCizAfZn~fwW<f5e2hfDQ%Qk@l|@L~?-1fdC<q}qco5Pl{d7o6uN6-yS|GUQ(Q
z`4giN7>1PQWa8kUlpa<Do?AUvvad0Yk2;e%R);;b6VYA-4OKW0M;?wJ;LU8B5q4@Z
z_8~99Q5Mro>duGf{c!U<iy2pwwg-)%No{yok?FIP-cCF&=7wBxaIs^qCwQ`D6r}H?
zJ=@10Y>}%hmb8bRJ1?IUUa;|-A$tn%vo^<vfit38ljt34dDXwCv?AQY_rUD;es$h^
zWYTDtwQpO;Qr`W{9i`=eWma6G<yRU1kT8rYU@Vn7IYy?!ZSvs?7N@-XT_YjbjHC$f
zRIzSoCjeWU%S^d*a+xucMqkEdlNjt`u&P;gdq~oo%{WiPaN6N%!yH!a-3`W7S)+9W
z1#pLD4RDzILl<$|;Gx9YOH3VmHvK?DT;8CvmcRyp{qs4yOoOvF^CgBXiOVMlF_bEY
z?S)@iKtK*?Wx0Q?5AnTzfT<KbaeO0_itsDs;<-eH18&t&qqEbn%+P}@&C0ih!A=%K
zWxD~?x(6hHV>NDmKYiTsaB-V}>(uc0J`i~RGdeXNdo|h$M(QHXbDB@Bmt(osENGcr
z&Y_s~flyXZ1M^BMl!0zp)*6B;WGmR)<d{6sXmkJYDppu*q!7h}M7HOedRj`8h$HS0
zv7L-*aeb)nspg#22^w53T_vbX2dC~D8-d({<)aD&bFd?Q%XaRDcme4hFXva%E8t64
zZDs`Y@1|Wju-a#I$5)NSkr*lLIBdu6u?Gd-Lz0S<m97qpf=C}&hhB(YRWztkXpTwk
zA3#-=I)=+Ov8>wOZ~Yc@xF!75Ji)&ZMu=?$nh-vBt@|2yArlaMXVv1vCbWD&8~DiW
z*z5Swv+}}dgLUcG*Yu2EYSfT2bap0Bed(vTQ}LCPO@3_}pDR|mzgyah7(V5G%j9`=
zi}W4bSrO6Lt73J#<vHr`JZg*@?L6MJ>LV9RjJ}cjbgA8IQs;!Qr|kR{Q|Ac)c;hU8
z=QnQ3guQ=YMX6_{Kd_?ge*(Y?FF61W7ziuw|AiIfxZW7fU;O5uFf{}OQ<vFb7yg8)
zVn%Oz;9uVK=oTRq=7qtU6{4QoK#cDXn0j&Z7yj&VRl4{KroQROHFmH39j2Z@r(V7(
zy(xk<&kK+9ERKQ{+uvZSGuB^f+Jp4PZ;JmNroO312lcG{2~)+4|Hv}sZ&|j3w8!3H
z>cz>Qe5uD(S@BKxuUX%LDAOC9ebcKrUt5_0?a%xPQ~ShB-c$jQ|5X(PQ?LF1rK<d<
z`UX>DKrl4|0>bH`DKh11L4lLh-Bj*p$~Y}`Nv4H)_M;dr#93CgQvlIOpFcuDibLl;
zUc$qt=R}jZMuQi#F<Xlt3%`dg@nYZq1Ezi;1m%VTKmq{Z|A47Zc19Kk)_?HSQsN8=
z!C$uoeINK2R=JuIa#ncK8HAqjoFk)JcPt@M|KO?F+3#qIr|9|J8K(>3nnnQILT$#n
zu%p%=dCB0E=dc_`c1?+`G$SL+vd(GjM~QTie!F3?8|3$|YB<2xwpg3|i>JN=LJR_k
z+QIA5C^ZkE`M~EQ9l6V(u!xWpLim)WpNnc(U!cm<0jJF6<Q-*egc8VnoX+;S*R)}c
zbzYk8pZ8Q1M-27(bJn}J1_y6=waJN~Fx8x|EJI4Xs7r+gZ)Cp_StYLskkF_?PUGlt
z9oJzLZ3#`(z`_enU@?S2I^3%RFEYyJqsA2F;b4%?o3ah(tt;bYkRBpo5p#=lXs*e3
zf@PO(@zh`_RiqRtX)EQ-Bl5bi7p~~;TqSvJ&pu3WO3I=4xcU}x7%$;$v#bxxGux$?
z^xK%wUnG9+HDqP2i={5UKE$?{{hsj-l6C`=9q$IKMZY25>yzmiO_3rY3vc*)m6HP;
z%#pPW=eSW*TnA+~$om!$4h6h<=-*f5o0rnPlDGaOs;J9?fD`CYg1>owOd%Se1R|<-
zFt2~QNPCb07UWOmzr6WRqWY${@|d#q??e@K<xSO<{C}xJ?Ea_fzY*1BrW-FWeI=}Z
z#DUVA`0g>c*hErp3{iy9y;x%x^wsVEr#Jr_QFXJ3H}mjFT_w=|ZMS8H&xq`s+V%_x
z-5cwjte?8SBl|a^>fK;&+@|?FXD=@yuGcu+v(B$@|Gvs}Oi1#FyuS4>vJFg<i#MX`
z<ZZXQj9JHj!a<}#M>1D->m6e(<s_OJoU;YQ;<d~^SCmY{@n*4NP5anr54M^3MV!P!
zvG!=sy!_o!Uc)Z6_jOq+G>Pya1TJ2E&!h+PGgZMn(x6N|S|#(^ZoV4zLi50TsXX6|
zjwyb^Z`qCM(Os5m_=T~u7&!!ztdfGcKB~QYWZwdJQ-)7}8E`_Ri$0L8P05{VbH&&J
zxeVvjmx!4lCy+DApu}-f7YkXYWFoh>p7tafn+B71?ceXY&e$_A$7^h=xb<HAkcMPq
z^)7EWFI3PFPJ@q|rd*x)<_%6L2AyZ+*NUkoM3c}>1Ft)t&^IC2^HBh)Y~Tntg~S76
zd;&&w1OXAf(>=R+X!aI+j4;vA<?eJ2nEqrDK|`}Zk=`yN>XK&6#4DaN@_R2WVgE!+
zDiEFq-MU)8#re_#!1XA9ga~VyQ@aCmZV@>9d9BA;Tk}rn!ZixNCjw2*KMQBTLo}nz
z^b5X&Tx(g8cW0Zu4x3%>unswoFfmvMI!-;8E?Hb{Oj?Uv;*R5?`5D`OcDr0EP#2S=
zgGM7T<RNxUX_IV`1zR-uI>fHYb^pSt%)37-F`f3*%^s`lho1a)rlXRHU2me&=3=65
zbhzs$NZiNICAXyfO>%K6r8260i!DRF^)%86dMER7;yU$f7j$h3V0jf-Qw1HuhZ{nA
zoWBW`il+*aw(A1O#|F;Xxsx6;fhjldeGSLCPT=N4!agDXYBDh6jsobR{M=LPGBQ{g
zwd%!I3EkrImO=ywNgFr1{uK6_M~m_OOx`k1Gzz^STtDIx0Wmc^C;5R8<LsNIc5fK!
z6Ukb~o=?gy{6zhv0R&TN^Z*Nl<4F2sw2;m+W&20WW~y~f?j^(rx9p(qZJ=n3;g#}_
zifP`Ch$Ii)MP;m}!QYP|Bc_ZfhauW(@#i|t*;&ukR?9YqDjW`Z`IDYW=i$U{q?=Q(
z@>K$|zSC<*s+3`dm|zA(5oJHK>?edLHV6C(z=tXEm`gjR1No;8sXrc&#@d=DQ)rFZ
zK$S+HI3%Ii{)V*^6f743UIAAU`xujO#Kfh)qvP+&=dv_2>}se|P;JhMSe++VU~xST
z`QKgopp5p3wZ%!U)SglNu>ZE)oAp!VWT4SD-o$7)tOM&~G2U?#YkCc5&2BBd&rO_P
zkpRxs*Rl1Fm|06>sH}nTjKMBSCP`1JpTkL(LUM%=LwK4?eoF|K9wq>9%`>R+;;M>z
zXM401nuVgUQZ6OQ2pqnlnGj6wHb2&vorU7xa{yMTdeNTb5{A}4HO>=)zL`SjHOZ;5
zcSi1@#>i4SXqRV=n{=^6kaeIex5O-e`!^I!n9*1h3w$8(sJfhYtCq2GnMv-6jfSQP
zq4{cb9Ds?%S~nB(1MwAzUEbOvLivu}FTB$&v<#{F0-=!Z>-VfOo-xiyhu1xZRq`_j
zQ6<>WB-XF*TGa(lZXKqR>yl%NiE{dRW~iC)Ehib()w~_fsUfc4nF3?5&3ulERja=Z
zC!uEcUY)vUnG_l#8*0JAUh;jA?FaoMWk}y}<cBZo=s5rMZj<6VP`A3nfx$SB!O=T`
z?cJ`{PDJ|3kW1PSL6kbmsbTvvGfqV+mCne=HrTCMAJWe{x>V@8d&f{QVGt}xin#29
zav=dpH$DJV68zqj;GEbkJ8`R^vTq^ic%5q;A4#_R1^NwEVIbumi;`d$dxIwyFS4sV
ztiV*^@c{b)%CTfuz=K+?7uqxd_VV=imrY?;<Hs9MqwZP#9Ep=AXE$J$*u#S1VQU6g
z!UIWXXYG#Y?t-&-TO3dy43nef=V&57anMIxWFJmD<psK5bl3>{GZRa9WvE%R0Xk~1
zhW&KB(|xpV9#otdLo6OfdG~NZw;mXM3`NTe)e3^OD4g^Bz{vGDRMJryGwxz-MZU~z
ziPBP<Ac;o%vv}x=wQiE`zKIiFOzV_Sf?skGtuq@noJq*DYrcND9>Hkv-tOo~6AeJS
z@D@nsZCz9Kwc$03>KdD))IAo18Jd}+z?8^hiR&wkL0K;Jh@dEEFD6$XS6BCt&ST=T
zts!xuHZ}>k1!{a4f;qC-88)$VGwi$2e->{&Y3e~8BJ1=Qtiil14fa(d?p}Ock2431
zT6=PwZQ^H6rxs9n!geZC(;kJ^-+LhtBAMi+zmrd8yXFUUu`)JZ55LP~&FfI+R6(%p
z36;1oL-;l<6;rt#vTk#axcs3cTX810`LtpHIO1|*0i0|{`PF&S8-P@(%U9FGK3R2e
z+$LA^t}spxGnO5aj12)z+;Q-FMH;D~daE7JA(*s#IJn))1kPP87=_F|R&be&Pi2~b
z%W%rLiXBfgx5Hb(Zl{A!FBYL3E;*21)+-MYafdqyodrC*JY7P#X;(?j+NE;uDQvMH
zHgAEoA876@x}~uBLbHy3_|?Z>$(0T=H&NWTwS7}<*q&Jyx0Q#%dSE>G6ISp=%Pn4*
zeTWXJ<f^3xLT6kLc=^keHLG@1<x+`HsYNf(j!4F}6ihTm4B2}M;wkxzFB_?DgdS@B
zI=<XEusW@R6mHKMT-c>&N#kA@kF|JAE7sU_TENYV6Cu7`m|*-_>$8b;OMGrslg26h
zBDG9@jnP8SR^w?}CUy3GS~n#r5~Qw#EA!L~Oh`l}C|)ykE;ekddfSpB!rK{1l_<Hq
zK^0pos{lx4ok7dAWw~YDg#KlobK{mUzKaAX0f<(_Rgo*a*9ouFWtc$3G-=devrj@6
zslZp3eWumvCD<2|Bc^-u`3XMnI>HX<B3XiJg9v!*Pf_X+MMjkiuZVbj<#P-eKT1nC
z*DSsd-j2I?J+o!+_vVs=X!XMnqy#_OpZRWtfw*$D`7y|w@Dj(C(IK~n2qId&o!&UD
zo$#;<+^>R+P{-*0Xz6vCFiH|)WF3wc_dw4DKFN0q!%`ij;!W2i)*%LX(?97axnB&9
zb1rsfMro<jbB2?hulOiWvB)j_;j&cESF>Imm*xd;C4}SqdgLYN9ZPd9d~GbJ!S7oL
zTo4;*N+J_652ldso!QOHR}our6ClMG(c3F$);}z{hHpD{4Z|oC>0(V;6}fYk2>>ne
zvIkK|{9}h!kz_546a;6zhKS%;{l(cIkB`1?<sWjB!+Tzt&wl(3K}wAVjJvV4)@3XG
za=U6DH|v9bJnD@zlyet#cE_y-mg7Ma=c2XImUqZacjw@Mt7w**V0CY60#@7ZAh&Td
z**&AtD|eO(+bp5l6?u4i(^~5*E(;tZQVy-cMDNr89j?DBbDD%PH<@b1@7(T!pXP@#
zb194eAuwLM&{uh%(SA-*(o{z+(Z7%++He!AHX);87hI->$#+ThM99`9aGORe7KtyW
z1m)FP2|6cFT`mm8r0PJkg?<6fLOOC2PS+N#3xUMhM%;W89wI#_cED|E4-zO|6Q>&x
zt++&Aw9{IU5_)PMf_SMo-hX=*n4MD-lVdr@nLI`LVO1txbb;O#5)T_zbJyl4a2@e`
zKs+-V^=>3s{IG`tYooeNmWd2UEERb^3Ei0Lcvk$C{2ecK=7TD9N~fDfJ&h5TkfrG_
zx~|m0FQ*v~2jL?6Arc~y@K8WrPw)Kv7hA5+NICa<x-?wf45+lHZ51ZsQPBb#tNYlh
zZZsAeq${-s-E*fO&`*~&`_kL-gYLa1O=kPB$SrpW+4fV2?&Zh@!QSU~+pHy&*3afs
zmPefOYY!DiccC~QsU<o_K6I+a6_1I0Pt}rYx6s+#G995S_<^}e^Scu`U}O$ynSNjN
zfzpba!`!3i7kDrvORaIkXka7Tx>eHyv;;NZOn(zLu}^1uFQVM$l_aapgPHYHl)_I#
z4|D5e*3#&?U004v6wEpXD8lmNEH#HqX@fo$xvn3`Iwy7O)8@^Z{c-F`3OlXzkG`8b
zlEXt{TJL6lyOkY(w!1b4mPk8=ZXD$Mq00mXg~d`Jh|EuF&1yl&eBawD)O>9ebniYJ
z+uDNqjVnO*T%H^<!P(2Gv5E)@V{|y~<nwYqAAQF_JjSI&6DHZ+flr8diOu&O?Ep+C
zTR-@+OmdD~;x@n#o4#Bdy~gX(`ADK&un1Mxi(9nA`2#dVJB?Wj@IK)VCq^pyox#i(
zKk}n!p;n!YL*EJLpkH@)G{&l!3-SHee2v#CE)sJa>bJHVCXu1WP^b)Rm&B%3*U$ap
z{u+HVn4yO2kYEg5MNcUE&`szZ+*|=0A8hTyZoboNS~;_EjCq{|ut&?L^XDZY$;wo;
z8RtrICSf#P@%L@_0MB)~H*4E3Gpve{Fdi+x@M+GBRJmrz3yodxtdByKDMDP!h$C)n
zqUlv1%;0#+f!jDccF9Lne@A{P5;i3kf=af@Q9MmrlFwamb;Yaklf=AYoN#9j7Tq3g
zEsODk`+BI%jKlMeU(jL37JhP!ko2m&il+WEUHOmhiGZn~Uf_yE?Chkq3sB{2<*>=s
z?a2+<HKgv5AkH<JjI!tOs~f$f@7bv@;WegzdhQxOv7#<<<||%?Ur?MpZ9}Yz4}Xa3
zIgDM-R#tpC<Zp-c2Aqa766Jx!6|4Te-m$%oE;gU;5zZEOQ-wUWWxR7&You%AO*t7#
zc4bJGZ@_}xGoZG}+NkF~l%0ZZgbI<g#FnJE{LXZ{!-kvw>*kh#u}x{_)G~%_!S3`O
zb9rAxA-u`ZBtG0L`Ad!;;}~U+N`d0Myz{6bcMK#iG1sG3{ilz+<5SGMC)|7tJjfY~
zv^%NxwYwjjY!=FeD1AC>+=MUJBF&d3Tm|79T_kxdj)94Jfa4+i{HXkBqAt>WiRcgu
zFv{diI7jURkJ7SWN@iwTRZN~s)G-53-!0c1?@V(AD)RvKUAsg5mRsYCJsJVjBZFA<
z^jA&cO*LIx=k-D4Xw2#EHAXD~s*nk2O8Ao0ei|P2OF9e#Y|ql6`mbr~Eu67G)oa?i
zE4h5CJc0C`1X&Dq+a4G*`yX<>(o<eO%^<lV+7#-pnf*4GYjn5IXQ2xj8ksWSHj$m?
zwN+}}@7Ow_&kdU&qw{T{NU#f*oW_Q*`&poh-N__Lw_ZrQBo8AUFblraYc?&p+w0-%
ze4~b6NtxJi@eog8Z5b%aIR5=HvZhUMsKh}M+yv;7H@$F(sdjNk1SK>q*k)2h#v$qu
zb0w`G2mb}?{P@*}FCxE#t|w+?f=ya$(kLa#Ev6S%^@qq=i*3Ddq>}RVd|9WSKXduq
zw{WAUNrFo<^dN{2p-AP9EJHDd{x^mFy%viXWRCXYPGG=cX!$7iFnhG0RhbQOx*ar`
zN$WtMzOEJr)ri0IDPJAC6fuXGIjZ+?H$1JG^5tUQSp7zH1p1vYp-C!KdJrkc_F?v7
zzVztBSrf(u4YcPiy}jQ(BX$G?%G@qeF1BxUn(zIIj-Dh~?z$osBlHrd4;<`rJEwGs
zz#a*AnB_2c1Wt_{#c)2picfti4-(SJ&pH#<bVMzQ<&T+10m|!Yo^8$Pp<xCeRJG`P
z&kW#~jj5S;h5#IDu=$b%RFZnXjE%tt#eP=$gNIALj~}=7e-})zWJsTl#dwX>wqNsq
ziRv3~anniN`je=Nnf}2Rlm3GOg4oSC&tcyiQT;czSo_9s{^B?PB&wkxJ;@i>)jx@<
z1K*n-^Yxn^@^BB4e+yW1Y>)jI2qgVMRFfP2VxSnTo*RD=)i<5>V%+V&6ICYY8kRSu
zH$|{!|CWNDmwu4qcn<1I*wD^jYPu$)t8a=Rq6+hW+f(1v;WhEL|D3f0{~uXC{VmIJ
zkoLeEQBAJ=lP_VgdI`Ph{xxd^h(C$yn_eEp$L-`bBq;Rc9Aii*;F5#Dn<}I7e^mt$
z)ikw#sfzrOEr_V*frx4r1O#jN!M5TLxFHSKoyHX}BO=V%)Nrfuy8HpM3>SXO*a4zw
z48S($_GuGZxE&R={}v?fc?6oT9AvS50#o6p?C-*V5LIec&~+vQwVMJ6O>FI~EErsz
z=uHfqoEgmRKreqlR$CKiH#<kGKPc-D9u!pZf|z;fv4&H$nY{}ym{n%vJn&d6|FW#m
zICJ$sD67$DW7h;-K6gS?K3)7DF{$W^u>fCXnWy-|>cA3owVGIVl8d7FAI;yD^tTX&
zU|nyucCbSqpz2QShxBu{rg8qAvNi*V4$1t-^CIJeFrF#&p;VsQA>6>RoMJqwo8ybj
zn^dYy0jETJM1EpZWN?YtPqmlPJtwZTYc&}WGLJg9@2Z5#8+8^g7xH4WeyYJ6phWE-
zyJJ-<(%ucFysnAsc4&M(wz7KX&#@Mu!?P-;c5U7jQ#-PxDTCyYV?kg9j9;VxN6d7>
z&B!QJFwG<%Y?!3%vw$7qKx>t?AOGeeIFzVlsxQbCuYZak&6+!KX-4+Dtn{WpRA1F@
zBqKsUP7ViqNA+?ea6HdjoHSOEbvGn$Q!t0}<k24gNF;%-5(BMb*YXQ0)wFyeChpjv
zx&(zHkfi37iW`0DLyN8eFm-VYmj*2UENsw+VS4R3Z}!Du)&NHY^f!C+)f;841$7p`
z5&JiP!CLPfd<E^l4Yr**a9m2FO0cyM!*>8N0DO=Sgdl(knr8QJYhxg`$H~nP3+yf*
zr1I8ct!pwS2=cKAh>-&S*>*~k#-JKv^@x6=eyH$$Qe_w#TYdg|*8ClpcHAx0yzub<
z({5-WDEzms(^4}f%axg{JreLDU(LLfo#dRcmm-4TFX5pmomWw+79d6n{Ab%~d+}Y^
z@FBE5vP3$?x}@U$DE8<H)lU*ez1ceW<8lwY{8UyV5F~|@8sA|qbx(y!LOW5p?^m-#
zW^Wc4H1R1He)5mD>>m|#XcQDx<PR+{_NJXg<vRL`yu}QIn!1ZgJY%cc_gm*CnnC!B
z>>z^MGC>8esoOhX*;rB~&Y>`bs|G&P?PDHnI~|yQ)9H-lB<qiP)FaYG<Pzx5zu+m}
z%eXK9>f@>f+g%=$<lx5q+^NpxG)g;%$t~#}PD37tT5YjOVDnDKF}GY)nR7H2%o#rv
zmfaQ6H0H$snaKsrVigUT_Zy|)5S~9z75rLc$`sv&jX@XyoPWHX>ZIhU%Z>~2IE2ML
z=u*ZNhFkZoAo97F0IM*@u2g023DbqT5-3q)YzRiHp=zTL{Lb&W9PuTUFqtgb=rG7|
zY8d-^(Y`=I;uPnVoIRntuy2128w;C%uNP?tnbzP2{2q2m>w{P4CDz^OXB0;A##-#!
zVLA+tnBPv`Kx1a?l+>rOCGG%ZP5rey$nnehrklcVDeg&-Hj0_N9E&3(ULCkS*Q$8O
zmBUFXKPTf13F#xB2pBgBk&6iX-h*WVUEQD2D3DRhQt1`WuqM!6MO5XVh63NS<wZXf
z;0eo&QV48G&bGdaBN5Rl)M}2Dt2DY0)YAj3Zs4ykfpER7+eHj|ei`6MLWttrzK71g
z8+Fs5JQhn!gHpY2p3}e**G5$n-7uAMDk<({P^uKc{9#ENR?asfAlwfygD-;b?3qPn
z7n7HUjS@2u>L;Q6pOx51Fr*LouzOxcRFWbSiBCc#HtfnivFh|~m|9I5vaP<@SiCxN
zvQnSA0}Uat;3o4+4m>prT6*;$Tz*uokmo_*JP0jlj>K>N-cFIAROITASo{X<#f&TW
zTp^2demMLPE>Y%P(7&Nv_ZYH^Qu3t&JoR&rbHGkbm4%2^Em8`-GUR8i1#b-uYC|7V
zqV3;9W?x~S7>yyfRe1CJ(M0thp&3hhSsGvOJb+~6pLNmj2~hE#7T4Luw6P033pVry
zsS>5{qc4L^duUFhVg{`VZ)Ofji3CXZH_82$;0O{;MU~VAm)FBSPIVMpk9xTn4WTAI
z>L(Kw`)pu`E)*Zqun#W}w7FMgqh62YxxD{fBCOX;5E`a``_nM;B&pTk=;+p17{YCb
zZw-hMEU82p4wt-G(eQ)}73zCcXh{K0xJ#+g9tLdoqNyT-m7qDxJtV`N(7e<V%PJlS
zWA^fQ*As36m$$@eu(16Vk);A&%~*W@yH1+co^HE952Ip`v7#T-pHa&jesiu)i9yT*
zn}3?a$ycoTZURmW(lFme0>*!G`l-tXxf>Yf*)Az)T3^wnOjgi@s)_+S8TkG5c=0<F
z<@^DpLDjG^`tt|%HPO#?ZCK`VZg%i3j}w6t!4eL=vENt_)J9Go3U&RTMN6P0$J#R|
zpF_aKU>HK8mfKvkM7JxJW4K>PRAyxR&`7J*4pDUs;Ln?TPM>q)tLw6Z?4o3Y5jlWQ
zh(9!h>s7jMLXucAkY{KhY$fUE^~pOmDT|2=L$db2Fr=rqYEn2p%E)5B?<I6M1)doS
z3LFjduG5}xz%C!C(X@mUQp1LrGak=gefB1FiojgB#=W6aSw_XAd91|ENkoISB@tUo
zqr{(n;)%N)VH|51iV;P`jNkH;5P}CbmY-*HnG><77&aZK2hbnY$bH)4k^KB~ds;Y^
z1|x}pAT(gUHSHa)C4&cSLJ!67hi<za%eWW^hGQ$({<fMJvFt&tJH_0sn(_<RXt_Fn
zc}pp(z1S=>4R``{QWE>!8im=1+aomTTN6V@M?6i#7*~d>d3(=WWA~GkH1`=GMLkML
zaue^B+1OXT`{)%LP3fRW*wwEXQIttN3N`HfG^FG6r!Fc2U{RV~9@Q>OG^80p94@5w
z=z_dO8m~aGjwarm&e>c8UISxNP@je^f*Bw58lyt&CQc?zA3#pe7}aAe-yzthOJdA)
zUqi>m<8=#|Q$O*VHbau_`C$U6Cd8Y(sVXki$5>n=Tf~LELVCU5sxz$>8Bfb|21XEg
z6miL-tgnD>2umUA$I*@IW77kF5JTpy71r(+T>fdKA3GbkW2E)bcSvWfQ}b$z=Kiaj
zKH*eD?wZuCINhxHKudFAy{kp@kF*;qSu*W-?WnKbbF~ED;*$gN=1wqx8$1znqINH)
z2vB=q`eK|nDc|u^S!EWN9(l*yGz|!)?2NATvi)UXdJT=hr<esGoY%?VcO^sl?RxCh
zEn%Yw!QBGYBCXh*GHlnW1ED&qzszMoTD$bNkGmwuv7=#{>rHbJXHy<mVzmEmb?}Y5
zvbB2sSPsx_uuLCJq%{=<{`z8|$ep3GOYP#}#`B?A_GfkCC)uLl;~+7sj|ac209kE_
zNc4&U`tCe7t7{Q1n%sqE_8g;J_JRCg!@zNrAs?NRzbLOuX}UIB?b}+DXy+*-vDp+K
zjw~m6H|`n#l0jHmB`lIFIl!N3%$SyiEho^3dZE~uSm8}x_5o|d1lGXAup3Dt3YevF
z>6tb{HTRj`gd#nqz<mCgQI~PAY}GzNcco8q*Q_-nX0IL{)OuZcCVBTbort7FIu<$G
zl_a6@Q^k;ef@7iE$pFbPGC>3vVrb^E{>nvxZzd*c+1&@>3=9ry$PFDJN~DksSdA<k
z1bn|WDDc<=Y+Oyr0Ke`WnDC<O6YG4>r~K(L$M*e%B&g+Gq(hN4ELVkfi2lap>_^j2
zXy6@d?8OXIur<nza3Q$Mc5-p>%v#2F60dr%=eyiL6-KjGPJvg^jh4csysj$Bx5h_Q
zDZc0H5pk3SnDSGU6EMye$nyF<EW8KvO%+p$eC!7W6wL&Z96;TWPCVVd=)jFry)|#>
zNqOgE{moQ}uFoBX;-Q~eB(F#1#Cy6j2Br?Va6LI+dZWV8=QmvJd#+>ZcVdtt13o#3
zsutwP=-O}~NBVuZ8ex$yX%k+@RrB#n7}(wnuCQ7Yo&~l?;h$^bN|qjPmXBPDB~MYo
zQ=@v6j#>sZ_yc3{=<5gNGjyVln@xx&dT)dFMSl+KiKy++02g)0?Y2Ge()wwV`KFHv
za9E#khbuK9S8`}ka4>@>a?ZlE2+A?GmH{#H#Oe$k^Uj!L1_<aJsAC89nWY>a-OM76
z`zr?o{Q$LufsgqJY<V;(WV)MbcJao=bcq7_68v8okASMnD|5uBd!D3b6>$71+T*H4
zg=<d+-jN26-%NTpq4V9npso{-jc{?LA~_8%5V(Q_>bQkGT3n!8WMvv<A`bXNKMs$n
zE7lf6b&$DcE}!;pl%N@?daT`!r4l?e$vg;1$`p{?eK3NdA7m-t5()MhR!sZyGeR<-
zB?Lh2{|d~@G|kRpSk^f13*HkpbVlGaRr>s-xqAzgwgiI~(q~RTI_4g~2H!Q%Gl39(
zu<`$-75CWkeZ`{n#!4)1_5uc-$z}1rA3)=@|FIH6QY>O0A!G|S1z*`$sB+2eGHG9x
zdJO?@+1-3S@_lu7&F-DGsiTA)px^pEy7t6JEearwA-9pEb*AvpPyxd^zC1JN9uo}P
zJA*@+W$uMAMt^jJ{g!Njjd(jD^E4X&y~J|m`)W^C)Ho&__yT_nvaHJnw3HAYxvxb9
z98^%jhWT<z?T*^S@oVH;C46DMK8!QeEtG%W!vA~2#M`aB8^->DFd!L~0}2c1Aoxe|
z`S71*qLW)eFB~?g_&oc!;xq5<=KZhY(+_k@j|v*EAjQwHA`7~p&u`<;vf$4WA!Jz}
zf};^Y1uaMf1`h+r*MVwVSf==u3BHg9Qcf83pd}D=!rKNR5#<NgJfL2o^|qG-{z}EZ
z{zo+(_4eqfh#&OK+t2^3ru{&l-lp{S{?7!Ec5MHZz`s`~ZwV+~f)e=nkAR?a-Zlt{
zKNFJqD<iPxC_f)buvkzM+BvANuVD3W2|#wgB|w&qSO1m-C;<?3@B<0FCEyMk|4e`~
z*=`}3=o}Ig_%>mp|2bjMDR0}q=Bo_~83(%1uk8PLToe>${w>^}@^4{KK-Jhk!$=4C
zFC2r)owxCSFEn^Pv>@<*T<Jf;{-3~DV6R;Ef0kyTzzc7I-&(7_f<QnF=z+l2jWjeO
zQ!Pw%+}_`}SoovjGpG|xd-Ld3&o6bkjL1Ys-=ZkEHQI2P#q=q_@82^#31cEsKhU5a
zyi|PurVqv>ki0SvNr_Dg3Xc9Z2V@&i`EO@zXUp(!-BswPr%sKAKeA35!wt+u_$Ez7
znbR&VE&{<80xq<UrpW)O`#X#+Xh^bm<bros`Za2nla>o;v<b!vBP2;1k#yS|q?-`0
z9ANB!yk~`<bnBfGlTE`$?pb3{2Yx4Xwzh?1S^ihu4-32p5Y3mVRL;x`J5TslkaqoU
z(BOREQ~7zo3Ms^DQdmzW7xc6$SF&Aj=_f|R<=K8HO^eZDg<b(xl=ygJDz5NBUzIj_
zUG{BiGLQFcfeukhJU_}q>xiYbgt41Y$D{Y(J%(&Mt=$lybkD;(+iJc;L|9{$tMHhd
zm-ub{aRn7<GGM8;aX+lDMg6=#Dx0r|oiICTD?~lbHW_9Xw;3;50I{)vih$9g_MyH=
z+7{0tFwt`AO1>}s5>l0G?S5mH((HNUQT}~$0i(UDgTw{S#0rw_U~j<jwrgC*2D*<=
zSy(qz$<P`+(}$pw&G10i5i$uyW}L$0ZVvs$1Da9h91r2}<+yb3-Wa~@wqPRFf(!8F
z^?-jE?eD%$z55AjPh5KQHE10X{jYWOf0j|)fO^#>$k))cXMfrYWUb~mi~Z&698jy>
zKYh(BF}&al+J77Wcl{!Lg8m5n?+f^U2NnhUSKwc7f&Z;7>k_3{0a_k?d{3afEn1_Q
zLaN5yxlI#HE60%M+?2DC;J^7A_#eJT1Bw3)IjktM<68puqPVLaiB0dAzImW+?k-y6
ziNLt#VCj(qCI780Yj%0r`bmD5@cUF?xkG;Ip*e3i-N{J8&=v7BKPMjZw<In!An4oR
zeP_d`_a!%Y@(v<Fd%)@!`va1U@!H1t{s12N_`8_R>U*V)&`(c&KY3=5BFt`6*l#DZ
z)d^JGkcv9}oGwBvNgAgs==Qwj!_2Bj4Ur{o%92PJVjr-dm#}MEPZpCcPgOY80zT!p
z)d0iZKjqWMkqp5@-fJt$=;9QPZMPK7oGao=?f+a=*R{0JEeE2oL)9H;P(FB>Lpno_
zn;>NRvmatVBxXLGpnZlRRbOQ!93%^xcKS*hU*;vbia#1q?tFzP_M59>wrbkIRT<hh
z=bReHuR<yL5GD*~Tlfi2@oO<Io}&zyS`?Eo4~v*4<_k64=p^d=Op_GJXov_br)ALt
z5&kU0M$4-l#{^IrpQ+X(T(<mj&~~6IFI(&7aq#8xikm$Td5=qrpuSt16yQwa<?{t8
zZ5O&x7+t^4%~R<t;^g(6p#~nDT%-W`P=-kwv}ljXg$TaJp^lVD9U;Rl-{TcZ58>wQ
zmO2~Kv<DA7XE$82#P7#!q%p`BIe{QtuNbvmXfbEyZU!LQLJB(fJg<M}80<Ph6iq^u
zn9PjM^uEH8`jrdB-rY#ps|O$Cg__q@O`Q|mzU4a-L=|mC?*o(1A@n9>khJC#TQ|(-
zG1m{MKO^ohp9bvf$4EAc-Mti$<_O9}PE3DX3eDQK$suOpS%wPk>$S9aGWGE_PRi?B
zGWvd(?KuJN3SNLFRVJoM+0TWsyuUd7yU~hmaC&Y~kz~GRyxy{cSKGap;60T~d?5cp
zh24BBOA-O+S&wUEvU$hX3IfZ^=my&&@#Fr7Ta}K^{CTXdSf*Q|OQ>o;yB*}c-{3Ox
z1-`f(*_>uC7z7hif-GVe4%uAfv})VB1hBY$6W@V1;db3U8Oz8Qt>aemDhb7d)h+8X
z>Yw|Av?a_?RCd9yvI>9XaT}Eu#k&~Vi8RL%OMFT`4_mJGff7l2;pnR0@=1PmzC10D
zt#dV0<R3Q5{37wo8r44w4u+4{zKE_$HE$LtWqv#oZ%w{IM8j>V5OJ{#mWR9F2<Lgf
zo+ldER1&Rkcl4rnJ87EM3puG`?NCllL}iJLaWu#KbFgQTm+$bwO%GF#5lNr=omTvU
zX(sQKYbZ`pXT({er&61s8D_@Aq;$K<E#J!zrbshn1wy#mFu|zkM=V%0Z<3ZCC4|}x
z?X;_qV#v;Y^2kG(^kKcNCH?d-9uM@rBtO0a2Zzt`iTa*kG@#K@AfeJp?UJOe=+h9q
z;KmpwN1?8&LTB|8-R*B2Ff_uSEE@on?1Tn&kdqBHu2)~W^<IRWhbA-qDSH)px7}Ne
zN2Q@|<8LAron2=-A`gKl`2!xn5Xl6#qsh%$e)gP{p~&Od`Lj|E4&Wr8s*QUp<0~bQ
ze&5UQmMoJXPGgj%W$bh5h>Y18bjJdc48$F&4SP=pcqM75!FRV8N1or()cv1acu7ym
zq53e#O}L!&vry2`!W=}`HGYLN>}qlFhNl;aX9m49XG&~(iAQauf1K9TQkC0GoK7F{
z>#vgQiQVZ<j7=qpS|OgxA7Tph8|fVc8b`>*hZ|!l%=_2*d<0VqOpjt=YaI^eN@RO2
zC_n!smMN{6L7<$lA4vYA>-;@=oD&JxW%MdAwS`E8HNnbrLi%AVmer$(u@jqghR;pE
zf>PeG;&ttl1K3SQ-A5E(Y!-!ft@`2eIcnNX23H#zTCvAkz4)+OQ^YZ)isLdypz!Z>
z+Kz~Hmz5|f!)TRR`f`P3|BwiJzbo4^FX<!0M>Qe)qL~?_8>p4E%=1N&sz%?Ri#n1k
zvv-xD5oUz_oRQtKCC<NM#}V4!=jBiq4r2Mja5zFAg}T2>xSMGH90DiE;Z33`5~#{7
z0NDmTIm9nRfRvjR8|Hw%IG|c}2c*ViRvW;yX3|UhDp4uDpM?U~WM@`|;-~ioVUILQ
z$jaGan$OA7<)R~t^H7PqDB92_n;}T_9nX_R`!f{G$T9I=*~0-9*kJV7{7H?Vk?UbH
zaX&)?y3a_mr)Lr><M!@B(`WBYTQCUmI(OAirxEhHnn_KvgL(+~*lNi~$H0>X6nMS)
za$jzV?ba`Q`AHvTVzL?LCSmv)4J7O!j|iWWZlyZ3@#zkKcxRP)w=!6K@nsG--;0oK
zfNz5Ow4io7cC;w@ig@;@Upxo1WJguMOs{^IWA@a&`2&O9YCw6kY(R@){o=Pt$Y7Du
z&vvZ4?UUEpp?R1?lQ7&LfqTIBHi=0KiSDRk7woR)RA0U~uJ9V;LOK2ZIfd(a&zp@c
zDsdhVej=#V|7ttq<C39Cv8%Dtu6R-rz}_DO#^!f;Kr*ZuG4o4+|06_?NL>P@{<x}G
z#3=ORR>W4&=bTVMWabosO?#wqs@t<U4Qq<AQSf?N=wPNTi~ld031#+x3rNQ9#(z70
zhBqXI@U8?_U9IByK6P<7^GvyExONbPR&T)zM$-4?yo&LFjm_KK^^`wp#o{bFB4sd}
z95JLkfBt0G&`5ai9&uRO$cH9*E5~BMf_BoXO(8y^!Z`wVx7PC$wqVCqo7A1Eco1Jf
z%DJI&k9E&ht|X4n+pxEbkudEHfPX1^Gf#-JRa>rdV{7)hOw)Lw3JC3kyWT5~>)j*<
zH@(=rj_H$2`iP!u5%QN@-kKR_(f=NV-3v3Ea_y;ze;9`4csRp`hqYMXD!5l%CNj>~
zwohdnv#Ro39BJYXF4PD;_#TIEGH4_SjV~!~Q-TNYk4TI1jo;mXpmyK9J%0oVg0M;~
ze5zTl;D?(GSl(Y?DfXNXyw50s1DKB$CdgpMTV&2p4t9J@^?<|vjd>Z{jI;!fJz}7U
zIymcg4(D=2Euo1ut>h@D3gQPEw)>$6_cjN)I;-wUJXdwF%tN*Hov6;pum{(LCctPg
z&JQl5`JHl9|F=7}`CWiRpMU0bJ6-{|VYSOonPI>vLes9C^k~DKdpek`(q=RJ?7z;C
zgPNQ5DE9j(qvhA8NK3e_?$Zgfx=ni#og1rUV_dC~`F})S^pLnsrZTmVr-ImyWO=zG
z`6_i{V1+gLQkmGMtu|ule+*Z?eFyg{10e}$Qc%v={8Z~%A0(lg;eYO);w$$O@Yl!o
zleyt|!MLX4-JdogW6Wb$6pbq>Fmk7an$eV9yV@ffzMLx%y51KrLgp0%nV9ixS|(zy
zcr01rt@?8$uglKE_T@NNK73V#lSsFJJE7y4$XLAecPI&?kABI!K96-|#9MVtjLLl?
zS@u#Gw2?Y@=rd<IDSz-bRKt86V<LNTRbep~5$v&aIEXziZKyneckEA8y05#y8=Xvk
zS1EA2TzC-TvSY2(F9tZ{utPC(T1kt8p=_x0rV(>=&&E`!w6)?0(wLCX^`|lN{r)od
zR~AvN8Za^X!wMZ{QkpkBeZ4&)#w3G?eeo?VWP8sAB~JHTr+-9NaaI;Q7T~k3t^g#h
zDan;b!RCfj+Td{LR6B(n#u3AhYG3nC2;@Bnlv=e^$b2p0cviZZcgTg5M@+@RM`pf$
ztUUX*sA9)gOQDywNnJ2~%g@ijfRm+A`3lbTVCViqLw~vq*isL4E{4}49NjiF-8B#d
zb$gYsOiCmt{(tczoVIi{VMCmquTWBK6VlBg)S<czE`@l+eWwg6q!9mnC&vBvR`E-~
z7x`eXBp{j)GF_&}M`pO-%Q#@WE0JC!pSw`<QvMsoiV(88c)tVWKzTx>(YA&3EmRY&
zNF6UbB-?Y!A;49e^v0GQM|`a5!hr?$$^azY(2wQ6j(@C8htzOw8i!j$%rQs>9-nPT
zGe!&AL+gEUvlkuiekC8GUG^nSRViw&B}cadt}&X2f=$hu@AI-A!Ze3o6Z`|_()*j5
zkRant##Iwjaxu7Mw&9B99;4m;6)-S3{#To<+S5u#RF*Ej?$W<>^h3i0I<GXPdA|jU
z;7Wa$XMY_Q^z?ckOr=O=V<2j<YjJ$LW6<o<1jTM;b!LDgtO54b8Huk<-`lhQI<}hD
zlo%#%b2A_=Q_tF7w<yjKsC&Y2OKW<8OyFCpKdqBjWGOtPPL-7@E4YScEXvz!({II|
zR>rU~JE;KA&V&-{#0D#mKQ9lE{Fw@er@lmYt$){!o}&lJ>m45(UMsi)d{{X*MX46x
zPgdyK`ho1F$X^cX4C97(-2<G=%wzhejC|W|)QzS62b+z|m*V=1>;m*TP@efJWV|m@
zhMxjyc^c#ITtkAHG1<+Oqxpcp9_+_l=eQx#QUUrMKm!tYeYVJAamP9^0F9#NVd5kR
zUw@#qfx#J$m4+=~-~}|#Pv|Da)*`jgpWBdB8A?`PREphiFg6NBe^jxC!Yr2HlyCP8
z)gx?E37O}3%hXNY-9^&-FbOgfw1`@l6Hm<RZK<6F5xE?vxIw4kPYA5;Pc#H$-33gB
zv}yCda`vq3)5y2S@jvS&9P?h-`_{wO9Dg(Gmgk`NYvbJ+MBe`RnqB4ev#xroi4#G;
z7Kj?;-%d(XwTND#`y570^|Yxi2Id(Os{EsA1kFM!(&QXmz`k<!@^qz{M}Hf5Tl0KR
zdA8@9%|A@Oz}9whyvltg_Sg#`X^5!5+fAQql7K?^^KoGEF)_5z<Gbj!3j9tI(SLHq
zMt{)&0H6*400sa60GI^;01*HH02^e?7gi$qV0Q%o0Cxod03fgd;D%x}=GOunCx+c%
z0;DhnK@mV80SgBTJ;4%grK?hsFbkzB11Ny<2mr+T&aeys07L$wb^*HuLFb{*00001
z3GITSFyr9!TyFyoHFy9*hlb@Roqzt?3d*A=sr|b<3Trb1mwuGqSRRbb42)L-geo>u
z{vLu~I1xAx=R@)~bQX`fb~M%hqLOw$tCqv#;SkaRGs_A5*axdcU~HRU4-M{nKR+-A
znG^RV)i8f^z>v!~M>VFB4S|jU1+aN1$jl4Y4F6$m)*;ipu!d2Ex`;mCV}I+m&P+gU
zR>CN2K3KU>xD^M^xjz?W;cxC)ek~wN8al6XAx2`73t}MO<tJk?SzkLKzzZ+^F#>QH
z`h`SVyNL2Pd3zxidQSs21$o|5`JD@lyL_eBAUZz~=gr6JiYfjTcU>Hf%yV9Df#a(T
zQswt=+tBYfbORFMYT!Ozr+)_=Z~lur(eizy-92a=qTIq-jZW5Jn4hcy`GL623SNg9
z1L5BeWFd&m08hAiukt3(WanZNyW8-xF8w@|qFhz_*UO6gXz=FKj$H*#EBl?hojJVF
zACU*&di6!<kVCJScdQr@O>Tx#U<j?V^I;x<d3>>5<mj+Wa`OhFJ%6vi@;@*&;bG%y
z<MLq@f!cnW_ye+o_q-Z&f)Ka5l}&$B=aUM{|H^J$`77WXJ`Pa471Byd?qO*7U8)L~
zE2|1f1QWHZl2`h8vomEcuhcxnlrF5;U2$d`{HmSf6t|(YXF_wvi^s>#UA+W+cDN8a
z`aCk9(ozf)Z)_UT<9|%Tuae4htEEK6`aDL-qhosofYN!`<#wba)xl|KM#iI~M;GO=
ziwMNieeqQcy%BERiFVzwD(^%&HCnBR>J0u3=9{MHHgcRksF{=?9!q-&w+i(Oq}K%e
zPLZRx0LCtjVMfZ;Yw~Jk&b>PW(~U7g!xC36JxFr~Z3CemUI=hWFVfxX9eTGxD+HYa
I1egT?0LI0<k^lez

delta 113
zcmX>zQ~b{>QC}`zUakNJ1_oanZ7D_|{T~XL8Kf9|GV@9+6wLI@^$ZPkE6hyFjCCs#
z^K$c33>g?$7&sZiGmBD-GZKrkf%-roU}Nug)@A|rb^&%qAZ7w$W*}zSF2K%Okq-d<
Ch9CO?

diff --git a/tests/cfgs/default/result/custom_rules_same-ip_multiple_ports.pcapng.out b/tests/cfgs/default/result/custom_rules_same-ip_multiple_ports.pcapng.out
index 2a0ca4adadf..6cbf23f118d 100644
--- a/tests/cfgs/default/result/custom_rules_same-ip_multiple_ports.pcapng.out
+++ b/tests/cfgs/default/result/custom_rules_same-ip_multiple_ports.pcapng.out
@@ -27,6 +27,6 @@ CustomProtocolC	3	222	1
 
 Acceptable                       8 592           3            
 
-	1	TCP 192.168.1.245:56866 -> 3.3.3.3:443 [proto: 91.417/TLS.CustomProtocolA][IP: 417/CustomProtocolA][Encrypted][Confidence: Match by custom rule][DPI packets: 1][cat: Web/5][3 pkts/222 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][3.05 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+	1	TCP 192.168.1.245:56866 -> 3.3.3.3:443 [proto: 91.420/TLS.CustomProtocolA][IP: 420/CustomProtocolA][Encrypted][Confidence: Match by custom rule][DPI packets: 1][cat: Web/5][3 pkts/222 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][3.05 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	2	TCP 192.168.1.245:58288 -> 3.3.3.3:446 [proto: 800/CustomProtocolC][IP: 800/CustomProtocolC][ClearText][Confidence: Match by custom rule][DPI packets: 1][3 pkts/222 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][3.04 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
-	3	TCP 192.168.1.245:59682 -> 3.3.3.3:444 [proto: 418/CustomProtocolB][IP: 418/CustomProtocolB][ClearText][Confidence: Match by custom rule][DPI packets: 1][2 pkts/148 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][1.02 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+	3	TCP 192.168.1.245:59682 -> 3.3.3.3:444 [proto: 421/CustomProtocolB][IP: 421/CustomProtocolB][ClearText][Confidence: Match by custom rule][DPI packets: 1][2 pkts/148 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][1.02 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
diff --git a/tests/cfgs/default/result/sites.pcapng.out b/tests/cfgs/default/result/sites.pcapng.out
index 6ebf7ae9238..4b7ee069d7c 100644
--- a/tests/cfgs/default/result/sites.pcapng.out
+++ b/tests/cfgs/default/result/sites.pcapng.out
@@ -1,10 +1,10 @@
 Guessed flow protos:	4
 
-DPI Packets (TCP):	300	(5.45 pkts/flow)
-DPI Packets (UDP):	3	(1.00 pkts/flow)
+DPI Packets (TCP):	323	(5.47 pkts/flow)
+DPI Packets (UDP):	4	(1.00 pkts/flow)
 Confidence Match by port    : 4 (flows)
-Confidence DPI              : 54 (flows)
-Num dissector calls: 68 (1.17 diss/flow)
+Confidence DPI              : 59 (flows)
+Num dissector calls: 73 (1.16 diss/flow)
 LRU cache ookla:      0/0/0 (insert/search/found)
 LRU cache bittorrent: 0/12/0 (insert/search/found)
 LRU cache zoom:       0/0/0 (insert/search/found)
@@ -13,17 +13,17 @@ LRU cache tls_cert:   0/4/0 (insert/search/found)
 LRU cache mining:     0/4/0 (insert/search/found)
 LRU cache msteams:    1/1/1 (insert/search/found)
 LRU cache stun_zoom:  0/0/0 (insert/search/found)
-Automa host:          72/54 (search/found)
-Automa domain:        72/0 (search/found)
+Automa host:          77/59 (search/found)
+Automa domain:        77/0 (search/found)
 Automa tls cert:      1/0 (search/found)
 Automa risk mask:     0/0 (search/found)
-Automa common alpns:  98/98 (search/found)
+Automa common alpns:  107/107 (search/found)
 Patricia risk mask:   6/0 (search/found)
-Patricia risk mask IPv6: 0/0 (search/found)
+Patricia risk mask IPv6: 2/0 (search/found)
 Patricia risk:        0/0 (search/found)
-Patricia risk IPv6:   4/0 (search/found)
-Patricia protocols:   86/34 (search/found)
-Patricia protocols IPv6: 4/4 (search/found)
+Patricia risk IPv6:   6/0 (search/found)
+Patricia protocols:   90/36 (search/found)
+Patricia protocols IPv6: 7/5 (search/found)
 
 HTTP	14	1040	4
 Outlook	9	5954	1
@@ -69,10 +69,13 @@ AccuWeather	30	8562	1
 GoogleClassroom	1	1292	1
 ElectronicArts	16	6539	2
 HuaweiCloud	50	35677	3
+Bluesky	20	14946	3
+Mastodon	6	4819	1
+Threads	1	1399	1
 
 Safe                           106 49477         9            
 Acceptable                     175 99930         22           
-Fun                            352 183233        26           
+Fun                            379 204397        31           
 Potentially Dangerous             4 2225          1            
 
 JA3 Host Stats: 
@@ -80,13 +83,14 @@ JA3 Host Stats:
 	1	 192.168.1.128            	 5      
 	2	 192.168.12.169           	 2      
 	3	 192.168.1.245            	 1      
-	4	 2001:b07:a3d:c112:c044:a6d4:80d:5d55 	 1      
-	5	 192.168.1.250            	 1      
-	6	 192.168.88.171           	 3      
-	7	 192.168.88.231           	 1      
-	8	 192.168.1.227            	 1      
-	9	 192.168.1.123            	 1      
-	10	 2001:b07:a3d:c112:9a00:ba78:86b1:e177 	 1      
+	4	 2001:b07:a3d:c112:6ea5:ab52:9230:ba5 	 2      
+	5	 2001:b07:a3d:c112:c044:a6d4:80d:5d55 	 1      
+	6	 192.168.1.250            	 1      
+	7	 192.168.88.171           	 3      
+	8	 192.168.88.231           	 1      
+	9	 192.168.1.227            	 1      
+	10	 192.168.1.123            	 1      
+	11	 2001:b07:a3d:c112:9a00:ba78:86b1:e177 	 1      
 
 
 	1	TCP 192.168.1.250:39890 <-> 45.82.241.51:80 [proto: 7.261/HTTP.Likee][IP: 0/Unknown][ClearText][Confidence: DPI][DPI packets: 6][cat: SocialNetwork/6][58 pkts/4414 bytes <-> 54 pkts/74431 bytes][Goodput ratio: 22/96][182.93 sec][Hostname/SNI: videosnap.like.video][bytes ratio: -0.888 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 58/40 1449/1478 252/226][Pkt Len c2s/s2c min/avg/max/stddev: 60/60 76/1378 244/1514 52/370][URL: videosnap.like.video/eu_live/5uz/1YOmxT.webp?type=8&resize=1&dw=360][StatusCode: 200][Content-Type: image/webp][Server: openresty][User-Agent: Like-Android][PLAIN TEXT (GET /eu)][Plen Bins: 0,0,0,0,0,8,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,3,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,85,0,0]
@@ -107,43 +111,48 @@ JA3 Host Stats:
 	16	TCP 192.168.1.128:43412 <-> 151.101.193.73:443 [proto: 91.246/TLS.Bloomberg][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Cloud/13][3 pkts/816 bytes <-> 6 pkts/5140 bytes][Goodput ratio: 75/92][0.04 sec][Hostname/SNI: www.bloomberg.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: h2][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.726 (Download)][IAT c2s/s2c min/avg/max/stddev: 10/0 15/6 20/20 5/8][Pkt Len c2s/s2c min/avg/max/stddev: 74/74 272/857 583/1406 223/565][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: www.bloomberg.com,api.businessweek.com,api.bwbx.io,assets.bwbx.io,byzantium.bloomberg.com,cdn-mobapi.bloomberg.com,cdn-videos.bloomberg.com,cdn.gotraffic.net,charts.bloomberg.com,embeds.bloomberg.com,fastly.bloomberg.tv,feeds.bloomberg.com,fonts.gotraffic.net,staging-assets.bwbx.io,nav.bloomberg.com,sponsored.bloomberg.com,spotlight.bloomberg.com,tictoc.video,www.bbthat.com,www.bloomberg.co.jp,www.bloomberg.co.jp.shared.bloomberga.com,www.bloomberg.com.shared.bloomberga.com,www.bloombergview.com,www.citylab.com,www.citylab.com.shared.bloomberga.com,www.quicktake.video,www.tictoc.video,cdn-api.cmobile.bloomberg.com][JA3S: 16c0b3e6a7b8173c16d944cfeaeee9cf][Issuer: C=US, O=DigiCert Inc, CN=DigiCert TLS RSA SHA256 2020 CA1][Subject: C=US, ST=New York, L=New York, O=Bloomberg LP, CN=www.bloomberg.com][Certificate SHA-1: 88:4A:85:34:1D:E6:C0:BE:5E:C6:14:BB:BA:94:A3:55:92:BA:95:82][Firefox][Validity: 2022-02-22 00:00:00 - 2023-03-24 23:59:59][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256][Plen Bins: 0,0,14,0,0,0,0,0,14,0,0,0,0,0,14,0,14,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,42,0,0,0,0,0,0]
 	17	TCP 192.168.1.128:39828 <-> 40.97.160.2:443 [proto: 91.21/TLS.Outlook][IP: 21/Outlook][Encrypted][Confidence: DPI][DPI packets: 7][cat: Email/3][3 pkts/857 bytes <-> 6 pkts/5097 bytes][Goodput ratio: 79/93][0.55 sec][Hostname/SNI: outlook.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.712 (Download)][IAT c2s/s2c min/avg/max/stddev: 178/0 184/74 190/189 6/90][Pkt Len c2s/s2c min/avg/max/stddev: 74/66 286/850 571/1514 209/672][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: *.internal.outlook.com,*.outlook.com,outlook.com,office365.com,*.office365.com,*.outlook.office365.com,*.office.com,outlook.office.com,substrate.office.com,attachment.outlook.live.net,attachment.outlook.office.net,attachment.outlook.officeppe.net,attachments.office.net,*.clo.footprintdns.com,*.nrb.footprintdns.com,ccs.login.microsoftonline.com,ccs-sdf.login.microsoftonline.com,substrate-sdf.office.com,attachments-sdf.office.net,*.live.com,mail.services.live.com,hotmail.com,*.hotmail.com][JA3S: 71d9ce75f347e6cf54268d7114ae6925][Issuer: C=US, O=DigiCert Inc, CN=DigiCert Cloud Services CA-1][Subject: C=US, ST=Washington, L=Redmond, O=Microsoft Corporation, CN=outlook.com][Certificate SHA-1: 4E:39:B4:13:4B:8C:77:57:7D:80:3D:76:40:E8:88:22:05:00:1C:58][Firefox][Validity: 2021-12-22 00:00:00 - 2022-12-22 23:59:59][Cipher: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384][Plen Bins: 0,14,0,0,14,0,0,0,0,0,14,0,0,0,0,0,14,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,42,0,0]
 	18	TCP 192.168.1.245:46174 <-> 5.61.23.30:443 [proto: 91/TLS][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Web/5][10 pkts/2084 bytes <-> 10 pkts/3525 bytes][Goodput ratio: 68/82][0.23 sec][Hostname/SNI: 732231.ms.ok.ru][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.257 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 17/24 46/47 22/23][Pkt Len c2s/s2c min/avg/max/stddev: 66/60 208/352 905/2236 268/643][TLSv1.2][JA3C: b5001237acdf006056b409cc433726b0][JA4: t13d1715h2_5b57614c22b0_5c2c66f702b0][ServerNames: *.ok.ru,odnoklassniki.ru,ok.me,okl.lt,oklive.app,tamtam.chat,tt.me,*.odnoklassniki.ru,*.ok.me,*.okl.lt,*.oklive.app,*.tamtam.chat,*.tt.me,*.ms.ok.ru,ms.ok.ru,ok.ru][JA3S: 4ef1b297bb817d8212165a86308bac5f][Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign RSA OV SSL CA 2018][Subject: C=RU, ST=Moscow, L=Moscow, O=VK LLC, CN=*.ok.ru][ECH: version 0xfe0d][Certificate SHA-1: 66:20:81:B9:D0:20:96:BF:13:93:E6:76:FF:C4:19:BD:F6:29:0E:A3][Firefox][Validity: 2023-10-04 08:36:03 - 2024-10-02 09:21:02][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256][Plen Bins: 25,0,12,0,0,0,0,12,0,0,0,0,0,12,12,0,0,0,0,0,0,0,0,0,0,0,12,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,12]
-	19	TCP 192.168.1.128:57878 <-> 52.113.194.132:443 [proto: 91.250/TLS.Teams][IP: 125/Skype_Teams][Encrypted][Confidence: DPI][DPI packets: 6][cat: Collaborative/15][3 pkts/857 bytes <-> 5 pkts/4534 bytes][Goodput ratio: 79/94][0.08 sec][Hostname/SNI: teams.office.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: h2][TLS Supported Versions: GREASE;TLSv1.3;TLSv1.2][bytes ratio: -0.682 (Download)][IAT c2s/s2c min/avg/max/stddev: 20/0 32/16 44/36 12/16][Pkt Len c2s/s2c min/avg/max/stddev: 74/66 286/907 571/1514 209/591][TLSv1.2][JA3C: cd08e31494f9531f560d64c695473da9][JA4: t13d1516h2_8daaf6152771_e5627efa2ab1][ServerNames: teams.office.com][JA3S: 104071bf77c5f0d7bae5f17542ba9428][Issuer: C=US, O=Microsoft Corporation, CN=Microsoft RSA TLS CA 01][Subject: CN=teams.office.com][Certificate SHA-1: 27:20:65:85:4C:34:BF:09:F0:25:56:B8:50:A7:4D:38:8C:45:82:80][Chrome][Validity: 2021-09-06 22:02:06 - 2022-09-06 22:02:06][Cipher: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,16,0,0,0,0,0,16,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,34,0,0]
-	20	TCP 192.168.1.128:57336 <-> 23.1.68.189:443 [proto: 91.231/TLS.Playstation][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Game/8][3 pkts/849 bytes <-> 5 pkts/4459 bytes][Goodput ratio: 76/92][0.07 sec][Hostname/SNI: www.playstation.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: h2][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.680 (Download)][IAT c2s/s2c min/avg/max/stddev: 23/0 24/12 24/23 0/12][Pkt Len c2s/s2c min/avg/max/stddev: 74/74 283/892 583/1514 218/598][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: playstation.com,webforms.playstation.com,www.playstation.com][JA3S: 19e4a55cecd087d9ebf88da03db13a0f][Issuer: C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA][Subject: C=US, ST=California, L=San Mateo, O=SONY INTERACTIVE ENTERTAINMENT LLC, CN=www.playstation.com][Certificate SHA-1: 19:BC:48:84:B7:B0:91:46:45:D5:DD:3B:B5:8D:8E:45:E8:42:1A:8A][Firefox][Validity: 2021-11-19 00:00:00 - 2022-11-18 23:59:59][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256][Plen Bins: 0,0,0,16,0,0,0,0,16,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,34,0,0]
-	21	TCP 192.168.1.128:45014 <-> 129.226.107.210:443 [proto: 91.202/TLS.IFLIX][IP: 285/Tencent][Encrypted][Confidence: DPI][DPI packets: 6][cat: Video/26][3 pkts/792 bytes <-> 5 pkts/4228 bytes][Goodput ratio: 77/93][0.97 sec][Hostname/SNI: www.iflix.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.684 (Download)][IAT c2s/s2c min/avg/max/stddev: 324/0 325/162 326/326 1/163][Pkt Len c2s/s2c min/avg/max/stddev: 74/66 264/846 571/1486 219/582][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: jan18-2022-1.ias.iflix.com,access.iflix.com,accounts.iflix.com,debugaccess.iflix.com,hwvip.iflix.com,iflix.com,live.iflix.com,pbaccess.iflix.com,pbdebugaccess.iflix.com,test.iflix.com,testupload.iflix.com,tv.iflix.com,upload.iflix.com,vplay.iflix.com,www.iflix.com][JA3S: 00447ab319e9d94ba2b4c1248e155917][Issuer: C=US, O=DigiCert Inc, CN=DigiCert Secure Site CN CA G3][Subject: C=CN, ST=Guangdong Province, L=Shenzhen, O=Shenzhen Tencent Computer Systems Company Limited, CN=jan18-2022-1.ias.iflix.com][Certificate SHA-1: 6F:FD:C1:38:F4:2A:0B:65:51:9C:0E:11:86:63:B5:58:52:FC:96:B0][Firefox][Validity: 2022-01-18 00:00:00 - 2023-01-17 23:59:59][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256][Plen Bins: 0,0,16,0,0,0,0,0,16,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,34,0,0,0]
-	22	TCP 192.168.1.128:56468 <-> 151.101.192.92:443 [proto: 91.186/TLS.Vevo][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Music/25][3 pkts/816 bytes <-> 5 pkts/4204 bytes][Goodput ratio: 75/92][0.04 sec][Hostname/SNI: vevo.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.675 (Download)][IAT c2s/s2c min/avg/max/stddev: 10/0 14/7 18/18 4/7][Pkt Len c2s/s2c min/avg/max/stddev: 74/74 272/841 583/1406 223/551][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: *.cache.vevo.com,*.cache.vevodev.com,*.cache.vevoprd.com,*.cache.vevostg.com,*.vevodev.com,*.vevoprd.com,*.vevostg.com,stg.vevo.ly,vevo.com,vevo.ly,vevo.pl,vevo.tv,vevoapi.com,vevocdn.com,vevolive.tv,vevosubmit.com,www.vevo.ly,www.vevo.pl,*.vevo.com,*.vevo.ly,*.vevo.pl,*.vevo.tv,*.vevoapi.com,*.vevocdn.com,*.vevolive.tv,*.vevosubmit.com][JA3S: 00447ab319e9d94ba2b4c1248e155917][Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2020][Subject: CN=*.cache.vevo.com][Certificate SHA-1: ED:55:58:0E:19:94:FE:95:93:86:88:FE:30:27:DF:43:EB:74:17:C2][Firefox][Validity: 2021-06-01 16:55:32 - 2022-07-03 16:55:31][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256][Plen Bins: 0,0,16,0,0,0,0,0,16,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,34,0,0,0,0,0,0]
-	23	TCP [2001:b07:a3d:c112:9a00:ba78:86b1:e177]:48594 <-> [2001:67c:4e8:f004::9]:443 [proto: 91.185/TLS.Telegram][IP: 185/Telegram][Encrypted][Confidence: DPI][DPI packets: 6][cat: Chat/9][3 pkts/930 bytes <-> 3 pkts/3890 bytes][Goodput ratio: 71/93][0.04 sec][Hostname/SNI: web.telegram.org][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.614 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 8/9 17/18 8/9][Pkt Len c2s/s2c min/avg/max/stddev: 86/86 310/1297 750/3710 311/1706][TLSv1.3][JA3C: b5001237acdf006056b409cc433726b0][JA4: t13d1715h2_5b57614c22b0_5c2c66f702b0][JA3S: 15af977ce25de452b96affa2addb1036][ECH: version 0xfe0d][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50]
-	24	TCP 192.168.1.128:53978 <-> 208.85.40.158:443 [proto: 91.187/TLS.Pandora][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Streaming/17][3 pkts/849 bytes <-> 5 pkts/3932 bytes][Goodput ratio: 76/91][0.68 sec][Hostname/SNI: pandora.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: h2][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.645 (Download)][IAT c2s/s2c min/avg/max/stddev: 170/0 254/127 339/173 84/73][Pkt Len c2s/s2c min/avg/max/stddev: 74/74 283/786 583/1514 218/607][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: *.pandora.com,pandora.com][JA3S: 7047b9d842ee4b3fba6a86353828c915][Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=GeoTrust TLS RSA CA G1][Subject: C=US, ST=California, L=Oakland, O=Pandora Media, LLC, CN=*.pandora.com][Certificate SHA-1: 40:BB:03:6C:E8:D4:7C:D7:72:59:2F:8D:DB:4B:64:4F:8F:C4:EB:AF][Firefox][Validity: 2021-05-12 00:00:00 - 2022-06-12 23:59:59][Cipher: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384][Plen Bins: 0,0,0,16,0,0,0,0,0,0,16,16,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,34,0,0]
-	25	TCP 192.168.88.231:49950 <-> 159.153.191.240:443 [proto: 91.389/TLS.ElectronicArts][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 10][cat: Game/8][5 pkts/807 bytes <-> 5 pkts/3375 bytes][Goodput ratio: 64/91][< 1 sec][Hostname/SNI: accounts.ea.com][TLS Supported Versions: TLSv1.3;TLSv1.2;TLSv1.1;TLSv1][bytes ratio: -0.614 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 72/36 142/145 70/63][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 161/675 571/1384 205/599][Risk: ** Weak TLS Cipher **** TLS (probably) Not Carrying HTTPS **][Risk Score: 110][Risk Info: No ALPN / Cipher TLS_RSA_WITH_AES_256_CBC_SHA][TLSv1.2][JA3C: 57fbe0aefee44901190849b0e877a5e1][JA4: t13d571100_131602cb7446_6c96259584c4][ServerNames: accounts.ea.com][JA3S: 7b6819ed58e8d8415604b7dfcef92d55 (WEAK)][Issuer: C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA][Subject: C=US, ST=CALIFORNIA, L=Redwood City, O=Electronic Arts, Inc., CN=accounts.ea.com][Certificate SHA-1: 6E:9C:F6:59:DD:52:AA:1B:73:A6:B5:29:71:59:89:7D:B5:46:67:3D][Firefox][Validity: 2023-04-18 00:00:00 - 2024-05-18 23:59:59][Cipher: TLS_RSA_WITH_AES_256_CBC_SHA][PLAIN TEXT (3.digicert.com/DigiCertGlobalRo)][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,25,0,0,25,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0]
-	26	TCP [2001:b07:a3d:c112:9a00:ba78:86b1:e177]:48624 <-> [2001:67c:4e8:f004::9]:443 [proto: 91.185/TLS.Telegram][IP: 185/Telegram][Encrypted][Confidence: DPI][DPI packets: 6][cat: Chat/9][4 pkts/1011 bytes <-> 3 pkts/2682 bytes][Goodput ratio: 65/90][0.04 sec][Hostname/SNI: telegram.me][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.452 (Download)][IAT c2s/s2c min/avg/max/stddev: 1/0 12/10 18/20 8/10][Pkt Len c2s/s2c min/avg/max/stddev: 86/86 253/894 745/2502 284/1137][TLSv1.3][JA3C: b5001237acdf006056b409cc433726b0][JA4: t13d1715h2_5b57614c22b0_5c2c66f702b0][JA3S: 15af977ce25de452b96affa2addb1036][ECH: version 0xfe0d][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50]
-	27	UDP 192.168.1.128:36832 <-> 142.250.181.238:443 [proto: 188.126/QUIC.Google][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 1][cat: Web/5][1 pkts/1399 bytes <-> 1 pkts/1399 bytes][Goodput ratio: 97/97][0.02 sec][Hostname/SNI: plus.google.com][(Advertised) ALPNs: h3][TLS Supported Versions: TLSv1.3][TLSv1.3][QUIC ver: V-1][JA3C: b719940c5ab9a3373cb4475d8143ff88][JA4: q13d0314h][Firefox][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,100,0,0,0,0,0]
-	28	UDP 192.168.1.128:38642 <-> 216.58.212.142:443 [proto: 188.126/QUIC.Google][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 1][cat: Web/5][1 pkts/1399 bytes <-> 1 pkts/1399 bytes][Goodput ratio: 97/97][0.03 sec][Hostname/SNI: hangouts.google.com][(Advertised) ALPNs: h3][TLS Supported Versions: TLSv1.3][TLSv1.3][QUIC ver: V-1][JA3C: 2a18e6bf307f97c5e27f0ab407dc65db][JA4: q13d0315h][Firefox][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,100,0,0,0,0,0]
-	29	TCP 192.168.88.171:55280 <-> 124.237.225.21:443 [proto: 91.54/TLS.iQIYI][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 7][cat: Streaming/17][3 pkts/691 bytes <-> 4 pkts/1680 bytes][Goodput ratio: 75/86][< 1 sec][Hostname/SNI: msg.qy.net][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2;TLSv1.1;TLSv1][bytes ratio: -0.417 (Download)][IAT c2s/s2c min/avg/max/stddev: 295/2 296/198 297/297 1/138][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 230/420 571/1494 241/620][TLSv1.3][JA3C: f436b9416f37d134cadd04886327d3e8][JA4: t13d3113h2_e8f1e7e78f70_b23652925e07][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	30	TCP 192.168.88.171:55468 <-> 184.86.2.194:443 [proto: 91.54/TLS.iQIYI][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Streaming/17][3 pkts/742 bytes <-> 3 pkts/1620 bytes][Goodput ratio: 76/89][0.05 sec][Hostname/SNI: stc.iqiyipic.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: GREASE;TLSv1.3;TLSv1.2][bytes ratio: -0.372 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/1 12/12 23/23 12/11][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 247/540 622/1494 265/675][TLSv1.3][JA3C: 2aafde70b049185ef1cca0d7f821a8d7][JA4: t13d1516h2_8daaf6152771_02713d6af862][JA3S: 15af977ce25de452b96affa2addb1036][ECH: version 0xfe0d][Chrome][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	31	TCP 192.168.88.231:33920 <-> 185.5.161.203:443 [proto: 91.389/TLS.ElectronicArts][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Game/8][3 pkts/723 bytes <-> 3 pkts/1634 bytes][Goodput ratio: 71/87][0.08 sec][Hostname/SNI: origin-a.akamaihd.net][TLS Supported Versions: TLSv1.3;TLSv1.2;TLSv1.1;TLSv1][bytes ratio: -0.387 (Download)][IAT c2s/s2c min/avg/max/stddev: 6/19 16/24 26/28 10/4][Pkt Len c2s/s2c min/avg/max/stddev: 66/66 241/545 583/1494 242/671][Risk: ** TLS (probably) Not Carrying HTTPS **][Risk Score: 10][Risk Info: No ALPN][TLSv1.3][JA3C: 57fbe0aefee44901190849b0e877a5e1][JA4: t13d571100_131602cb7446_6c96259584c4][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
-	32	TCP 192.168.88.171:49217 <-> 54.208.106.218:443 [proto: 91.59/TLS.AdobeConnect][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 6][cat: Video/26][3 pkts/691 bytes <-> 3 pkts/1620 bytes][Goodput ratio: 75/89][0.28 sec][Hostname/SNI: meet27083742.adobeconnect.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: GREASE;TLSv1.3;TLSv1.2][bytes ratio: -0.402 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 69/70 138/139 69/70][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 230/540 571/1494 241/675][TLSv1.3][JA3C: cd08e31494f9531f560d64c695473da9][JA4: t13d1516h2_8daaf6152771_e5627efa2ab1][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Chrome][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	33	TCP 192.168.88.171:55272 <-> 116.211.202.129:443 [proto: 91.54/TLS.iQIYI][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Streaming/17][3 pkts/691 bytes <-> 3 pkts/1620 bytes][Goodput ratio: 75/89][0.59 sec][Hostname/SNI: opportunarch.iqiyi.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2;TLSv1.1;TLSv1][bytes ratio: -0.402 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 144/150 288/299 144/150][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 230/540 571/1494 241/675][TLSv1.3][JA3C: f436b9416f37d134cadd04886327d3e8][JA4: t13d3113h2_e8f1e7e78f70_b23652925e07][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	34	TCP 192.168.1.128:40832 <-> 2.17.141.49:443 [proto: 91.179/TLS.eBay][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Shopping/27][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: www.ebay.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	35	TCP 192.168.1.128:42884 <-> 185.125.190.21:443 [proto: 91.169/TLS.UbuntuONE][IP: 169/UbuntuONE][Encrypted][Confidence: DPI][DPI packets: 4][cat: Cloud/13][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.06 sec][Hostname/SNI: assets.ubuntu.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	36	TCP 192.168.1.128:45898 <-> 15.160.39.187:443 [proto: 91.254/TLS.AppleSiri][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: VirtAssistant/32][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: guzzoni.apple.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	37	TCP 192.168.1.128:46264 <-> 23.51.246.65:443 [proto: 91.231/TLS.Playstation][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Game/8][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.03 sec][Hostname/SNI: static.playstation.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	38	TCP 192.168.1.128:48140 <-> 23.1.66.79:443 [proto: 91.180/TLS.CNN][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Web/5][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: cdn.cnn.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	39	TCP 192.168.1.128:48902 <-> 2.17.140.63:443 [proto: 91.47/TLS.Xbox][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Game/8][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: account.xbox.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	40	TCP 192.168.1.128:51432 <-> 95.101.195.214:443 [proto: 91.137/TLS.Hulu][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Streaming/17][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.05 sec][Hostname/SNI: hulu.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	41	TCP 192.168.1.128:33664 <-> 108.138.185.106:443 [proto: 91.240/TLS.AmazonVideo][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: Video/26][2 pkts/657 bytes <-> 2 pkts/1568 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: www.primevideo.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
-	42	TCP 192.168.1.128:39934 <-> 104.23.98.190:443 [proto: 91.232/TLS.Pastebin][IP: 220/Cloudflare][Encrypted][Confidence: DPI][DPI packets: 4][cat: Download/7][2 pkts/645 bytes <-> 2 pkts/1580 bytes][Goodput ratio: 80/92][0.04 sec][Hostname/SNI: pastebin.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][Risk: ** Unsafe Protocol **][Risk Score: 10][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	43	TCP 192.168.1.128:43150 <-> 108.138.199.67:443 [proto: 91.210/TLS.Deezer][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: Music/25][2 pkts/657 bytes <-> 2 pkts/1568 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: deezer.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
-	44	TCP 192.168.1.128:51806 <-> 18.66.196.102:443 [proto: 91.234/TLS.SoundCloud][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: Music/25][2 pkts/657 bytes <-> 2 pkts/1568 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: soundcloud.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
-	45	TCP 192.168.1.128:53998 <-> 172.65.251.78:443 [proto: 91.262/TLS.GitLab][IP: 220/Cloudflare][Encrypted][Confidence: DPI][DPI packets: 4][cat: Collaborative/15][2 pkts/645 bytes <-> 2 pkts/1580 bytes][Goodput ratio: 80/92][0.05 sec][Hostname/SNI: www.gitlab.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
-	46	TCP 192.168.1.128:57014 <-> 108.139.210.102:443 [proto: 91.246/TLS.Bloomberg][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: Cloud/13][2 pkts/657 bytes <-> 2 pkts/1568 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: sourcepointcmp.bloomberg.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
-	47	TCP 192.168.1.128:38858 <-> 142.250.180.142:443 [proto: 91.123/TLS.GoogleMaps][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 4][cat: Web/5][2 pkts/657 bytes <-> 2 pkts/1558 bytes][Goodput ratio: 79/91][0.03 sec][Hostname/SNI: maps.google.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
-	48	TCP 192.168.1.128:47122 <-> 35.201.112.136:443 [proto: 91.134/TLS.LastFM][IP: 284/GoogleCloud][Encrypted][Confidence: DPI][DPI packets: 4][cat: Music/25][2 pkts/657 bytes <-> 2 pkts/1558 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: kerve.last.fm][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
-	49	TCP 192.168.1.128:50608 <-> 142.250.185.206:443 [proto: 91/TLS][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 4][cat: Web/5][2 pkts/657 bytes <-> 2 pkts/1558 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: googleplus.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
-	50	TCP 192.168.1.128:56458 <-> 142.250.185.142:443 [proto: 91.217/TLS.GoogleDrive][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 4][cat: Cloud/13][2 pkts/657 bytes <-> 2 pkts/1558 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: drive.google.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
-	51	TCP 192.168.1.128:35054 <-> 31.222.67.112:443 [proto: 91.279/TLS.Badoo][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: SocialNetwork/6][2 pkts/645 bytes <-> 2 pkts/1500 bytes][Goodput ratio: 80/92][0.09 sec][Hostname/SNI: www.badoo.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0]
-	52	TCP 192.168.1.128:46084 <-> 146.75.62.167:443 [proto: 91.195/TLS.Twitch][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Video/26][2 pkts/657 bytes <-> 2 pkts/1480 bytes][Goodput ratio: 79/90][0.05 sec][Hostname/SNI: gql.twitch.tv][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0]
-	53	UDP 192.168.1.123:59102 -> 216.58.209.46:443 [proto: 188.281/QUIC.GoogleClassroom][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 1][cat: Collaborative/15][1 pkts/1292 bytes -> 0 pkts/0 bytes][Goodput ratio: 97/0][< 1 sec][Hostname/SNI: classroom.google.com][(Advertised) ALPNs: h3][TLS Supported Versions: TLSv1.3][User-Agent: Chrome/97.0.4692.99 Windows NT 10.0; Win64; x64][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][TLSv1.3][QUIC ver: V-1][JA3C: a27a03a8478393fe7f8958648bb71ff4][JA4: q13d0310h][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,100,0,0,0,0,0,0,0,0]
-	54	TCP 192.168.12.169:46160 <-> 69.171.250.20:443 [proto: 91.157/TLS.Messenger][IP: 119/Facebook][Encrypted][Confidence: DPI][DPI packets: 4][cat: Chat/9][2 pkts/521 bytes <-> 2 pkts/356 bytes][Goodput ratio: 73/61][0.02 sec][Hostname/SNI: edge-mqtt.facebook.com][(Advertised) ALPNs: h2;h2-fb][TLS Supported Versions: TLSv1.3;TLSv1.3 (Fizz)][TLSv1.3 (Fizz)][JA3C: 44dab16d680ef93487bc16ad23b3ffb1][JA4: t00d0309h2_55b375c5d22e_2d3f7b9fe3d5][JA3S: fcb2d4d0991292272fcb1e464eedfd43][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,50,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
-	55	TCP 192.168.1.128:39036 <-> 69.191.252.15:80 [proto: 7/HTTP][IP: 246/Bloomberg][ClearText][Confidence: Match by port][DPI packets: 8][cat: Web/5][7 pkts/518 bytes <-> 1 pkts/78 bytes][Goodput ratio: 0/0][65.08 sec][bytes ratio: 0.738 (Upload)][IAT c2s/s2c min/avg/max/stddev: 1012/0 10830/0 33535/0 11329/0][Pkt Len c2s/s2c min/avg/max/stddev: 74/78 74/78 74/78 0/0][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
-	56	TCP 192.168.1.128:44954 <-> 34.96.123.111:80 [proto: 7/HTTP][IP: 284/GoogleCloud][ClearText][Confidence: Match by port][DPI packets: 2][cat: Web/5][1 pkts/74 bytes <-> 1 pkts/74 bytes][Goodput ratio: 0/0][0.01 sec][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
-	57	TCP 192.168.1.128:45936 <-> 208.85.40.158:80 [proto: 7/HTTP][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 2][cat: Web/5][1 pkts/74 bytes <-> 1 pkts/74 bytes][Goodput ratio: 0/0][0.17 sec][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
-	58	TCP 192.168.1.128:52070 <-> 18.65.82.67:80 [proto: 7/HTTP][IP: 265/AmazonAWS][ClearText][Confidence: Match by port][DPI packets: 2][cat: Web/5][1 pkts/74 bytes <-> 1 pkts/74 bytes][Goodput ratio: 0/0][0.02 sec][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+	19	TCP 192.168.1.245:55362 <-> 44.218.3.81:443 [proto: 91.411/TLS.Bluesky][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 6][cat: SocialNetwork/6][4 pkts/931 bytes <-> 3 pkts/4550 bytes][Goodput ratio: 71/95][0.19 sec][Hostname/SNI: bsky.social][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.660 (Download)][IAT c2s/s2c min/avg/max/stddev: 1/0 64/48 96/97 45/48][Pkt Len c2s/s2c min/avg/max/stddev: 66/66 233/1517 725/4410 284/2046][TLSv1.3][JA3C: b5001237acdf006056b409cc433726b0][JA4: t13d1715h2_5b57614c22b0_5c2c66f702b0][JA3S: f4febc55ea12b31ae17cfb7e614afda8][ECH: version 0xfe0d][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50]
+	20	TCP 192.168.1.245:50142 <-> 3.136.49.254:443 [proto: 91.411/TLS.Bluesky][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 6][cat: SocialNetwork/6][4 pkts/928 bytes <-> 3 pkts/4550 bytes][Goodput ratio: 71/95][0.24 sec][Hostname/SNI: bsky.app][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.661 (Download)][IAT c2s/s2c min/avg/max/stddev: 1/0 78/60 117/119 55/60][Pkt Len c2s/s2c min/avg/max/stddev: 66/66 232/1517 722/4410 283/2046][TLSv1.3][JA3C: b5001237acdf006056b409cc433726b0][JA4: t13d1715h2_5b57614c22b0_5c2c66f702b0][JA3S: f4febc55ea12b31ae17cfb7e614afda8][ECH: version 0xfe0d][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50]
+	21	TCP 192.168.1.128:57878 <-> 52.113.194.132:443 [proto: 91.250/TLS.Teams][IP: 125/Skype_Teams][Encrypted][Confidence: DPI][DPI packets: 6][cat: Collaborative/15][3 pkts/857 bytes <-> 5 pkts/4534 bytes][Goodput ratio: 79/94][0.08 sec][Hostname/SNI: teams.office.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: h2][TLS Supported Versions: GREASE;TLSv1.3;TLSv1.2][bytes ratio: -0.682 (Download)][IAT c2s/s2c min/avg/max/stddev: 20/0 32/16 44/36 12/16][Pkt Len c2s/s2c min/avg/max/stddev: 74/66 286/907 571/1514 209/591][TLSv1.2][JA3C: cd08e31494f9531f560d64c695473da9][JA4: t13d1516h2_8daaf6152771_e5627efa2ab1][ServerNames: teams.office.com][JA3S: 104071bf77c5f0d7bae5f17542ba9428][Issuer: C=US, O=Microsoft Corporation, CN=Microsoft RSA TLS CA 01][Subject: CN=teams.office.com][Certificate SHA-1: 27:20:65:85:4C:34:BF:09:F0:25:56:B8:50:A7:4D:38:8C:45:82:80][Chrome][Validity: 2021-09-06 22:02:06 - 2022-09-06 22:02:06][Cipher: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,16,0,0,0,0,0,16,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,34,0,0]
+	22	TCP 192.168.1.128:57336 <-> 23.1.68.189:443 [proto: 91.231/TLS.Playstation][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Game/8][3 pkts/849 bytes <-> 5 pkts/4459 bytes][Goodput ratio: 76/92][0.07 sec][Hostname/SNI: www.playstation.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: h2][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.680 (Download)][IAT c2s/s2c min/avg/max/stddev: 23/0 24/12 24/23 0/12][Pkt Len c2s/s2c min/avg/max/stddev: 74/74 283/892 583/1514 218/598][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: playstation.com,webforms.playstation.com,www.playstation.com][JA3S: 19e4a55cecd087d9ebf88da03db13a0f][Issuer: C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA][Subject: C=US, ST=California, L=San Mateo, O=SONY INTERACTIVE ENTERTAINMENT LLC, CN=www.playstation.com][Certificate SHA-1: 19:BC:48:84:B7:B0:91:46:45:D5:DD:3B:B5:8D:8E:45:E8:42:1A:8A][Firefox][Validity: 2021-11-19 00:00:00 - 2022-11-18 23:59:59][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256][Plen Bins: 0,0,0,16,0,0,0,0,16,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,34,0,0]
+	23	TCP 192.168.1.128:45014 <-> 129.226.107.210:443 [proto: 91.202/TLS.IFLIX][IP: 285/Tencent][Encrypted][Confidence: DPI][DPI packets: 6][cat: Video/26][3 pkts/792 bytes <-> 5 pkts/4228 bytes][Goodput ratio: 77/93][0.97 sec][Hostname/SNI: www.iflix.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.684 (Download)][IAT c2s/s2c min/avg/max/stddev: 324/0 325/162 326/326 1/163][Pkt Len c2s/s2c min/avg/max/stddev: 74/66 264/846 571/1486 219/582][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: jan18-2022-1.ias.iflix.com,access.iflix.com,accounts.iflix.com,debugaccess.iflix.com,hwvip.iflix.com,iflix.com,live.iflix.com,pbaccess.iflix.com,pbdebugaccess.iflix.com,test.iflix.com,testupload.iflix.com,tv.iflix.com,upload.iflix.com,vplay.iflix.com,www.iflix.com][JA3S: 00447ab319e9d94ba2b4c1248e155917][Issuer: C=US, O=DigiCert Inc, CN=DigiCert Secure Site CN CA G3][Subject: C=CN, ST=Guangdong Province, L=Shenzhen, O=Shenzhen Tencent Computer Systems Company Limited, CN=jan18-2022-1.ias.iflix.com][Certificate SHA-1: 6F:FD:C1:38:F4:2A:0B:65:51:9C:0E:11:86:63:B5:58:52:FC:96:B0][Firefox][Validity: 2022-01-18 00:00:00 - 2023-01-17 23:59:59][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256][Plen Bins: 0,0,16,0,0,0,0,0,16,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,34,0,0,0]
+	24	TCP 192.168.1.128:56468 <-> 151.101.192.92:443 [proto: 91.186/TLS.Vevo][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Music/25][3 pkts/816 bytes <-> 5 pkts/4204 bytes][Goodput ratio: 75/92][0.04 sec][Hostname/SNI: vevo.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.675 (Download)][IAT c2s/s2c min/avg/max/stddev: 10/0 14/7 18/18 4/7][Pkt Len c2s/s2c min/avg/max/stddev: 74/74 272/841 583/1406 223/551][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: *.cache.vevo.com,*.cache.vevodev.com,*.cache.vevoprd.com,*.cache.vevostg.com,*.vevodev.com,*.vevoprd.com,*.vevostg.com,stg.vevo.ly,vevo.com,vevo.ly,vevo.pl,vevo.tv,vevoapi.com,vevocdn.com,vevolive.tv,vevosubmit.com,www.vevo.ly,www.vevo.pl,*.vevo.com,*.vevo.ly,*.vevo.pl,*.vevo.tv,*.vevoapi.com,*.vevocdn.com,*.vevolive.tv,*.vevosubmit.com][JA3S: 00447ab319e9d94ba2b4c1248e155917][Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2020][Subject: CN=*.cache.vevo.com][Certificate SHA-1: ED:55:58:0E:19:94:FE:95:93:86:88:FE:30:27:DF:43:EB:74:17:C2][Firefox][Validity: 2021-06-01 16:55:32 - 2022-07-03 16:55:31][Cipher: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256][Plen Bins: 0,0,16,0,0,0,0,0,16,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,34,0,0,0,0,0,0]
+	25	TCP [2001:b07:a3d:c112:9a00:ba78:86b1:e177]:48594 <-> [2001:67c:4e8:f004::9]:443 [proto: 91.185/TLS.Telegram][IP: 185/Telegram][Encrypted][Confidence: DPI][DPI packets: 6][cat: Chat/9][3 pkts/930 bytes <-> 3 pkts/3890 bytes][Goodput ratio: 71/93][0.04 sec][Hostname/SNI: web.telegram.org][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.614 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 8/9 17/18 8/9][Pkt Len c2s/s2c min/avg/max/stddev: 86/86 310/1297 750/3710 311/1706][TLSv1.3][JA3C: b5001237acdf006056b409cc433726b0][JA4: t13d1715h2_5b57614c22b0_5c2c66f702b0][JA3S: 15af977ce25de452b96affa2addb1036][ECH: version 0xfe0d][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50]
+	26	TCP [2001:b07:a3d:c112:6ea5:ab52:9230:ba5]:35968 <-> [2a04:4e42:c00::347]:443 [proto: 91.412/TLS.Mastodon][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: SocialNetwork/6][3 pkts/929 bytes <-> 3 pkts/3890 bytes][Goodput ratio: 71/93][0.01 sec][Hostname/SNI: mastodon.social][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.614 (Download)][IAT c2s/s2c min/avg/max/stddev: 1/1 2/2 2/4 0/2][Pkt Len c2s/s2c min/avg/max/stddev: 86/86 310/1297 749/3710 311/1706][TLSv1.3][JA3C: b5001237acdf006056b409cc433726b0][JA4: t13d1715h2_5b57614c22b0_5c2c66f702b0][JA3S: f4febc55ea12b31ae17cfb7e614afda8][ECH: version 0xfe0d][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50]
+	27	TCP 192.168.1.128:53978 <-> 208.85.40.158:443 [proto: 91.187/TLS.Pandora][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Streaming/17][3 pkts/849 bytes <-> 5 pkts/3932 bytes][Goodput ratio: 76/91][0.68 sec][Hostname/SNI: pandora.com][(Advertised) ALPNs: h2;http/1.1][(Negotiated) ALPN: h2][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.645 (Download)][IAT c2s/s2c min/avg/max/stddev: 170/0 254/127 339/173 84/73][Pkt Len c2s/s2c min/avg/max/stddev: 74/74 283/786 583/1514 218/607][TLSv1.2][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][ServerNames: *.pandora.com,pandora.com][JA3S: 7047b9d842ee4b3fba6a86353828c915][Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=GeoTrust TLS RSA CA G1][Subject: C=US, ST=California, L=Oakland, O=Pandora Media, LLC, CN=*.pandora.com][Certificate SHA-1: 40:BB:03:6C:E8:D4:7C:D7:72:59:2F:8D:DB:4B:64:4F:8F:C4:EB:AF][Firefox][Validity: 2021-05-12 00:00:00 - 2022-06-12 23:59:59][Cipher: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384][Plen Bins: 0,0,0,16,0,0,0,0,0,0,16,16,0,0,0,0,16,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,34,0,0]
+	28	TCP 192.168.88.231:49950 <-> 159.153.191.240:443 [proto: 91.389/TLS.ElectronicArts][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 10][cat: Game/8][5 pkts/807 bytes <-> 5 pkts/3375 bytes][Goodput ratio: 64/91][< 1 sec][Hostname/SNI: accounts.ea.com][TLS Supported Versions: TLSv1.3;TLSv1.2;TLSv1.1;TLSv1][bytes ratio: -0.614 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 72/36 142/145 70/63][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 161/675 571/1384 205/599][Risk: ** Weak TLS Cipher **** TLS (probably) Not Carrying HTTPS **][Risk Score: 110][Risk Info: No ALPN / Cipher TLS_RSA_WITH_AES_256_CBC_SHA][TLSv1.2][JA3C: 57fbe0aefee44901190849b0e877a5e1][JA4: t13d571100_131602cb7446_6c96259584c4][ServerNames: accounts.ea.com][JA3S: 7b6819ed58e8d8415604b7dfcef92d55 (WEAK)][Issuer: C=US, O=DigiCert Inc, CN=DigiCert SHA2 Secure Server CA][Subject: C=US, ST=CALIFORNIA, L=Redwood City, O=Electronic Arts, Inc., CN=accounts.ea.com][Certificate SHA-1: 6E:9C:F6:59:DD:52:AA:1B:73:A6:B5:29:71:59:89:7D:B5:46:67:3D][Firefox][Validity: 2023-04-18 00:00:00 - 2024-05-18 23:59:59][Cipher: TLS_RSA_WITH_AES_256_CBC_SHA][PLAIN TEXT (3.digicert.com/DigiCertGlobalRo)][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,25,0,0,25,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0]
+	29	TCP 192.168.1.245:33212 <-> 15.204.197.32:443 [proto: 91.411/TLS.Bluesky][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 5][cat: SocialNetwork/6][4 pkts/951 bytes <-> 2 pkts/3036 bytes][Goodput ratio: 71/95][0.19 sec][Hostname/SNI: enoki.us-east.host.bsky.network][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.523 (Download)][IAT c2s/s2c min/avg/max/stddev: 2/97 64/97 95/97 44/0][Pkt Len c2s/s2c min/avg/max/stddev: 66/74 238/1518 745/2962 293/1444][TLSv1.3][JA3C: b5001237acdf006056b409cc433726b0][JA4: t13d1715h2_5b57614c22b0_5c2c66f702b0][JA3S: 15af977ce25de452b96affa2addb1036][ECH: version 0xfe0d][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50]
+	30	TCP [2001:b07:a3d:c112:9a00:ba78:86b1:e177]:48624 <-> [2001:67c:4e8:f004::9]:443 [proto: 91.185/TLS.Telegram][IP: 185/Telegram][Encrypted][Confidence: DPI][DPI packets: 6][cat: Chat/9][4 pkts/1011 bytes <-> 3 pkts/2682 bytes][Goodput ratio: 65/90][0.04 sec][Hostname/SNI: telegram.me][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][bytes ratio: -0.452 (Download)][IAT c2s/s2c min/avg/max/stddev: 1/0 12/10 18/20 8/10][Pkt Len c2s/s2c min/avg/max/stddev: 86/86 253/894 745/2502 284/1137][TLSv1.3][JA3C: b5001237acdf006056b409cc433726b0][JA4: t13d1715h2_5b57614c22b0_5c2c66f702b0][JA3S: 15af977ce25de452b96affa2addb1036][ECH: version 0xfe0d][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50]
+	31	UDP 192.168.1.128:36832 <-> 142.250.181.238:443 [proto: 188.126/QUIC.Google][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 1][cat: Web/5][1 pkts/1399 bytes <-> 1 pkts/1399 bytes][Goodput ratio: 97/97][0.02 sec][Hostname/SNI: plus.google.com][(Advertised) ALPNs: h3][TLS Supported Versions: TLSv1.3][TLSv1.3][QUIC ver: V-1][JA3C: b719940c5ab9a3373cb4475d8143ff88][JA4: q13d0314h][Firefox][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,100,0,0,0,0,0]
+	32	UDP 192.168.1.128:38642 <-> 216.58.212.142:443 [proto: 188.126/QUIC.Google][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 1][cat: Web/5][1 pkts/1399 bytes <-> 1 pkts/1399 bytes][Goodput ratio: 97/97][0.03 sec][Hostname/SNI: hangouts.google.com][(Advertised) ALPNs: h3][TLS Supported Versions: TLSv1.3][TLSv1.3][QUIC ver: V-1][JA3C: 2a18e6bf307f97c5e27f0ab407dc65db][JA4: q13d0315h][Firefox][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,100,0,0,0,0,0]
+	33	TCP 192.168.88.171:55280 <-> 124.237.225.21:443 [proto: 91.54/TLS.iQIYI][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 7][cat: Streaming/17][3 pkts/691 bytes <-> 4 pkts/1680 bytes][Goodput ratio: 75/86][< 1 sec][Hostname/SNI: msg.qy.net][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2;TLSv1.1;TLSv1][bytes ratio: -0.417 (Download)][IAT c2s/s2c min/avg/max/stddev: 295/2 296/198 297/297 1/138][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 230/420 571/1494 241/620][TLSv1.3][JA3C: f436b9416f37d134cadd04886327d3e8][JA4: t13d3113h2_e8f1e7e78f70_b23652925e07][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	34	TCP 192.168.88.171:55468 <-> 184.86.2.194:443 [proto: 91.54/TLS.iQIYI][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Streaming/17][3 pkts/742 bytes <-> 3 pkts/1620 bytes][Goodput ratio: 76/89][0.05 sec][Hostname/SNI: stc.iqiyipic.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: GREASE;TLSv1.3;TLSv1.2][bytes ratio: -0.372 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/1 12/12 23/23 12/11][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 247/540 622/1494 265/675][TLSv1.3][JA3C: 2aafde70b049185ef1cca0d7f821a8d7][JA4: t13d1516h2_8daaf6152771_02713d6af862][JA3S: 15af977ce25de452b96affa2addb1036][ECH: version 0xfe0d][Chrome][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	35	TCP 192.168.88.231:33920 <-> 185.5.161.203:443 [proto: 91.389/TLS.ElectronicArts][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Game/8][3 pkts/723 bytes <-> 3 pkts/1634 bytes][Goodput ratio: 71/87][0.08 sec][Hostname/SNI: origin-a.akamaihd.net][TLS Supported Versions: TLSv1.3;TLSv1.2;TLSv1.1;TLSv1][bytes ratio: -0.387 (Download)][IAT c2s/s2c min/avg/max/stddev: 6/19 16/24 26/28 10/4][Pkt Len c2s/s2c min/avg/max/stddev: 66/66 241/545 583/1494 242/671][Risk: ** TLS (probably) Not Carrying HTTPS **][Risk Score: 10][Risk Info: No ALPN][TLSv1.3][JA3C: 57fbe0aefee44901190849b0e877a5e1][JA4: t13d571100_131602cb7446_6c96259584c4][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
+	36	TCP 192.168.88.171:49217 <-> 54.208.106.218:443 [proto: 91.59/TLS.AdobeConnect][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 6][cat: Video/26][3 pkts/691 bytes <-> 3 pkts/1620 bytes][Goodput ratio: 75/89][0.28 sec][Hostname/SNI: meet27083742.adobeconnect.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: GREASE;TLSv1.3;TLSv1.2][bytes ratio: -0.402 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 69/70 138/139 69/70][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 230/540 571/1494 241/675][TLSv1.3][JA3C: cd08e31494f9531f560d64c695473da9][JA4: t13d1516h2_8daaf6152771_e5627efa2ab1][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Chrome][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	37	TCP 192.168.88.171:55272 <-> 116.211.202.129:443 [proto: 91.54/TLS.iQIYI][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 6][cat: Streaming/17][3 pkts/691 bytes <-> 3 pkts/1620 bytes][Goodput ratio: 75/89][0.59 sec][Hostname/SNI: opportunarch.iqiyi.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2;TLSv1.1;TLSv1][bytes ratio: -0.402 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 144/150 288/299 144/150][Pkt Len c2s/s2c min/avg/max/stddev: 54/60 230/540 571/1494 241/675][TLSv1.3][JA3C: f436b9416f37d134cadd04886327d3e8][JA4: t13d3113h2_e8f1e7e78f70_b23652925e07][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	38	TCP 192.168.1.128:40832 <-> 2.17.141.49:443 [proto: 91.179/TLS.eBay][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Shopping/27][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: www.ebay.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	39	TCP 192.168.1.128:42884 <-> 185.125.190.21:443 [proto: 91.169/TLS.UbuntuONE][IP: 169/UbuntuONE][Encrypted][Confidence: DPI][DPI packets: 4][cat: Cloud/13][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.06 sec][Hostname/SNI: assets.ubuntu.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	40	TCP 192.168.1.128:45898 <-> 15.160.39.187:443 [proto: 91.254/TLS.AppleSiri][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: VirtAssistant/32][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: guzzoni.apple.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	41	TCP 192.168.1.128:46264 <-> 23.51.246.65:443 [proto: 91.231/TLS.Playstation][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Game/8][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.03 sec][Hostname/SNI: static.playstation.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	42	TCP 192.168.1.128:48140 <-> 23.1.66.79:443 [proto: 91.180/TLS.CNN][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Web/5][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: cdn.cnn.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	43	TCP 192.168.1.128:48902 <-> 2.17.140.63:443 [proto: 91.47/TLS.Xbox][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Game/8][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: account.xbox.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	44	TCP 192.168.1.128:51432 <-> 95.101.195.214:443 [proto: 91.137/TLS.Hulu][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Streaming/17][2 pkts/657 bytes <-> 2 pkts/1588 bytes][Goodput ratio: 79/91][0.05 sec][Hostname/SNI: hulu.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	45	TCP 192.168.1.128:33664 <-> 108.138.185.106:443 [proto: 91.240/TLS.AmazonVideo][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: Video/26][2 pkts/657 bytes <-> 2 pkts/1568 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: www.primevideo.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
+	46	TCP 192.168.1.128:39934 <-> 104.23.98.190:443 [proto: 91.232/TLS.Pastebin][IP: 220/Cloudflare][Encrypted][Confidence: DPI][DPI packets: 4][cat: Download/7][2 pkts/645 bytes <-> 2 pkts/1580 bytes][Goodput ratio: 80/92][0.04 sec][Hostname/SNI: pastebin.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][Risk: ** Unsafe Protocol **][Risk Score: 10][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	47	TCP 192.168.1.128:43150 <-> 108.138.199.67:443 [proto: 91.210/TLS.Deezer][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: Music/25][2 pkts/657 bytes <-> 2 pkts/1568 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: deezer.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
+	48	TCP 192.168.1.128:51806 <-> 18.66.196.102:443 [proto: 91.234/TLS.SoundCloud][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: Music/25][2 pkts/657 bytes <-> 2 pkts/1568 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: soundcloud.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
+	49	TCP 192.168.1.128:53998 <-> 172.65.251.78:443 [proto: 91.262/TLS.GitLab][IP: 220/Cloudflare][Encrypted][Confidence: DPI][DPI packets: 4][cat: Collaborative/15][2 pkts/645 bytes <-> 2 pkts/1580 bytes][Goodput ratio: 80/92][0.05 sec][Hostname/SNI: www.gitlab.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0]
+	50	TCP 192.168.1.128:57014 <-> 108.139.210.102:443 [proto: 91.246/TLS.Bloomberg][IP: 265/AmazonAWS][Encrypted][Confidence: DPI][DPI packets: 4][cat: Cloud/13][2 pkts/657 bytes <-> 2 pkts/1568 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: sourcepointcmp.bloomberg.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
+	51	TCP 192.168.1.128:38858 <-> 142.250.180.142:443 [proto: 91.123/TLS.GoogleMaps][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 4][cat: Web/5][2 pkts/657 bytes <-> 2 pkts/1558 bytes][Goodput ratio: 79/91][0.03 sec][Hostname/SNI: maps.google.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
+	52	TCP 192.168.1.128:47122 <-> 35.201.112.136:443 [proto: 91.134/TLS.LastFM][IP: 284/GoogleCloud][Encrypted][Confidence: DPI][DPI packets: 4][cat: Music/25][2 pkts/657 bytes <-> 2 pkts/1558 bytes][Goodput ratio: 79/91][0.02 sec][Hostname/SNI: kerve.last.fm][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
+	53	TCP 192.168.1.128:50608 <-> 142.250.185.206:443 [proto: 91/TLS][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 4][cat: Web/5][2 pkts/657 bytes <-> 2 pkts/1558 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: googleplus.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
+	54	TCP 192.168.1.128:56458 <-> 142.250.185.142:443 [proto: 91.217/TLS.GoogleDrive][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 4][cat: Cloud/13][2 pkts/657 bytes <-> 2 pkts/1558 bytes][Goodput ratio: 79/91][0.04 sec][Hostname/SNI: drive.google.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: eb1d94daa7e0344597e756a1fb6e7054][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0]
+	55	TCP 192.168.1.128:35054 <-> 31.222.67.112:443 [proto: 91.279/TLS.Badoo][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: SocialNetwork/6][2 pkts/645 bytes <-> 2 pkts/1500 bytes][Goodput ratio: 80/92][0.09 sec][Hostname/SNI: www.badoo.com][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: 15af977ce25de452b96affa2addb1036][Firefox][Cipher: TLS_AES_256_GCM_SHA384][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0]
+	56	TCP 192.168.1.128:46084 <-> 146.75.62.167:443 [proto: 91.195/TLS.Twitch][IP: 0/Unknown][Encrypted][Confidence: DPI][DPI packets: 4][cat: Video/26][2 pkts/657 bytes <-> 2 pkts/1480 bytes][Goodput ratio: 79/90][0.05 sec][Hostname/SNI: gql.twitch.tv][(Advertised) ALPNs: h2;http/1.1][TLS Supported Versions: TLSv1.3;TLSv1.2][TLSv1.3][JA3C: 579ccef312d18482fc42e2b822ca2430][JA4: t13d1715h2_5b57614c22b0_3d5424432f57][JA3S: f4febc55ea12b31ae17cfb7e614afda8][Firefox][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,50,0,0,0,0,0,0]
+	57	UDP [2001:b07:a3d:c112:6ea5:ab52:9230:ba5]:41590 -> [2a03:2880:f208:c4:face:b00c::43fe]:443 [proto: 188.413/QUIC.Threads][IP: 119/Facebook][Encrypted][Confidence: DPI][DPI packets: 1][cat: SocialNetwork/6][1 pkts/1399 bytes -> 0 pkts/0 bytes][Goodput ratio: 95/0][< 1 sec][Hostname/SNI: www.threads.net][(Advertised) ALPNs: h3][TLS Supported Versions: TLSv1.3][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][TLSv1.3][QUIC ver: V-1][JA3C: 7a8e625dea44f20fe8d8d657583506d1][JA4: q13d0314h][ECH: version 0xfe0d][Firefox][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,100,0,0,0,0,0,0]
+	58	UDP 192.168.1.123:59102 -> 216.58.209.46:443 [proto: 188.281/QUIC.GoogleClassroom][IP: 126/Google][Encrypted][Confidence: DPI][DPI packets: 1][cat: Collaborative/15][1 pkts/1292 bytes -> 0 pkts/0 bytes][Goodput ratio: 97/0][< 1 sec][Hostname/SNI: classroom.google.com][(Advertised) ALPNs: h3][TLS Supported Versions: TLSv1.3][User-Agent: Chrome/97.0.4692.99 Windows NT 10.0; Win64; x64][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][TLSv1.3][QUIC ver: V-1][JA3C: a27a03a8478393fe7f8958648bb71ff4][JA4: q13d0310h][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,100,0,0,0,0,0,0,0,0]
+	59	TCP 192.168.12.169:46160 <-> 69.171.250.20:443 [proto: 91.157/TLS.Messenger][IP: 119/Facebook][Encrypted][Confidence: DPI][DPI packets: 4][cat: Chat/9][2 pkts/521 bytes <-> 2 pkts/356 bytes][Goodput ratio: 73/61][0.02 sec][Hostname/SNI: edge-mqtt.facebook.com][(Advertised) ALPNs: h2;h2-fb][TLS Supported Versions: TLSv1.3;TLSv1.3 (Fizz)][TLSv1.3 (Fizz)][JA3C: 44dab16d680ef93487bc16ad23b3ffb1][JA4: t00d0309h2_55b375c5d22e_2d3f7b9fe3d5][JA3S: fcb2d4d0991292272fcb1e464eedfd43][Cipher: TLS_AES_128_GCM_SHA256][Plen Bins: 0,0,0,0,0,0,50,0,0,0,0,50,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+	60	TCP 192.168.1.128:39036 <-> 69.191.252.15:80 [proto: 7/HTTP][IP: 246/Bloomberg][ClearText][Confidence: Match by port][DPI packets: 8][cat: Web/5][7 pkts/518 bytes <-> 1 pkts/78 bytes][Goodput ratio: 0/0][65.08 sec][bytes ratio: 0.738 (Upload)][IAT c2s/s2c min/avg/max/stddev: 1012/0 10830/0 33535/0 11329/0][Pkt Len c2s/s2c min/avg/max/stddev: 74/78 74/78 74/78 0/0][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+	61	TCP 192.168.1.128:44954 <-> 34.96.123.111:80 [proto: 7/HTTP][IP: 284/GoogleCloud][ClearText][Confidence: Match by port][DPI packets: 2][cat: Web/5][1 pkts/74 bytes <-> 1 pkts/74 bytes][Goodput ratio: 0/0][0.01 sec][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+	62	TCP 192.168.1.128:45936 <-> 208.85.40.158:80 [proto: 7/HTTP][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 2][cat: Web/5][1 pkts/74 bytes <-> 1 pkts/74 bytes][Goodput ratio: 0/0][0.17 sec][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+	63	TCP 192.168.1.128:52070 <-> 18.65.82.67:80 [proto: 7/HTTP][IP: 265/AmazonAWS][ClearText][Confidence: Match by port][DPI packets: 2][cat: Web/5][1 pkts/74 bytes <-> 1 pkts/74 bytes][Goodput ratio: 0/0][0.02 sec][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
diff --git a/tests/cfgs/default/result/synscan.pcap.out b/tests/cfgs/default/result/synscan.pcap.out
index 4586f84cf08..9ffc3697132 100644
--- a/tests/cfgs/default/result/synscan.pcap.out
+++ b/tests/cfgs/default/result/synscan.pcap.out
@@ -144,7 +144,7 @@ Unrated                       1850 107308        1846
 	47	TCP 172.16.0.8:36050 -> 64.13.134.52:2605 [proto: 13/BGP][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: Network/14][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	48	TCP 172.16.0.8:36050 -> 64.13.134.52:3000 [proto: 26/ntop][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: Network/14][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	49	TCP 172.16.0.8:36050 -> 64.13.134.52:3128 [proto: 131/HTTP_Proxy][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: Web/5][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
-	50	TCP 172.16.0.8:36050 -> 64.13.134.52:3260 [proto: 411/iSCSI][IP: 0/Unknown][ClearText][Confidence: Match by custom rule][DPI packets: 1][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+	50	TCP 172.16.0.8:36050 -> 64.13.134.52:3260 [proto: 414/iSCSI][IP: 0/Unknown][ClearText][Confidence: Match by custom rule][DPI packets: 1][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	51	TCP 172.16.0.8:36050 -> 64.13.134.52:3300 [proto: 381/Ceph][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: DataTransfer/4][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	52	TCP 172.16.0.8:36050 -> 64.13.134.52:3306 [proto: 20/MySQL][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: Database/11][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	53	TCP 172.16.0.8:36050 -> 64.13.134.52:3389 [proto: 88/RDP][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: RemoteAccess/12][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Desktop/File Sharing **** Unidirectional Traffic **][Risk Score: 20][Risk Info: No server to client traffic / Found RDP][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
@@ -216,7 +216,7 @@ Unrated                       1850 107308        1846
 	119	TCP 172.16.0.8:36051 -> 64.13.134.52:2605 [proto: 13/BGP][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: Network/14][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	120	TCP 172.16.0.8:36051 -> 64.13.134.52:3000 [proto: 26/ntop][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: Network/14][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	121	TCP 172.16.0.8:36051 -> 64.13.134.52:3128 [proto: 131/HTTP_Proxy][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: Web/5][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
-	122	TCP 172.16.0.8:36051 -> 64.13.134.52:3260 [proto: 411/iSCSI][IP: 0/Unknown][ClearText][Confidence: Match by custom rule][DPI packets: 1][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
+	122	TCP 172.16.0.8:36051 -> 64.13.134.52:3260 [proto: 414/iSCSI][IP: 0/Unknown][ClearText][Confidence: Match by custom rule][DPI packets: 1][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	123	TCP 172.16.0.8:36051 -> 64.13.134.52:3300 [proto: 381/Ceph][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: DataTransfer/4][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	124	TCP 172.16.0.8:36051 -> 64.13.134.52:3306 [proto: 20/MySQL][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: Database/11][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Unidirectional Traffic **][Risk Score: 10][Risk Info: No server to client traffic][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]
 	125	TCP 172.16.0.8:36051 -> 64.13.134.52:3389 [proto: 88/RDP][IP: 0/Unknown][ClearText][Confidence: Match by port][DPI packets: 1][cat: RemoteAccess/12][1 pkts/58 bytes -> 0 pkts/0 bytes][Goodput ratio: 0/0][< 1 sec][Risk: ** Desktop/File Sharing **** Unidirectional Traffic **][Risk Score: 20][Risk Info: No server to client traffic / Found RDP][Plen Bins: 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]