Windows Analysis Report
https://hello.hoteluser.com/api/mailings/click/PMRGSZBCHIYTQNBQGQ4TALBCOVZGYIR2EJUHI5DQHIXS63DJNZVWKZDJNYXGG33NF5RW63LQMFXHSL3IN52GK3BNMVXGO2LOMURCYITPOJTSEORCMIYWENRSGRQTALLEGJQTGLJUHE2TMLLBMQZGMLJTME4GGOJUHA2WCYRVGURCYITWMVZHG2LPNYRDUIRUEIWCE43JM4RDUIRWMJ3GUU3ZGNSDC3TJKJZXO3LMMJBESRKFNRAXQVZRJRATK

Overview

General Information

Sample URL: https://hello.hoteluser.com/api/mailings/click/PMRGSZBCHIYTQNBQGQ4TALBCOVZGYIR2EJUHI5DQHIXS63DJNZVWKZDJNYXGG33NF5RW63LQMFXHSL3IN52GK3BNMVXGO2LOMURCYITPOJTSEORCMIYWENRSGRQTALLEGJQTGLJUHE2TMLLBMQZGMLJTM
Analysis ID: 1432149
Infos:

Detection

Score: 1
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

Found iframes
HTML body contains low number of good links

Classification

Found iframes
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182635_450323&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182628_247154&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194910_347186&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194901_273354&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194910_347186&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194901_273354&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=398&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_207975_642746&as=LQmqLYGGdZsf9JiEu%2FNeHw&hl=en_US
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: Iframe src: https://lnkd.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.linkedin.com
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: Iframe src: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=398&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_207975_642746&as=LQmqLYGGdZsf9JiEu%2FNeHw&hl=en_US
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: Iframe src: https://lnkd.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.linkedin.com
HTML body contains low number of good links
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182635_450323&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US HTTP Parser: Number of links: 0
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182628_247154&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US HTTP Parser: Number of links: 0
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194901_273354&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US HTTP Parser: Number of links: 0
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194910_347186&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US HTTP Parser: Number of links: 0
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=398&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_207975_642746&as=LQmqLYGGdZsf9JiEu%2FNeHw&hl=en_US HTTP Parser: Number of links: 0
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user HTTP Parser: <input type="password" .../> found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: <input type="password" .../> found
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: <input type="password" .../> found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182635_450323&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US HTTP Parser: No favicon
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182628_247154&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US HTTP Parser: No favicon
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194901_273354&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US HTTP Parser: No favicon
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194910_347186&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US HTTP Parser: No favicon
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=398&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_207975_642746&as=LQmqLYGGdZsf9JiEu%2FNeHw&hl=en_US HTTP Parser: No favicon
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=398&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_207975_642746&as=LQmqLYGGdZsf9JiEu%2FNeHw&hl=en_US HTTP Parser: No favicon
Source: https://www.youtube-nocookie.com/embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0 HTTP Parser: No favicon
Source: https://www.youtube-nocookie.com/embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0 HTTP Parser: No favicon
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user HTTP Parser: No <meta name="author".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user HTTP Parser: No <meta name="author".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182635_450323&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US HTTP Parser: No <meta name="author".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182628_247154&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US HTTP Parser: No <meta name="author".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: No <meta name="author".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: No <meta name="author".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: No <meta name="author".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: No <meta name="author".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194901_273354&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US HTTP Parser: No <meta name="author".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194910_347186&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US HTTP Parser: No <meta name="author".. found
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: No <meta name="author".. found
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: No <meta name="author".. found
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: No <meta name="author".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=398&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_207975_642746&as=LQmqLYGGdZsf9JiEu%2FNeHw&hl=en_US HTTP Parser: No <meta name="author".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=398&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_207975_642746&as=LQmqLYGGdZsf9JiEu%2FNeHw&hl=en_US HTTP Parser: No <meta name="author".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user HTTP Parser: No <meta name="copyright".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182635_450323&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_182628_247154&as=OtX4g%2BByGzR%2FiIOjbqeRJQ&hl=en_US HTTP Parser: No <meta name="copyright".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: No <meta name="copyright".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: No <meta name="copyright".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: No <meta name="copyright".. found
Source: https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=-2&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194901_273354&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=325px&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_194910_347186&as=YZlHBpYKcd5l9gIwnm3lrw&hl=en_US HTTP Parser: No <meta name="copyright".. found
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: No <meta name="copyright".. found
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: No <meta name="copyright".. found
Source: https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=398&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_207975_642746&as=LQmqLYGGdZsf9JiEu%2FNeHw&hl=en_US HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=398&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_207975_642746&as=LQmqLYGGdZsf9JiEu%2FNeHw&hl=en_US HTTP Parser: No <meta name="copyright".. found
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:49710 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:49726 version: TLS 1.2
Source: unknown HTTPS traffic detected: 173.222.162.64:443 -> 192.168.2.6:49706 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:49825 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:50054 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.190.157.11:443 -> 192.168.2.6:50085 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:50095 version: TLS 1.2
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: unknown TCP traffic detected without corresponding DNS query: 20.25.241.18
Source: global traffic HTTP traffic detected: GET /api/mailings/click/PMRGSZBCHIYTQNBQGQ4TALBCOVZGYIR2EJUHI5DQHIXS63DJNZVWKZDJNYXGG33NF5RW63LQMFXHSL3IN52GK3BNMVXGO2LOMURCYITPOJTSEORCMIYWENRSGRQTALLEGJQTGLJUHE2TMLLBMQZGMLJTME4GGOJUHA2WCYRVGURCYITWMVZHG2LPNYRDUIRUEIWCE43JM4RDUIRWMJ3GUU3ZGNSDC3TJKJZXO3LMMJBESRKFNRAXQVZRJRATKN3HL5BUG5DFIV2EYOLFOBIT2IT5 HTTP/1.1Host: hello.hoteluser.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /litms/utag/seo-directory-frontend/utag.js?cb=1714139100000 HTTP/1.1Host: platform.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rtc=AQFb46_u3pr48QAAAY8aqADofOJ4HLQezIEtDApWb1X5dz8F1IIm2o19EkGKD636J1WnPBq6rkr763P9Pysxi9TTVZ_3Gel_QZdZQWHqHW2M8bttRMeaORT2FXfHfkOCsAkWjbkGg-ZF7HPLiv3FkJzwZFfkiL7DvVZCCiM7dl4uZVt0RrQ9KaOGN1I8ZT_6LTFMI_eVGBQnp8CweH-U3X9M0WHDDyxjLbPKtUfS0sW8UvAMxIrzfg0=; lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"
Source: global traffic HTTP traffic detected: GET /event?correlationId=6d929706-3925-4713-a700-05f57fb192e6&type=ping HTTP/1.1Host: ps.azurewaf.microsoft.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /event?correlationId=a09969d8-7786-4332-93bb-1928238b36d3&type=ping HTTP/1.1Host: ps.azurewaf.microsoft.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /litms/utag/homepage-guest-frontend/utag.js?cb=1714139100000 HTTP/1.1Host: platform.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"; rtc=AQGsvEFjfTC-ZwAAAY8aqH3ounQN6nlygpO6OH2EpIf-sBUlq4y-97nYatukUlYeDI0a5jzckg1yTP0Y6CCdOVDiuIEu0qOiLW8jo8fzdMregH6SXjPlWwVU9PvnPU9y7QvedBQRtJtunkwNCA3LjwvSaONltDo_vVIf9IveJ6Xnd-Da7UoEw0ddu2uw5wv0CWVfbg2saCVb_8M-OR-6V58ml0UtgA6yC4LppK0wVEfUkopMKb4hb2I=
Source: global traffic HTTP traffic detected: GET /pixel/tracking.png?reqid=f154cfe4-09b1-4f70-87af-d7e73014ce4b&pageInstance=urn%3Ali%3Apage%3Ad_homepage-guest-home_jsbeacon%3BlogUyGGhS7eKuFtc7YiY3w%3D%3D&js=enabled HTTP/1.1Host: ponf.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"; rtc=AQGsvEFjfTC-ZwAAAY8aqH3ounQN6nlygpO6OH2EpIf-sBUlq4y-97nYatukUlYeDI0a5jzckg1yTP0Y6CCdOVDiuIEu0qOiLW8jo8fzdMregH6SXjPlWwVU9PvnPU9y7QvedBQRtJtunkwNCA3LjwvSaONltDo_vVIf9IveJ6Xnd-Da7UoEw0ddu2uw5wv0CWVfbg2saCVb_8M-OR-6V58ml0UtgA6yC4LppK0wVEfUkopMKb4hb2I=
Source: global traffic HTTP traffic detected: GET /dms/image/C4D08AQFXY7ga83Bafw/croft-frontend-shrinkToFit1920/0/1598658592736?e=2147483647&v=beta&t=6TqEAS5kwzR7zWZs3dGQkpEcOXUO9AXNDN-ErBjqQec HTTP/1.1Host: media.licdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /litms/utag/homepage-guest-frontend/utag.119.js?utv=ut4.51.202403291943 HTTP/1.1Host: platform.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"; rtc=AQGsvEFjfTC-ZwAAAY8aqH3ounQN6nlygpO6OH2EpIf-sBUlq4y-97nYatukUlYeDI0a5jzckg1yTP0Y6CCdOVDiuIEu0qOiLW8jo8fzdMregH6SXjPlWwVU9PvnPU9y7QvedBQRtJtunkwNCA3LjwvSaONltDo_vVIf9IveJ6Xnd-Da7UoEw0ddu2uw5wv0CWVfbg2saCVb_8M-OR-6V58ml0UtgA6yC4LppK0wVEfUkopMKb4hb2I=; AMCV_14215E3D5995C57C0A495C55%40AdobeOrg=-637568504%7CMCIDTS%7C19840%7CvVersion%7C5.1.1
Source: global traffic HTTP traffic detected: GET /litms/utag/homepage-guest-frontend/utag.120.js?utv=ut4.51.202403291943 HTTP/1.1Host: platform.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"; rtc=AQGsvEFjfTC-ZwAAAY8aqH3ounQN6nlygpO6OH2EpIf-sBUlq4y-97nYatukUlYeDI0a5jzckg1yTP0Y6CCdOVDiuIEu0qOiLW8jo8fzdMregH6SXjPlWwVU9PvnPU9y7QvedBQRtJtunkwNCA3LjwvSaONltDo_vVIf9IveJ6Xnd-Da7UoEw0ddu2uw5wv0CWVfbg2saCVb_8M-OR-6V58ml0UtgA6yC4LppK0wVEfUkopMKb4hb2I=; AMCV_14215E3D5995C57C0A495C55%40AdobeOrg=-637568504%7CMCIDTS%7C19840%7CvVersion%7C5.1.1
Source: global traffic HTTP traffic detected: GET /litms/utag/homepage-guest-frontend/utag.122.js?utv=ut4.51.202403291943 HTTP/1.1Host: platform.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"; rtc=AQGsvEFjfTC-ZwAAAY8aqH3ounQN6nlygpO6OH2EpIf-sBUlq4y-97nYatukUlYeDI0a5jzckg1yTP0Y6CCdOVDiuIEu0qOiLW8jo8fzdMregH6SXjPlWwVU9PvnPU9y7QvedBQRtJtunkwNCA3LjwvSaONltDo_vVIf9IveJ6Xnd-Da7UoEw0ddu2uw5wv0CWVfbg2saCVb_8M-OR-6V58ml0UtgA6yC4LppK0wVEfUkopMKb4hb2I=; AMCV_14215E3D5995C57C0A495C55%40AdobeOrg=-637568504%7CMCIDTS%7C19840%7CvVersion%7C5.1.1
Source: global traffic HTTP traffic detected: GET /id?d_visid_ver=5.1.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=14215E3D5995C57C0A495C55%40AdobeOrg&d_nsid=0&ts=1714139210116 HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/x-www-form-urlencodedAccept: */*Origin: https://www.linkedin.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /litms/utag/homepage-guest-frontend/utag.123.js?utv=ut4.51.202403291943 HTTP/1.1Host: platform.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"; rtc=AQGsvEFjfTC-ZwAAAY8aqH3ounQN6nlygpO6OH2EpIf-sBUlq4y-97nYatukUlYeDI0a5jzckg1yTP0Y6CCdOVDiuIEu0qOiLW8jo8fzdMregH6SXjPlWwVU9PvnPU9y7QvedBQRtJtunkwNCA3LjwvSaONltDo_vVIf9IveJ6Xnd-Da7UoEw0ddu2uw5wv0CWVfbg2saCVb_8M-OR-6V58ml0UtgA6yC4LppK0wVEfUkopMKb4hb2I=; AMCV_14215E3D5995C57C0A495C55%40AdobeOrg=-637568504%7CMCIDTS%7C19840%7CvVersion%7C5.1.1
Source: global traffic HTTP traffic detected: GET /pixel/tracking.png?reqid=f154cfe4-09b1-4f70-87af-d7e73014ce4b&pageInstance=urn%3Ali%3Apage%3Ad_homepage-guest-home_jsbeacon%3BlogUyGGhS7eKuFtc7YiY3w%3D%3D&js=enabled HTTP/1.1Host: ponf.linkedin.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"; rtc=AQGsvEFjfTC-ZwAAAY8aqH3ounQN6nlygpO6OH2EpIf-sBUlq4y-97nYatukUlYeDI0a5jzckg1yTP0Y6CCdOVDiuIEu0qOiLW8jo8fzdMregH6SXjPlWwVU9PvnPU9y7QvedBQRtJtunkwNCA3LjwvSaONltDo_vVIf9IveJ6Xnd-Da7UoEw0ddu2uw5wv0CWVfbg2saCVb_8M-OR-6V58ml0UtgA6yC4LppK0wVEfUkopMKb4hb2I=
Source: global traffic HTTP traffic detected: GET /litms/utag/lithograph/utag.js?cb=1714139100000 HTTP/1.1Host: platform.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"; rtc=AQGsvEFjfTC-ZwAAAY8aqH3ounQN6nlygpO6OH2EpIf-sBUlq4y-97nYatukUlYeDI0a5jzckg1yTP0Y6CCdOVDiuIEu0qOiLW8jo8fzdMregH6SXjPlWwVU9PvnPU9y7QvedBQRtJtunkwNCA3LjwvSaONltDo_vVIf9IveJ6Xnd-Da7UoEw0ddu2uw5wv0CWVfbg2saCVb_8M-OR-6V58ml0UtgA6yC4LppK0wVEfUkopMKb4hb2I=; AMCV_14215E3D5995C57C0A495C55%40AdobeOrg=-637568504%7CMCIDTS%7C19840%7CvVersion%7C5.1.1
Source: global traffic HTTP traffic detected: GET /b?c1=2&c2=6402952&c3=&c4=&c5=&c6=&c15=&ns__t=1714139212769&ns_c=UTF-8&c8=User%20Agreement%20%7C%20LinkedIn&c7=https%3A%2F%2Fwww.linkedin.com%2Flegal%2Fuser-agreement%3Ftrk%3Dseo-authwall-base_join-form-user-agreement&c9= HTTP/1.1Host: sb.scorecardresearch.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0 HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /id?d_visid_ver=5.1.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=14215E3D5995C57C0A495C55%40AdobeOrg&d_nsid=0&ts=1714139210116 HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=81423380217000299480292569761319785197
Source: global traffic HTTP traffic detected: GET /dest5.html?d_nsid=0 HTTP/1.1Host: lnkd.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=81423380217000299480292569761319785197
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=14846;g=linkedin_flagship_homepage;gid=37470; HTTP/1.1Host: trkn.usConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=10786;g=linkedin_flagship_homepage;gid=32238 HTTP/1.1Host: trkn.usConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /b2?c1=2&c2=6402952&c3=&c4=&c5=&c6=&c15=&ns__t=1714139212769&ns_c=UTF-8&c8=User%20Agreement%20%7C%20LinkedIn&c7=https%3A%2F%2Fwww.linkedin.com%2Flegal%2Fuser-agreement%3Ftrk%3Dseo-authwall-base_join-form-user-agreement&c9= HTTP/1.1Host: sb.scorecardresearch.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: UID=1659a4c5e52bf62d3ebc24e1714139213; PID=1059a4c5e510c62d3ebc4011714139213; XID=1659a4c5e52bf62d3ebc24e1714139213
Source: global traffic HTTP traffic detected: GET /s/player/652ba3a2/www-player.css HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.youtube-nocookie.com/embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=10786;g=linkedin_flagship_homepage;gid=32238;ip=102.129.152.220;cuidchk=1 HTTP/1.1Host: trkn.usConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: barometric[cuid]=cuid_662bb04e-a81e-4df1-b73e-72c1f85005be
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=14846;g=linkedin_flagship_homepage;gid=37470;;ip=102.129.152.220;cuidchk=1 HTTP/1.1Host: trkn.usConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: barometric[cuid]=cuid_662bb04e-a81e-4df1-a73e-72c24f42da24
Source: global traffic HTTP traffic detected: GET /s/player/652ba3a2/player_ias.vflset/en_US/embed.js HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.youtube-nocookie.com/embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /s/player/652ba3a2/www-embed-player.vflset/www-embed-player.js HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.youtube-nocookie.com/embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /event?d_dil_ver=9.4&_ts=1714139210122 HTTP/1.1Host: lnkd.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=81423380217000299480292569761319785197; dextp=771-1-1714139213946
Source: global traffic HTTP traffic detected: GET /s/player/652ba3a2/player_ias.vflset/en_US/base.js HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.youtube-nocookie.com/embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /litms/utag/lithograph/utag.100.js?utv=ut4.51.202403122117 HTTP/1.1Host: platform.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: lang=v=2&lang=en-us; bcookie="v=2&bcca9bfb-016b-4211-80a8-b70ede29ea87"; lidc="b=VGST01:s=V:r=V:a=V:p=V:g=3217:u=1:x=1:i=1714139170:t=1714225570:v=2:sig=AQEz7duhtdHu_XyUhK_y9IMb6hNeGmAK"; rtc=AQGsvEFjfTC-ZwAAAY8aqH3ounQN6nlygpO6OH2EpIf-sBUlq4y-97nYatukUlYeDI0a5jzckg1yTP0Y6CCdOVDiuIEu0qOiLW8jo8fzdMregH6SXjPlWwVU9PvnPU9y7QvedBQRtJtunkwNCA3LjwvSaONltDo_vVIf9IveJ6Xnd-Da7UoEw0ddu2uw5wv0CWVfbg2saCVb_8M-OR-6V58ml0UtgA6yC4LppK0wVEfUkopMKb4hb2I=; AMCVS_14215E3D5995C57C0A495C55%40AdobeOrg=1; AMCV_14215E3D5995C57C0A495C55%40AdobeOrg=-637568504%7CMCIDTS%7C19840%7CMCMID%7C80840432052257910310342350096916963622%7CMCAAMLH-1714744012%7C7%7CMCAAMB-1714744012%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1714146412s%7CNONE%7CvVersion%7C5.1.1; aam_uuid=81423380217000299480292569761319785197
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=14086;g=linkedin_flagship_homepage;gid=36535 HTTP/1.1Host: trkn.usConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: barometric[cuid]=cuid_662bb04e-a81e-4df1-b73e-72c1f85005be
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=10786;g=linkedin_flagship_homepage;gid=32238;ip=102.129.152.220;cuidchk=1 HTTP/1.1Host: trkn.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: barometric[cuid]=cuid_662bb04e-a81e-4df1-b73e-72c1f85005be
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=17688;g=flagship_page;gid=40658 HTTP/1.1Host: trkn.usConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: barometric[cuid]=cuid_662bb04e-a81e-4df1-a73e-72c24f42da24
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=14846;g=linkedin_flagship_homepage;gid=37470;;ip=102.129.152.220;cuidchk=1 HTTP/1.1Host: trkn.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: barometric[cuid]=cuid_662bb04e-a81e-4df1-a73e-72c24f42da24
Source: global traffic HTTP traffic detected: GET /pixel?google_nid=adobe_dmp&google_cm&gdpr=0&gdpr_consent=&google_hm=ODE0MjMzODAyMTcwMDAyOTk0ODAyOTI1Njk3NjEzMTk3ODUxOTc= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://lnkd.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /vi_webp/ha7ASaPnjbA/maxresdefault.webp HTTP/1.1Host: i.ytimg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.youtube-nocookie.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /pixel?google_nid=adobe_dmp&google_cm=&gdpr=0&gdpr_consent=&google_hm=ODE0MjMzODAyMTcwMDAyOTk0ODAyOTI1Njk3NjEzMTk3ODUxOTc=&google_tc= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://lnkd.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic HTTP traffic detected: GET /s/player/652ba3a2/player_ias.vflset/en_US/remote.js HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.youtube-nocookie.com/embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /event?d_dil_ver=9.4&_ts=1714139210134 HTTP/1.1Host: lnkd.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=81423380217000299480292569761319785197; dextp=771-1-1714139213946; lnkd=81423380217000299480292569761319785197
Source: global traffic HTTP traffic detected: GET /js/th/suXtyypHr-kmcDv8BLab_zSS-cnpn4GzxWV-_PefaIU.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.youtube-nocookie.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=513=Sp1uvuwMzKDI-7vz87NZjwlVRlUro0Udhhs8wt2-DRhuVmyrreUBpn55nYwUdJeaS36y-tOL3L-J7gEQ36Ld_AoTetveCPcjvzEbktrQZ6wnDMIrxz9paHGolRpTKfKeGD1NowPQXaxLJ_xOYiykUurt9Y7KhxE_2KybPrM2z_s
Source: global traffic HTTP traffic detected: GET /9XmuxL_LL7CxAOOlbBgTnJIo2uHpoLKHhWzlPt7O49ULQmvBSJlxk1RpX3pJ8jkRBkD6p9BIRg=s68-c-k-c0x00ffffff-no-rj HTTP/1.1Host: yt3.ggpht.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.youtube-nocookie.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=14086;g=linkedin_flagship_homepage;gid=36535 HTTP/1.1Host: trkn.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: barometric[cuid]=cuid_662bb04e-a81e-4df1-b73e-72c1f85005be
Source: global traffic HTTP traffic detected: GET /pixel/conv/ppt=17688;g=flagship_page;gid=40658 HTTP/1.1Host: trkn.usConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: barometric[cuid]=cuid_662bb04e-a81e-4df1-b73e-72c1f85005be
Source: global traffic HTTP traffic detected: GET /event?correlationId=a09969d8-7786-4332-93bb-1928238b36d3&type=data HTTP/1.1Host: ps.azurewaf.microsoft.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /b/ss/lnkdprod/10/JS-2.20.0/s64624110694074 HTTP/1.1Host: linkedin.sc.omtrdc.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /ibs:dpid=771&dpuuid=CAESEPZ2pAdtJgFbjiXXiSFIoKM&google_cver=1?gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://lnkd.demdex.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=81423380217000299480292569761319785197; dextp=771-1-1714139213946
Source: global traffic HTTP traffic detected: GET /vi_webp/ha7ASaPnjbA/maxresdefault.webp HTTP/1.1Host: i.ytimg.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /9XmuxL_LL7CxAOOlbBgTnJIo2uHpoLKHhWzlPt7O49ULQmvBSJlxk1RpX3pJ8jkRBkD6p9BIRg=s68-c-k-c0x00ffffff-no-rj HTTP/1.1Host: yt3.ggpht.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIk6HLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /generate_204?D7o6Wg HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.youtube-nocookie.com/embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /b/ss/lnkdprod/10/JS-2.20.0/s64624110694074?AQB=1&pccr=true&g=none&AQE=1 HTTP/1.1Host: linkedin.sc.omtrdc.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: s_vi_dfclxxzgl=[CS]v4|0-0|662BB052[CE]
Source: global traffic HTTP traffic detected: GET /ibs:dpid=771&dpuuid=CAESEPZ2pAdtJgFbjiXXiSFIoKM&google_cver=1?gdpr=0&gdpr_consent= HTTP/1.1Host: dpm.demdex.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: demdex=81423380217000299480292569761319785197; dextp=771-1-1714139213946; dpm=81423380217000299480292569761319785197
Source: global traffic HTTP traffic detected: GET /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic HTTP traffic detected: GET /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: chromecache_151.2.dr String found in binary or memory: (g.zp(c,"redirector.googlevideo.com"),d=c.toString()):c.j.match("rr?[1-9].*\\.c\\.youtube\\.com$")?(g.zp(c,"www.youtube.com"),d=c.toString()):(c=xBa(d),zJ(c)&&(d=c));c=new g.zP(d);c.set("cmo=pf","1");e&&c.set("cmo=td","a1.googlevideo.com");return c}; equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: YQa=function(a,b){if(!a.j["0"]){var c=new CK("0","fakesb",{video:new yK(0,0,0,void 0,void 0,"auto")});a.j["0"]=b?new CQ(new g.zP("http://www.youtube.com/videoplayback"),c,"fake"):new NQ(new g.zP("http://www.youtube.com/videoplayback"),c,new mQ(0,0),new mQ(0,0))}}; equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: a))):this.Ld(g.NV(a.errorMessage)):this.Ld(PV(this,"HTML5_NO_AVAILABLE_FORMATS_FALLBACK_WITH_LINK_SHORT","//www.youtube.com/supported_browsers")):(a=d.hostLanguage,c="//support.google.com/youtube/?p=player_error1",a&&(c=g.Mn(c,{hl:a})),this.Ld(PV(this,"GENERIC_WITH_LINK_AND_CPN",c,!0)),d.pc&&!d.D&&QYa(this,function(e){if(g.tU(e,b.api,!WR(b.api.U()))){e={as3:!1,html5:!0,player:!0,cpn:b.api.getVideoData().clientPlaybackNonce};var f=b.api;f.wc("onFeedbackArticleRequest",{articleId:3037019,helpContext:"player_error", equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: a.BASE_YT_URL)||"")||oBa(this.Bf)||this.protocol+"://www.youtube.com/";h=b?b.eventLabel:a.el;d="detailpage";"adunit"===h?d=this.D?"embedded":"detailpage":"embedded"===h||this.N?d=XB(d,h,ZRa):h&&(d="embedded");this.La=d;Xta();h=null;d=b?b.playerStyle:a.ps;f=g.Fb($Ra,d);!d||f&&!this.N||(h=d);this.playerStyle=h;this.qa=(this.K=g.Fb($Ra,this.playerStyle))&&"play"!==this.playerStyle&&"jamboard"!==this.playerStyle;this.To=!this.qa;this.Ra=WB(!1,a.disableplaybackui);this.disablePaidContentOverlay=WB(!1, equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: a.severity,e,nK(a.details),f)}else this.oa.publish("nonfatalerror",a),d=/^pp/.test(this.videoData.clientPlaybackNonce),this.ue(a.errorCode,a.details),d&&"manifest.net.connect"===a.errorCode&&(a="https://www.youtube.com/generate_204?cpn="+this.videoData.clientPlaybackNonce+"&t="+(0,g.$C)(),FX(a,"manifest",function(h){b.G=!0;b.ma("pathprobe",h)},function(h){b.ue(h.errorCode,h.details)}))}}; equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: g.UR=function(a){a=SR(a.Ga);return"www.youtube-nocookie.com"===a?"www.youtube.com":a}; equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: g.Va("Goog_AdSense_Lidar_getUrlSignalsList",wjb);var gBa=pa(["//tpc.googlesyndication.com/sodar/",""]);var cNa={F5a:0,C5a:1,z5a:2,A5a:3,B5a:4,E5a:5,D5a:6};var npa=(new Date).getTime();var Pka="://secure-...imrworldwide.com/ ://cdn.imrworldwide.com/ ://aksecure.imrworldwide.com/ ://[^.]*.moatads.com ://youtube[0-9]+.moatpixel.com ://pm.adsafeprotected.com/youtube ://pm.test-adsafeprotected.com/youtube ://e[0-9]+.yt.srs.doubleverify.com www.google.com/pagead/xsul www.youtube.com/pagead/slav".split(" "),Qka=/\bocr\b/;var Ska=/(?:\[|%5B)([a-zA-Z0-9_]+)(?:\]|%5D)/g;g.y(Yu,g.Dd);Yu.prototype.dispose=function(){window.removeEventListener("offline",this.C);window.removeEventListener("online",this.C);this.Qn.Mj(this.G);delete Yu.instance}; equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: g.fS=function(a){var b=g.UR(a);oSa.includes(b)&&(b="www.youtube.com");return a.protocol+"://"+b}; equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: g.k.getVideoUrl=function(a,b,c,d,e,f){b={list:b};c&&(e?b.time_continue=c:b.t=c);c=g.UR(this);e="www.youtube.com"===c;!f&&d&&e?f="https://youtu.be/"+a:g.OR(this)?(f="https://"+c+"/fire",b.v=a):(f&&e?(f=this.protocol+"://"+c+"/shorts/"+a,d&&(b.feature="share")):(f=this.protocol+"://"+c+"/watch",b.v=a),pD&&(a=cpa())&&(b.ebc=a));return g.Mn(f,b)}; equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: r;this.jj=b?b.hl||"en_US":ZB("en_US",a.hl);this.region=b?b.contentRegion||"US":ZB("US",a.cr);this.hostLanguage=b?b.hostLanguage||"en":ZB("en",a.host_language);this.No=!this.Dc&&Math.random()<g.YI(this.experiments,"web_player_api_logging_fraction");this.bb=!this.Dc;this.enabledEngageTypes=new Set;this.deviceIsAudioOnly=!(null==b||!b.deviceIsAudioOnly);this.Jd=YB(this.Jd,a.ismb);this.To?(r=a.vss_host||"s.youtube.com","s.youtube.com"===r&&(r=SR(this.Ga)||"www.youtube.com")):r="video.google.com";this.Wm= equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: this.W.Ba&&(a.authuser=this.W.Ba);this.W.pageId&&(a.pageid=this.W.pageId);isNaN(this.cryptoPeriodIndex)||(a.cpi=this.cryptoPeriodIndex.toString());var e=(e=/_(TV|STB|GAME|OTT|ATV|BDP)_/.exec(g.pc()))?e[1]:"";"ATV"===e&&(a.cdt=e);this.G=a;this.G.session_id=d;this.qa=!0;"widevine"===this.B.flavor&&(this.G.hdr="1");"playready"===this.B.flavor&&(b=Number(pR(b.experiments,"playready_first_play_expiration")),!isNaN(b)&&0<=b&&(this.G.mfpe=""+b),this.qa=!1);b="";g.iR(this.B)?hR(this.B)?(d=c.B)&&(b="https://www.youtube.com/api/drm/fps?ek="+ equals www.youtube.com (Youtube)
Source: chromecache_151.2.dr String found in binary or memory: var G3={};var Cfb=/[&\?]action_proxy=1/,Bfb=/[&\?]token=([\w-]*)/,Dfb=/[&\?]video_id=([\w-]*)/,Efb=/[&\?]index=([\d-]*)/,Ffb=/[&\?]m_pos_ms=([\d-]*)/,Hfb=/[&\?]vvt=([\w-]*)/,tfb="ca_type dt el flash u_tz u_his u_h u_w u_ah u_aw u_cd u_nplug u_nmime frm u_java bc bih biw brdim vis wgl".split(" "),Gfb="www.youtube-nocookie.com youtube-nocookie.com www.youtube-nocookie.com:443 youtube.googleapis.com www.youtubeedu.com www.youtubeeducation.com video.google.com redirector.gvt1.com".split(" "),wfb={android:"ANDROID", equals www.youtube.com (Youtube)
Source: global traffic DNS traffic detected: DNS query: hello.hoteluser.com
Source: global traffic DNS traffic detected: DNS query: linkedin.com
Source: global traffic DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic DNS traffic detected: DNS query: www.google.com
Source: global traffic DNS traffic detected: DNS query: static.licdn.com
Source: global traffic DNS traffic detected: DNS query: stun.l.google.com
Source: global traffic DNS traffic detected: DNS query: platform.linkedin.com
Source: global traffic DNS traffic detected: DNS query: play.google.com
Source: global traffic DNS traffic detected: DNS query: ponf.linkedin.com
Source: global traffic DNS traffic detected: DNS query: media.licdn.com
Source: global traffic DNS traffic detected: DNS query: dpm.demdex.net
Source: global traffic DNS traffic detected: DNS query: www.youtube-nocookie.com
Source: global traffic DNS traffic detected: DNS query: sb.scorecardresearch.com
Source: global traffic DNS traffic detected: DNS query: lnkd.demdex.net
Source: global traffic DNS traffic detected: DNS query: trkn.us
Source: global traffic DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic DNS traffic detected: DNS query: i.ytimg.com
Source: global traffic DNS traffic detected: DNS query: linkedin.sc.omtrdc.net
Source: global traffic DNS traffic detected: DNS query: yt3.ggpht.com
Source: unknown HTTP traffic detected: POST /event?correlationId=6d929706-3925-4713-a700-05f57fb192e6&type=ping HTTP/1.1Host: ps.azurewaf.microsoft.comConnection: keep-aliveContent-Length: 2059sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/jsonAccept: */*Origin: https://www.linkedin.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.linkedin.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: chromecache_151.2.dr, chromecache_176.2.dr String found in binary or memory: http://tools.ietf.org/html/rfc1950
Source: chromecache_151.2.dr String found in binary or memory: http://www.youtube.com/videoplayback
Source: chromecache_151.2.dr String found in binary or memory: http://youtube.com/drm/2012/10/10
Source: chromecache_151.2.dr String found in binary or memory: http://youtube.com/streaming/metadata/segment/102015
Source: chromecache_151.2.dr String found in binary or memory: http://youtube.com/streaming/otf/durations/112015
Source: chromecache_151.2.dr String found in binary or memory: http://youtube.com/yt/2012/10/10
Source: chromecache_207.2.dr, chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/gsi/button
Source: chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/gsi/client
Source: chromecache_207.2.dr, chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/gsi/iframe/select
Source: chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/gsi/log
Source: chromecache_207.2.dr, chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/gsi/revoke
Source: chromecache_207.2.dr, chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/gsi/select
Source: chromecache_207.2.dr, chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/gsi/status
Source: chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/gsi/style
Source: chromecache_207.2.dr, chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/o/oauth2/auth
Source: chromecache_207.2.dr, chromecache_224.2.dr String found in binary or memory: https://accounts.google.com/o/oauth2/iframe
Source: chromecache_151.2.dr String found in binary or memory: https://admin.youtube.com
Source: chromecache_227.2.dr String found in binary or memory: https://angular.io/license
Source: chromecache_224.2.dr String found in binary or memory: https://developers.google.com/identity/gsi/web
Source: chromecache_151.2.dr String found in binary or memory: https://docs.google.com/get_video_info
Source: chromecache_200.2.dr String found in binary or memory: https://github.com/js-cookie/js-cookie
Source: chromecache_151.2.dr, chromecache_176.2.dr String found in binary or memory: https://github.com/madler/zlib/blob/master/zlib.h
Source: chromecache_151.2.dr String found in binary or memory: https://i.ytimg.com/vi/
Source: chromecache_201.2.dr, chromecache_240.2.dr, chromecache_245.2.dr, chromecache_253.2.dr String found in binary or memory: https://jarvis.corp.linkedin.com/codesearch/result/?path=flock-templates%2Fflock%2Femail%2Femail_ser
Source: chromecache_191.2.dr, chromecache_184.2.dr String found in binary or memory: https://jarvis.corp.linkedin.com/codesearch/results?query=mp%3Aflock-templates%20filepath%3Aflock%2F
Source: chromecache_201.2.dr, chromecache_253.2.dr String found in binary or memory: https://jira01.corp.linkedin.com:8443/browse/GUEST-14874
Source: chromecache_151.2.dr String found in binary or memory: https://jnn-pa.googleapis.com
Source: chromecache_147.2.dr, chromecache_180.2.dr String found in binary or memory: https://lea.verou.me
Source: chromecache_207.2.dr, chromecache_224.2.dr String found in binary or memory: https://oauth2.googleapis.com/revoke
Source: chromecache_147.2.dr, chromecache_180.2.dr String found in binary or memory: https://opensource.org/licenses/MIT
Source: chromecache_176.2.dr String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_151.2.dr String found in binary or memory: https://redux.js.org/api/store#subscribelistener
Source: chromecache_151.2.dr String found in binary or memory: https://redux.js.org/tutorials/fundamentals/part-4-store#creating-a-store-with-enhancers
Source: chromecache_151.2.dr String found in binary or memory: https://redux.js.org/tutorials/fundamentals/part-4-store#middleware
Source: chromecache_151.2.dr String found in binary or memory: https://redux.js.org/tutorials/fundamentals/part-6-async-logic#using-the-redux-thunk-middleware
Source: chromecache_224.2.dr String found in binary or memory: https://ssl.gstatic.com/_/gsi/_/ss/k=gsi.gsi.hxt2fGtpX-o.L.W.O/am=chE/d=1/rs=AF0KOtUE-4sZUYGEHSlTf3d
Source: chromecache_201.2.dr, chromecache_253.2.dr String found in binary or memory: https://stackoverflow.com/questions/5665203/getting-iphone-go-button-to-submit-form
Source: chromecache_151.2.dr String found in binary or memory: https://support.google.com/youtube/?p=missing_quality
Source: chromecache_151.2.dr String found in binary or memory: https://support.google.com/youtube/?p=noaudio
Source: chromecache_151.2.dr String found in binary or memory: https://support.google.com/youtube/?p=report_playback
Source: chromecache_151.2.dr String found in binary or memory: https://support.google.com/youtube/answer/6276924
Source: chromecache_185.2.dr String found in binary or memory: https://trkn.us/pixel/conv/ppt=10786;g=linkedin_flagship_homepage;gid=32238
Source: chromecache_188.2.dr String found in binary or memory: https://trkn.us/pixel/conv/ppt=14086;g=linkedin_flagship_homepage;gid=36535
Source: chromecache_170.2.dr String found in binary or memory: https://trkn.us/pixel/conv/ppt=14846;g=linkedin_flagship_homepage;gid=37470;
Source: chromecache_228.2.dr String found in binary or memory: https://trkn.us/pixel/conv/ppt=17688;g=flagship_page;gid=40658
Source: chromecache_151.2.dr String found in binary or memory: https://viacon.corp.google.com
Source: chromecache_201.2.dr, chromecache_240.2.dr, chromecache_245.2.dr, chromecache_253.2.dr String found in binary or memory: https://www.figma.com/file/egkKv7mudRwk2dVPM0WCR6/NBA-Digest-Email?type=design&node-id=2927-186236&t
Source: chromecache_151.2.dr String found in binary or memory: https://www.googleapis.com/certificateprovisioning/v1/devicecertificates/create?key=AIzaSyB-5OLKTx2i
Source: chromecache_230.2.dr String found in binary or memory: https://www.gstatic.com/cv/js/sender/v1/cast_sender.js
Source: chromecache_151.2.dr String found in binary or memory: https://www.gstatic.com/ytlr/img/sign_in_avatar_default.png?rn=
Source: chromecache_151.2.dr String found in binary or memory: https://www.youtube.com/api/drm/fps?ek=
Source: chromecache_151.2.dr String found in binary or memory: https://www.youtube.com/generate_204?cpn=
Source: chromecache_151.2.dr String found in binary or memory: https://youtu.be/
Source: chromecache_151.2.dr String found in binary or memory: https://youtube.com/api/drm/fps?ek=uninitialized
Source: chromecache_151.2.dr String found in binary or memory: https://youtubei.googleapis.com/youtubei/
Source: chromecache_151.2.dr String found in binary or memory: https://yurt.corp.google.com
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown Network traffic detected: HTTP traffic on port 50007 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown Network traffic detected: HTTP traffic on port 50088 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50076 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown Network traffic detected: HTTP traffic on port 49992 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50007
Source: unknown Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50020 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown Network traffic detected: HTTP traffic on port 50054 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50092
Source: unknown Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49941
Source: unknown Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50017 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown Network traffic detected: HTTP traffic on port 50087 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50035 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50019 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50092 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50035
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50047 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50089 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50044
Source: unknown Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50047
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50044 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:49710 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:49726 version: TLS 1.2
Source: unknown HTTPS traffic detected: 173.222.162.64:443 -> 192.168.2.6:49706 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:49825 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:50054 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.190.157.11:443 -> 192.168.2.6:50085 version: TLS 1.2
Source: unknown HTTPS traffic detected: 20.25.241.18:443 -> 192.168.2.6:50095 version: TLS 1.2
Source: classification engine Classification label: clean1.win@28/187@75/29
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2336 --field-trial-handle=2264,i,1795356992669694228,7733016986681663657,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://hello.hoteluser.com/api/mailings/click/PMRGSZBCHIYTQNBQGQ4TALBCOVZGYIR2EJUHI5DQHIXS63DJNZVWKZDJNYXGG33NF5RW63LQMFXHSL3IN52GK3BNMVXGO2LOMURCYITPOJTSEORCMIYWENRSGRQTALLEGJQTGLJUHE2TMLLBMQZGMLJTME4GGOJUHA2WCYRVGURCYITWMVZHG2LPNYRDUIRUEIWCE43JM4RDUIRWMJ3GUU3ZGNSDC3TJKJZXO3LMMJBESRKFNRAXQVZRJRATKN3HL5BUG5DFIV2EYOLFOBIT2IT5"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5772 --field-trial-handle=2264,i,1795356992669694228,7733016986681663657,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5748 --field-trial-handle=2264,i,1795356992669694228,7733016986681663657,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2336 --field-trial-handle=2264,i,1795356992669694228,7733016986681663657,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5772 --field-trial-handle=2264,i,1795356992669694228,7733016986681663657,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5748 --field-trial-handle=2264,i,1795356992669694228,7733016986681663657,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Automated click: agree
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Automated click: agree
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Automated click: agree
Source: Window Recorder Window detected: More than 3 window changes detected
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 dnsIp2 2 Behavior Graph ID: 1432149 URL: https://hello.hoteluser.com... Startdate: 26/04/2024 Architecture: WINDOWS Score: 1 18 stun.l.google.com 2->18 20 stun-anycast.l.google.com 2->20 22 bg.microsoft.map.fastly.net 2->22 6 chrome.exe 9 2->6         started        9 chrome.exe 2->9         started        process3 dnsIp4 24 192.168.2.6, 19302, 443, 49212 unknown unknown 6->24 26 239.255.255.250 unknown Reserved 6->26 11 chrome.exe 6->11         started        14 chrome.exe 6->14         started        16 chrome.exe 6 6->16         started        process5 dnsIp6 28 sb.scorecardresearch.com 18.173.166.42, 443, 49973, 49987 MIT-GATEWAYSUS United States 11->28 30 part-0013.t-0009.t-msedge.net 13.107.246.41, 443, 49799, 49808 MICROSOFT-CORP-MSN-AS-BLOCKUS United States 11->30 32 44 other IPs or domains 11->32
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
142.250.189.142
 play.google.com United States
15169 GOOGLEUS false
13.107.246.41
 part-0013.t-0009.t-msedge.net United States
8068 MICROSOFT-CORP-MSN-AS-BLOCKUS false
192.178.50.78
 youtube-ui.l.google.com United States
15169 GOOGLEUS false
23.39.223.136
 trkn.us United States
23700 FASTNET-AS-IDLinknet-FastnetASNID false
142.250.64.142
 unknown United States
15169 GOOGLEUS false
3.210.158.44
 unknown United States
14618 AMAZON-AESUS false
142.250.217.225
 unknown United States
15169 GOOGLEUS false
74.125.250.129
 stun-anycast.l.google.com United States
15169 GOOGLEUS false
142.250.217.161
 photos-ugc.l.googleusercontent.com United States
15169 GOOGLEUS false
52.11.255.62
 app1a.portal.outreach.io United States
16509 AMAZON-02US false
142.250.189.130
 cm.g.doubleclick.net United States
15169 GOOGLEUS false
44.193.186.241
 unknown United States
14618 AMAZON-AESUS false
34.213.75.202
 dcs-public-edge-usw2-219535174.us-west-2.elb.amazonaws.com United States
16509 AMAZON-02US false
52.205.1.199
 unknown United States
14618 AMAZON-AESUS false
63.140.38.111
 linkedin.sc.omtrdc.net United States
4134 CHINANET-BACKBONENo31Jin-rongStreetCN false
192.178.50.86
 unknown United States
15169 GOOGLEUS false
142.250.217.228
 unknown United States
15169 GOOGLEUS false
144.2.9.1
 ponf.linkedin.com Netherlands
14413 LINKEDINUS false
152.199.5.152
 cs767.wpc.epsiloncdn.net United States
15133 EDGECASTUS false
152.199.24.163
 cs1404.wpc.epsiloncdn.net United States
15133 EDGECASTUS false
184.28.118.128
 unknown United States
20940 AKAMAI-ASN1EU false
142.250.64.196
 www.google.com United States
15169 GOOGLEUS false
63.140.38.55
 unknown United States
4134 CHINANET-BACKBONENo31Jin-rongStreetCN false
239.255.255.250
 unknown Reserved
unknown unknown false
142.250.217.214
 i.ytimg.com United States
15169 GOOGLEUS false
3.227.203.183
 dcs-public-edge-va6-158015560.us-east-1.elb.amazonaws.com United States
14618 AMAZON-AESUS false
18.173.166.42
 sb.scorecardresearch.com United States
3 MIT-GATEWAYSUS false
18.213.37.228
 unknown United States
14618 AMAZON-AESUS false

Private

IP
192.168.2.6

Contacted Domains

Name IP Active
i.ytimg.com 142.250.217.214 true
ponf.linkedin.com 144.2.9.1 true
dcs-public-edge-usw2-219535174.us-west-2.elb.amazonaws.com 34.213.75.202 true
linkedin.com 13.107.42.14 true
fp2e7a.wpc.phicdn.net 192.229.211.108 true
app1a.portal.outreach.io 52.11.255.62 true
dcs-public-edge-va6-158015560.us-east-1.elb.amazonaws.com 3.227.203.183 true
bg.microsoft.map.fastly.net 199.232.210.172 true
part-0013.t-0009.t-msedge.net 13.107.246.41 true
youtube-ui.l.google.com 192.178.50.78 true
stun-anycast.l.google.com 74.125.250.129 true
play.google.com 142.250.189.142 true
cm.g.doubleclick.net 142.250.189.130 true
photos-ugc.l.googleusercontent.com 142.250.217.161 true
cs767.wpc.epsiloncdn.net 152.199.5.152 true
sb.scorecardresearch.com 18.173.166.42 true
www.google.com 142.250.64.196 true
cs1404.wpc.epsiloncdn.net 152.199.24.163 true
trkn.us 23.39.223.136 true
linkedin.sc.omtrdc.net 63.140.38.111 true
yt3.ggpht.com unknown unknown
static.licdn.com unknown unknown
hello.hoteluser.com unknown unknown
lnkd.demdex.net unknown unknown
www.linkedin.com unknown unknown
media.licdn.com unknown unknown
platform.linkedin.com unknown unknown
stun.l.google.com unknown unknown
dpm.demdex.net unknown unknown
www.youtube-nocookie.com unknown unknown

Contacted URLs

Name Malicious Antivirus Detection Reputation
https://www.linkedin.com/?trk=seo-authwall-base_nav-header-logo false
    		high
    https://i.ytimg.com/vi_webp/ha7ASaPnjbA/maxresdefault.webp false
      		high
      https://www.youtube-nocookie.com/s/player/652ba3a2/www-player.css false
        		high
        https://trkn.us/pixel/conv/ppt=14846;g=linkedin_flagship_homepage;gid=37470;;ip=102.129.152.220;cuidchk=1 false
        • Avira URL Cloud: safe
        		 unknown
        https://trkn.us/pixel/conv/ppt=14086;g=linkedin_flagship_homepage;gid=36535 false
        • 0%, Virustotal, Browse
        • Avira URL Cloud: safe
        		 unknown
        https://platform.linkedin.com/litms/utag/seo-directory-frontend/utag.js?cb=1714139100000 false
          		high
          https://www.youtube-nocookie.com/s/player/652ba3a2/player_ias.vflset/en_US/remote.js false
            		high
            https://trkn.us/pixel/conv/ppt=10786;g=linkedin_flagship_homepage;gid=32238 false
            • 0%, Virustotal, Browse
            • Avira URL Cloud: safe
            		 unknown
            https://trkn.us/pixel/conv/ppt=14846;g=linkedin_flagship_homepage;gid=37470; false
            • 0%, Virustotal, Browse
            • Avira URL Cloud: safe
            		 unknown
            https://hello.hoteluser.com/api/mailings/click/PMRGSZBCHIYTQNBQGQ4TALBCOVZGYIR2EJUHI5DQHIXS63DJNZVWKZDJNYXGG33NF5RW63LQMFXHSL3IN52GK3BNMVXGO2LOMURCYITPOJTSEORCMIYWENRSGRQTALLEGJQTGLJUHE2TMLLBMQZGMLJTME4GGOJUHA2WCYRVGURCYITWMVZHG2LPNYRDUIRUEIWCE43JM4RDUIRWMJ3GUU3ZGNSDC3TJKJZXO3LMMJBESRKFNRAXQVZRJRATKN3HL5BUG5DFIV2EYOLFOBIT2IT5 false
              		high
              about:blank false
              • Avira URL Cloud: safe
              		 low
              https://dpm.demdex.net/ibs:dpid=771&dpuuid=CAESEPZ2pAdtJgFbjiXXiSFIoKM&google_cver=1?gdpr=0&gdpr_consent= false
                		high
                https://www.youtube-nocookie.com/embed/ha7ASaPnjbA?rel=0&amp;autohide=1&amp;playsinline=0&amp;html5=1&amp;wmode=opaque&amp;autoplay=0 false
                  		high
                  https://platform.linkedin.com/litms/utag/homepage-guest-frontend/utag.js?cb=1714139100000 false
                    		high
                    https://sb.scorecardresearch.com/b?c1=2&c2=6402952&c3=&c4=&c5=&c6=&c15=&ns__t=1714139212769&ns_c=UTF-8&c8=User%20Agreement%20%7C%20LinkedIn&c7=https%3A%2F%2Fwww.linkedin.com%2Flegal%2Fuser-agreement%3Ftrk%3Dseo-authwall-base_join-form-user-agreement&c9= false
                    • Avira URL Cloud: safe
                    		 unknown
                    https://platform.linkedin.com/litms/utag/lithograph/utag.js?cb=1714139100000 false
                      		high
                      https://platform.linkedin.com/litms/utag/homepage-guest-frontend/utag.120.js?utv=ut4.51.202403291943 false
                        		high
                        https://lnkd.demdex.net/dest5.html?d_nsid=0 false
                          		high
                          https://dpm.demdex.net/id?d_visid_ver=5.1.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=14215E3D5995C57C0A495C55%40AdobeOrg&d_nsid=0&ts=1714139210116 false
                            		high
                            https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user false
                              		high
                              https://lnkd.demdex.net/event?d_dil_ver=9.4&_ts=1714139210122 false
                                		high
                                https://platform.linkedin.com/litms/utag/homepage-guest-frontend/utag.123.js?utv=ut4.51.202403291943 false
                                  		high
                                  https://sb.scorecardresearch.com/b2?c1=2&c2=6402952&c3=&c4=&c5=&c6=&c15=&ns__t=1714139212769&ns_c=UTF-8&c8=User%20Agreement%20%7C%20LinkedIn&c7=https%3A%2F%2Fwww.linkedin.com%2Flegal%2Fuser-agreement%3Ftrk%3Dseo-authwall-base_join-form-user-agreement&c9= false
                                  • Avira URL Cloud: safe
                                  		 unknown
                                  https://www.youtube-nocookie.com/s/player/652ba3a2/www-embed-player.vflset/www-embed-player.js false
                                    		high
                                    https://www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 false
                                      		high
                                      https://www.linkedin.com/legal/user-agreement?trk=seo-authwall-base_join-form-user-agreement false
                                        		high
                                        https://ponf.linkedin.com/pixel/tracking.png?reqid=f154cfe4-09b1-4f70-87af-d7e73014ce4b&pageInstance=urn%3Ali%3Apage%3Ad_homepage-guest-home_jsbeacon%3BlogUyGGhS7eKuFtc7YiY3w%3D%3D&js=enabled false
                                          		high
                                          https://trkn.us/pixel/conv/ppt=10786;g=linkedin_flagship_homepage;gid=32238;ip=102.129.152.220;cuidchk=1 false
                                          • Avira URL Cloud: safe
                                          		 unknown
                                          https://platform.linkedin.com/litms/utag/homepage-guest-frontend/utag.122.js?utv=ut4.51.202403291943 false
                                            		high
                                            https://platform.linkedin.com/litms/utag/lithograph/utag.100.js?utv=ut4.51.202403122117 false
                                              		high
                                              https://www.youtube-nocookie.com/generate_204?D7o6Wg false
                                                		high
                                                https://cm.g.doubleclick.net/pixel?google_nid=adobe_dmp&google_cm&gdpr=0&gdpr_consent=&google_hm=ODE0MjMzODAyMTcwMDAyOTk0ODAyOTI1Njk3NjEzMTk3ODUxOTc= false
                                                  		high
                                                  https://lnkd.demdex.net/event?d_dil_ver=9.4&_ts=1714139210134 false
                                                    		high
                                                    https://play.google.com/log?format=json&hasfast=true&authuser=0 false
                                                      		high
                                                      https://linkedin.sc.omtrdc.net/b/ss/lnkdprod/10/JS-2.20.0/s64624110694074 false
                                                      • Avira URL Cloud: safe
                                                      		 unknown
                                                      https://cm.g.doubleclick.net/pixel?google_nid=adobe_dmp&google_cm=&gdpr=0&gdpr_consent=&google_hm=ODE0MjMzODAyMTcwMDAyOTk0ODAyOTI1Njk3NjEzMTk3ODUxOTc=&google_tc= false
                                                        		high
                                                        https://media.licdn.com/dms/image/C4D08AQFXY7ga83Bafw/croft-frontend-shrinkToFit1920/0/1598658592736?e=2147483647&v=beta&t=6TqEAS5kwzR7zWZs3dGQkpEcOXUO9AXNDN-ErBjqQec false
                                                          		high
                                                          https://play.google.com/log?hasfast=true&authuser=0&format=json false
                                                            		high
                                                            https://linkedin.sc.omtrdc.net/b/ss/lnkdprod/10/JS-2.20.0/s64624110694074?AQB=1&pccr=true&g=none&AQE=1 false
                                                            • Avira URL Cloud: safe
                                                            		 unknown
                                                            https://lnkd.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.linkedin.com false
                                                              		high
                                                              https://platform.linkedin.com/litms/utag/homepage-guest-frontend/utag.119.js?utv=ut4.51.202403291943 false
                                                                		high
                                                                https://trkn.us/pixel/conv/ppt=17688;g=flagship_page;gid=40658 false
                                                                • 0%, Virustotal, Browse
                                                                • Avira URL Cloud: safe
                                                                		 unknown
                                                                https://www.google.com/js/th/suXtyypHr-kmcDv8BLab_zSS-cnpn4GzxWV-_PefaIU.js false
                                                                  		high
                                                                  https://www.linkedin.com/company/hotel-user false
                                                                    		high
                                                                    https://www.linkedin.com/authwall?trk=bf&trkInfo=AQFLSIkSilwY0gAAAY8aqADojF_4fQQe3HaIO3Auy53RWwhXX2TLbE4QsX024F-CRFF3ZihVRFyF5EPv1CZynQi9_X7ED8qmFb3X1IVNjgumY2pNMArKRJcdH2_pYvIf8S-3xSA=&original_referer=&sessionRedirect=https%3A%2F%2Fwww.linkedin.com%2Fcompany%2Fhotel-user#main-content false
                                                                      		high
                                                                      https://yt3.ggpht.com/9XmuxL_LL7CxAOOlbBgTnJIo2uHpoLKHhWzlPt7O49ULQmvBSJlxk1RpX3pJ8jkRBkD6p9BIRg=s68-c-k-c0x00ffffff-no-rj false
                                                                        		high
                                                                        https://www.youtube-nocookie.com/s/player/652ba3a2/player_ias.vflset/en_US/embed.js false
                                                                          		high
                                                                          https://www.youtube-nocookie.com/s/player/652ba3a2/player_ias.vflset/en_US/base.js false
                                                                            		high