Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://nuance-pdf-professional2.software.informer.com/7.2/

Overview

General Information

Sample URL:https://nuance-pdf-professional2.software.informer.com/7.2/
Analysis ID:1592224
Infos:

Detection

Score:48
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

AI detected landing page (webpage, office document or email)
AI detected suspicious Javascript
Detected non-DNS traffic on DNS port
HTML body with high number of embedded SVGs detected
HTML page contains hidden javascript code

Classification

  • System is w10x64
  • chrome.exe (PID: 5448 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 3228 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2056 --field-trial-handle=2004,i,9348203157779861519,15638006010270494539,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 6356 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5628 --field-trial-handle=2004,i,9348203157779861519,15638006010270494539,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 6592 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4456 --field-trial-handle=2004,i,9348203157779861519,15638006010270494539,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • chrome.exe (PID: 6456 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://nuance-pdf-professional2.software.informer.com/7.2/" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup
No configs have been found
No yara matches
No Sigma rule has matched
No Suricata rule has matched

Click to jump to signature section

Show All Signature Results

Phishing

barindex
Source: https://nuance-pdf-professional2.software.informer.com/7.2/Joe Sandbox AI: Page contains button: 'DOWNLOAD' Source: '1.2.pages.csv'
Source: 0.150.id.script.csvJoe Sandbox AI: Detected suspicious JavaScript with source url: https://get4.protectonow.com/install/?mid=f28d8534... This script demonstrates several high-risk behaviors, including dynamic code execution, data exfiltration, and the use of obfuscated URLs. It creates a script tag and an iframe that load content from untrusted domains, which could potentially be used for malicious purposes such as phishing or credential theft.
Source: 2.161..script.csvJoe Sandbox AI: Detected suspicious JavaScript with source url: https://obseu.7roundprince.com/ct?id=74676&url=htt... This script exhibits several high-risk behaviors, including dynamic code execution, data exfiltration, and the use of obfuscated code/URLs. The script appears to be executing a complex operation involving a large amount of encoded data, which is highly suspicious and indicative of malicious intent. Additionally, the script interacts with an untrusted domain, further increasing the risk. Overall, this script demonstrates clear signs of malicious activity and poses a significant security threat.
Source: 2.153..script.csvJoe Sandbox AI: Detected suspicious JavaScript with source url: https://get4.protectonow.com/siglp.js?rpclid=f28d8... This script exhibits several high-risk behaviors, including dynamic code execution, data exfiltration, and obfuscated code/URLs. It also performs aggressive DOM manipulation and interacts with external domains of unknown reputation. While some of the functionality may be intended for legitimate purposes like analytics and error reporting, the overall behavior and lack of transparency raise significant security concerns.
Source: https://get4.protectonow.com/install/?mid=f28d8534-d38e-11ef-93a7-aab196f2f20d&rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&utm_source=adx_ext_download_prot_smrtsp___5e460bab&uq=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9HTTP Parser: Total embedded SVG size: 147456
Source: https://nuance-pdf-professional2.software.informer.com/7.2/HTTP Parser: Base64 decoded: [null,null,null,3]
Source: https://nuance-pdf-professional2.software.informer.com/7.2/HTTP Parser: No favicon
Source: https://nuance-pdf-professional2.software.informer.com/7.2/HTTP Parser: No favicon
Source: https://nuance-pdf-professional2.software.informer.com/7.2/HTTP Parser: No favicon
Source: https://nuance-pdf-professional2.software.informer.com/7.2/HTTP Parser: No favicon
Source: https://nuance-pdf-professional2.software.informer.com/7.2/HTTP Parser: No favicon
Source: https://nuance-pdf-professional2.software.informer.com/7.2/HTTP Parser: No favicon
Source: https://nuance-pdf-professional2.software.informer.com/7.2/HTTP Parser: No favicon
Source: https://get4.protectonow.com/install/?mid=f28d8534-d38e-11ef-93a7-aab196f2f20d&rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&utm_source=adx_ext_download_prot_smrtsp___5e460bab&uq=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9HTTP Parser: No favicon
Source: global trafficTCP traffic: 192.168.2.4:49893 -> 1.1.1.1:53
Source: unknownTCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknownTCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknownTCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknownTCP traffic detected without corresponding DNS query: 199.232.214.172
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global trafficHTTP traffic detected: GET /7.2/ HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /fonts/SourceSansPro-Regular.woff HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nuance-pdf-professional2.software.informer.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://nuance-pdf-professional2.software.informer.com/7.2/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /fonts/SourceSansPro-Bold.woff HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nuance-pdf-professional2.software.informer.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://nuance-pdf-professional2.software.informer.com/7.2/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /fonts/SourceSansPro-SemiBold.woff HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://nuance-pdf-professional2.software.informer.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://nuance-pdf-professional2.software.informer.com/7.2/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/v4/empty_stars.svg HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/7.2/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/empty.gif HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /style/onexit9.css HTTP/1.1Host: software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/5524/5524797.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/blank.gif HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /style/v4/min/program.min.css HTTP/1.1Host: software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/onexit9.js HTTP/1.1Host: i.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/footer4.js HTTP/1.1Host: i.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/program-mac.min.js HTTP/1.1Host: i.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/cache/hilight_software_v4.js?rnd=824406174 HTTP/1.1Host: i.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/comments-module/smiles/smile.gif HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/7048/7048274.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/8509/8509758.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /log.php?id=67,70,204,8551,3957,1,8597,8691,50,46,7667,6523,6343,6385,6512,6504,9163,9561,8713,4543,291,6321,140,7241,7242,8043,6142,7117,9497,8431&urlid=&ref=&r=86110 HTTP/1.1Host: hits.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/achecker3.js HTTP/1.1Host: i.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/footer4.js HTTP/1.1Host: i.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/3243/3243680.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/8336/8336687.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/v2/elements.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/5860/5860964.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ajax/log_hit4.php?r=20025 HTTP/1.1Host: software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/v4/empty_stars.svg HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/onexit9.js HTTP/1.1Host: i.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/5524/5524797.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/empty.gif HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/blank.gif HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/comments-module/smiles/smile.gif HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/7048/7048274.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/8509/8509758.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/cache/hilight_software_v4.js?rnd=824406174 HTTP/1.1Host: i.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /log.php?id=67,70,204,8551,3957,1,8597,8691,50,46,7667,6523,6343,6385,6512,6504,9163,9561,8713,4543,291,6321,140,7241,7242,8043,6142,7117,9497,8431&urlid=&ref=&r=86110 HTTP/1.1Host: hits.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/48/1866/1866515.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/program-mac.min.js HTTP/1.1Host: i.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/v4/empty_stars.svg HTTP/1.1Host: software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://software.informer.com/style/v4/min/program.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ajax/login_menu.php?ref= HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*X-Requested-With: XMLHttpRequestsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://nuance-pdf-professional2.software.informer.com/7.2/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/default_icon/default_48_0.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ajax/th_view.php?id=3948072 HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/7.2/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/achecker3.js HTTP/1.1Host: i.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v3/logo_si_white.svg HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /icons/png/128/3439/3439369.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /icons/png/48/8336/8336687.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /ajax/log_hit4.php?r=20025 HTTP/1.1Host: software.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/fill_stars.svg HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /p5/nuance-pdf-converter-professional-v8-main-window-display.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v2/elements.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /icons/png/48/5860/5860964.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /icons/png/48/3243/3243680.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /ajax/login_menu.php?ref= HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /awards/si-award-epick4.png HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/filled_stars.svg HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/empty_stars.svg HTTP/1.1Host: software.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /icons/png/48/1866/1866515.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /ajax/th_view.php?id=3948072 HTTP/1.1Host: nuance-pdf-professional2.software.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/default_icon/default_48_0.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/5stars.svg HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/4stars.svg HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v3/logo_si_white.svg HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/3stars.svg HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /icons/png/128/3439/3439369.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/2stars.svg HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /pagead/html/r20250113/r20190131/zrt_lookup_fy2021.html HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/v4/1stars.svg HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /pagead/ads?client=ca-pub-4821006852914359&output=html&h=90&slotname=7854405427&adk=4056614258&adf=1706824535&pi=t.ma~as.7854405427&w=1200&abgtt=9&fwrn=4&fwrnh=100&lmt=1736870130&rafmt=2&format=1200x90&url=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=2&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1736979634915&bpp=4&bdt=1617&idt=1532&shv=r20250113&mjsv=m202501090101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&correlator=4566372036047&frm=20&pv=2&u_tz=-300&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=311&biw=1263&bih=907&scr_x=0&scr_y=0&eid=42533202%2C31089683%2C95344791%2C95350245%2C95340252%2C95340254&oid=2&pvsid=3788874330487745&tmod=2006592406&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=o%7C%7Coe%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=1582 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/ads?client=ca-pub-4821006852914359&output=html&h=280&slotname=9917528229&adk=658919145&adf=3882744954&pi=t.ma~as.9917528229&w=336&abgtt=9&fwrn=4&fwrnh=100&lmt=1736870130&rafmt=3&format=336x280&url=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=1&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1736979634919&bpp=1&bdt=1620&idt=1594&shv=r20250113&mjsv=m202501090101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=1200x90&correlator=4566372036047&frm=20&pv=1&u_tz=-300&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=15&ady=550&biw=1263&bih=907&scr_x=0&scr_y=0&eid=42533202%2C31089683%2C95344791%2C95350245%2C95340252%2C95340254&oid=2&pvsid=3788874330487745&tmod=2006592406&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=o%7C%7CoeE%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=1600 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/v4/fill_stars.svg HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /pagead/ads?client=ca-pub-4821006852914359&output=html&h=90&slotname=4034399826&adk=3689936537&adf=2221415025&pi=t.ma~as.4034399826&w=847&abgtt=9&fwrn=4&fwrnh=100&lmt=1736870130&rafmt=2&format=847x90&url=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=2&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1736979634920&bpp=1&bdt=1621&idt=1620&shv=r20250113&mjsv=m202501090101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=1200x90%2C336x280&correlator=4566372036047&frm=20&pv=1&u_tz=-300&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=15&ady=860&biw=1263&bih=907&scr_x=0&scr_y=0&eid=42533202%2C31089683%2C95344791%2C95350245%2C95340252%2C95340254&oid=2&pvsid=3788874330487745&tmod=2006592406&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=o%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1625 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/ads?client=ca-pub-4821006852914359&output=html&adk=1812271804&adf=3025194257&abgtt=9&lmt=1736870130&plaf=1%3A2%2C7%3A2&plat=1%3A128%2C2%3A128%2C3%3A128%2C4%3A128%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2%2F&pra=7&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~3~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aicel=33~38&aifxl=29_18~30_19&aiixl=29_5~30_6&aiict=1&aiapm=0.2&aiapmi=0.33938&aief=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1736979634921&bpp=3&bdt=1622&idt=1657&shv=r20250113&mjsv=m202501090101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=1200x90%2C336x280%2C847x90&nras=1&correlator=4566372036047&frm=20&pv=1&u_tz=-300&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1263&bih=907&scr_x=0&scr_y=0&eid=42533202%2C31089683%2C95344791%2C95350245%2C95340252%2C95340254&oid=2&pvsid=3788874330487745&tmod=2006592406&uas=3&nvt=1&fsapi=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=4&uci=a!4&fsb=1&dtd=1664 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /images/v4/filled_stars.svg HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /p5/nuance-pdf-converter-professional-v8-main-window-display.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /awards/si-award-epick4.png HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/5stars.svg HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/4stars.svg HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/3stars.svg HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/1stars.svg HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /images/v4/2stars.svg HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635
Source: global trafficHTTP traffic detected: GET /pagead/drt/s?v=r20120211 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4821006852914359&output=html&h=90&slotname=4034399826&adk=3689936537&adf=2221415025&pi=t.ma~as.4034399826&w=847&abgtt=9&fwrn=4&fwrnh=100&lmt=1736870130&rafmt=2&format=847x90&url=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=2&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1736979634920&bpp=1&bdt=1621&idt=1620&shv=r20250113&mjsv=m202501090101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=1200x90%2C336x280&correlator=4566372036047&frm=20&pv=1&u_tz=-300&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=15&ady=860&biw=1263&bih=907&scr_x=0&scr_y=0&eid=42533202%2C31089683%2C95344791%2C95350245%2C95340252%2C95340254&oid=2&pvsid=3788874330487745&tmod=2006592406&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=o%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1625Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global trafficHTTP traffic detected: GET /pagead/adview?ai=CcowAtTSIZ5nPM7qSjuwPsJeGsAe9qs_Ndemi3NbEEsCNtwEQASAAYMmWy4vEpPwPggEXY2EtcHViLTQ4MjEwMDY4NTI5MTQzNTnIAQmoAwHIAwKqBIICT9DUYKjKI4pQraEcfrh6m7h9bplWrkbPj_91eeUOpJhdu9KpO0_XYY-cFu19QnZyNheKNP9npaVhnppps6EXhc3BzLo3anLFZHbeg9orLOvmqDeb92XzJ9zmloLoNmP_QdruBQ3lrp4hdP1u3o5ziALuCeqfDUCAk3nMPyRGcGzELC11L3Li97soOg-L0FVd1MKKdwSb3JXcm9Jc4SzAnkh4e7olKZznc1bs88r2I5yWFLGbTgw6FY7xoSlUEd1JBSESOIhUn4RAQ2j7Ze9B0WVkDsyfWXvNgTvg5yey5YKtS_bWmlwrK3xttOT7-OwGuzjn-WXBxYdZQ4iA7PJcsyxzgAaarO2X-f_z_OUBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOljj466y4fiKA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi00ODIxMDA2ODUyOTE0MzU5GAAYDA&sigh=1sAzvU4xCKM&uach_m=%5BUACH%5D&cid=CAQSTwCa7L7dQq7Ua8LJPgiEu7R4dxu7VSCDaaBZxHkFM4asi_fnDbC-VtJCptQoPfsZc_9JBcL2RZCBBo0g6gLsCb51Y4n2HKxUL6PsZw0IKKMYAQ HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4821006852914359&output=html&h=90&slotname=7854405427&adk=4056614258&adf=1706824535&pi=t.ma~as.7854405427&w=1200&abgtt=9&fwrn=4&fwrnh=100&lmt=1736870130&rafmt=2&format=1200x90&url=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=2&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1736979634915&bpp=4&bdt=1617&idt=1532&shv=r20250113&mjsv=m202501090101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&correlator=4566372036047&frm=20&pv=2&u_tz=-300&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=311&biw=1263&bih=907&scr_x=0&scr_y=0&eid=42533202%2C31089683%2C95344791%2C95350245%2C95340252%2C95340254&oid=2&pvsid=3788874330487745&tmod=2006592406&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=o%7C%7Coe%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=1582Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global trafficHTTP traffic detected: GET /pagead/adview?ai=CFlzftTSIZ7fqNvicjuwP6qqliQyW75bOfLntip-hE-iin8aRDhABIOPuhSVgyZbLi8Sk_A-gAZPCv5A-yAECqAMByAPJBKoEjQJP0CL5SLOELaIQSqv0YIbDE8pOSbgr22jlHHBjjvufLioiWQD0qy5QZ63BY74A0vox_NruVSkZofwTOaw4ZX4--HDB5YWFIJft_oiYIPFrFuRGbt_LpG9JRyvxC5uwc2yi2Uyz3KdpR1li7oUfANKZ_S77aEEq26oHgYDYQzaz2ZTJP64pzZOxSktqkFuOahg1x3py7XiJm_yNyrAkQDR_ddhv30tgcROq6HoPe_QtpIdqxYlDxhWX7sDCyRWuNpMsGj4_OQ1X9ByemvAeYXnC17BOnu4_ao4Yu6J4z3M_UgR9Cx34rXaJtRmjRKbRKBDtLBH6isuKog6ayRvEJZo1YXmItnJIWEB1POvJR8AE9IPAwv8EiAWpyvnHUJIFBAgEGAGSBQQIBRgEoAYCgAeT-o_wGKgH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB_fCsQLYBwHyBwQQz9dm0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYjv-xsuH4igOaCUpodHRwczovL3BjYXBwc3RvcmUuY29tLz9hcD1hZHdwJmFzPWdfZF9hbGxfbmV3X3VzX2NhX2F1X2diX2luJmdhZF9zb3VyY2U9NYAKAcgLAdoMEQoLEJC4hu_4vLX3zQESAgED2BMN0BUBmBYBgBcBshceChoIABIUcHViLTQ4MjEwMDY4NTI5MTQzNTkYABgBuhcCOAGyGAkSArBTGAIiAQDQGAHoGAE&sigh=IhB1dc_aNk8&uach_m=%5BUACH%5D&ase=2&cid=CAQSTgCa7L7dHFLM9IPFcD6ghiOIXDaBWC3kpV_PFb9R9pCIrNFE7BSHF3RZLGlcutaAcbdRcj-GmWm9tJZKlN96y-eWrNTvXXeYwXuCpX3sSxgB&vis=1&ebtr=1&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: trigger, event-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4821006852914359&output=html&h=90&slotname=4034399826&adk=3689936537&adf=2221415025&pi=t.ma~as.4034399826&w=847&abgtt=9&fwrn=4&fwrnh=100&lmt=1736870130&rafmt=2&format=847x90&url=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=2&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1736979634920&bpp=1&bdt=1621&idt=1620&shv=r20250113&mjsv=m202501090101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=1200x90%2C336x280&correlator=4566372036047&frm=20&pv=1&u_tz=-300&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=15&ady=860&biw=1263&bih=907&scr_x=0&scr_y=0&eid=42533202%2C31089683%2C95344791%2C95350245%2C95340252%2C95340254&oid=2&pvsid=3788874330487745&tmod=2006592406&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=o%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1625Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global trafficHTTP traffic detected: GET /pagead/adview?ai=Cdz3WtTSIZ6qiNLaTjuwP-pCXuQK9qs_Ndemi3NbEEsCNtwEQASAAYMmWy4vEpPwPggEXY2EtcHViLTQ4MjEwMDY4NTI5MTQzNTnIAQmoAwHIAwKqBIICT9Cmv1-2FEzbw3G2tBIb1haRxDRSLz7yOGGQqurLUK5Np7iNGFjAafY9HpC_nPbw3M7sTsD6v3dvLEFcHabJAb-buCaAMTRI4sunpsadyoaGR6fbysEVdjp7jeFr4gJpxdXuV35NN6NhJ67MEb7qs9dPLNjiiILm0M97azcJR5ooAuQEZrU62Tag7v5OrPIQI7foZsuoKigmXsT1AVD4Gfr9u-OtT-yKfjMps-zpcMLnS1F7UWICa_rzqnICn9zRcNUe9S5dC9O8PT8ibVCcU1mUVl1VBC1VHgUhQl7T_cEJaUKBjLnwMeA3OKC41A45IsL2EbR2qiohd5sFWv8sReb_gAaarO2X-f_z_OUBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliOqq-y4fiKA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi00ODIxMDA2ODUyOTE0MzU5GAAYDA&sigh=lSXLiM_1JWU&uach_m=%5BUACH%5D&cid=CAQSTwCa7L7dauW-cuQWFi659Ps5JSAeXiroZyXANVgbnX4d8B4rLsxr6OWlefLHzaaO0oxkwYBW3LA5y6QsF-eog1jrg8xThFmwIVNMUpPZxvcYAQ HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4821006852914359&output=html&h=280&slotname=9917528229&adk=658919145&adf=3882744954&pi=t.ma~as.9917528229&w=336&abgtt=9&fwrn=4&fwrnh=100&lmt=1736870130&rafmt=3&format=336x280&url=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=1&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1736979634919&bpp=1&bdt=1620&idt=1594&shv=r20250113&mjsv=m202501090101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=1200x90&correlator=4566372036047&frm=20&pv=1&u_tz=-300&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=15&ady=550&biw=1263&bih=907&scr_x=0&scr_y=0&eid=42533202%2C31089683%2C95344791%2C95350245%2C95340252%2C95340254&oid=2&pvsid=3788874330487745&tmod=2006592406&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=o%7C%7CoeE%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&fsb=1&dtd=1600Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global trafficHTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /rtimp?a=imp&cr=ext_download_prot_smrtsp&d=nuance-pdf-professional2.software.informer.com&gid=&im=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9&p=Z4g0tQAM55kHg4k6AAGLsDXa4KrzOKSPp000GA&sid=f28d8534-d38e-11ef-93a7-aab196f2f20d HTTP/1.1Host: g.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /rtimp?a=imp&cr=ext_download_prot_smrtsp&d=nuance-pdf-professional2.software.informer.com&gid=&im=FD4w747ub408eaM-61M3wJ3qfK7ErWHy518FlRGHao3f2PgYtkrU2HX0FFqbUAk8GJ00NxtW6WbXQuI8X1R_UXehWD3jEYZp8ei2zrBAxLF_eC2lrTItLT6yz_yg3qTdqPt-cj1efdGND7MZs7ZsJRipunhgT1FJD1LmFwmpi2OQr3jTzQR9zLhN6QczGb3mADM0t22ZeO2Xg8vOdZ1mlHLLgV4JF8Ewi3eE2AqQEV5caCIffDgbT78Fp5xkdUBCPKbARqx_8dnDHiOjCvOSb8zgsh2ZWSOtPn8Jt3midXYsYSKsXfbpaFDmrS7in6m-SbDqI-7b6lnILvGIshUNqXmndP6THKiDOHkNtxfBm68RZWVMHDodxBN1AQoMoSIGhvlBVALm3I3Zh-sHGXHJLE1ypsFqtnfq3svddbFFasOB2kyZpEryAs4P90VcBWSq&p=Z4g0tQANESoHg4m2ACXIeoWRGUCrQlQ9M1dJjA&sid=f2906c3b-d38e-11ef-93a7-aab196f2f20d HTTP/1.1Host: g.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /sig.js?rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9 HTTP/1.1Host: serve.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ng-assets/creative/assets/index-127e2d55.css HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ng-assets/creative/assets/index-5333d910.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /sig.js?rpclid=f2906c3b-d38e-11ef-93a7-aab196f2f20d&params=FD4w747ub408eaM-61M3wJ3qfK7ErWHy518FlRGHao3f2PgYtkrU2HX0FFqbUAk8GJ00NxtW6WbXQuI8X1R_UXehWD3jEYZp8ei2zrBAxLF_eC2lrTItLT6yz_yg3qTdqPt-cj1efdGND7MZs7ZsJRipunhgT1FJD1LmFwmpi2OQr3jTzQR9zLhN6QczGb3mADM0t22ZeO2Xg8vOdZ1mlHLLgV4JF8Ewi3eE2AqQEV5caCIffDgbT78Fp5xkdUBCPKbARqx_8dnDHiOjCvOSb8zgsh2ZWSOtPn8Jt3midXYsYSKsXfbpaFDmrS7in6m-SbDqI-7b6lnILvGIshUNqXmndP6THKiDOHkNtxfBm68RZWVMHDodxBN1AQoMoSIGhvlBVALm3I3Zh-sHGXHJLE1ypsFqtnfq3svddbFFasOB2kyZpEryAs4P90VcBWSq HTTP/1.1Host: serve.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/drt/ui HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/adview?ai=CcowAtTSIZ5nPM7qSjuwPsJeGsAe9qs_Ndemi3NbEEsCNtwEQASAAYMmWy4vEpPwPggEXY2EtcHViLTQ4MjEwMDY4NTI5MTQzNTnIAQmoAwHIAwKqBIICT9DUYKjKI4pQraEcfrh6m7h9bplWrkbPj_91eeUOpJhdu9KpO0_XYY-cFu19QnZyNheKNP9npaVhnppps6EXhc3BzLo3anLFZHbeg9orLOvmqDeb92XzJ9zmloLoNmP_QdruBQ3lrp4hdP1u3o5ziALuCeqfDUCAk3nMPyRGcGzELC11L3Li97soOg-L0FVd1MKKdwSb3JXcm9Jc4SzAnkh4e7olKZznc1bs88r2I5yWFLGbTgw6FY7xoSlUEd1JBSESOIhUn4RAQ2j7Ze9B0WVkDsyfWXvNgTvg5yey5YKtS_bWmlwrK3xttOT7-OwGuzjn-WXBxYdZQ4iA7PJcsyxzgAaarO2X-f_z_OUBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOljj466y4fiKA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi00ODIxMDA2ODUyOTE0MzU5GAAYDA&sigh=1sAzvU4xCKM&uach_m=%5BUACH%5D&cid=CAQSTwCa7L7dQq7Ua8LJPgiEu7R4dxu7VSCDaaBZxHkFM4asi_fnDbC-VtJCptQoPfsZc_9JBcL2RZCBBo0g6gLsCb51Y4n2HKxUL6PsZw0IKKMYAQ HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlPbqVqjUCM5MRgGSpz8z-07qXlfZwNkJwQUlbQxq3vbOeObDwuexVBZjgodxY
Source: global trafficHTTP traffic detected: GET /pagead/adview?ai=Cdz3WtTSIZ6qiNLaTjuwP-pCXuQK9qs_Ndemi3NbEEsCNtwEQASAAYMmWy4vEpPwPggEXY2EtcHViLTQ4MjEwMDY4NTI5MTQzNTnIAQmoAwHIAwKqBIICT9Cmv1-2FEzbw3G2tBIb1haRxDRSLz7yOGGQqurLUK5Np7iNGFjAafY9HpC_nPbw3M7sTsD6v3dvLEFcHabJAb-buCaAMTRI4sunpsadyoaGR6fbysEVdjp7jeFr4gJpxdXuV35NN6NhJ67MEb7qs9dPLNjiiILm0M97azcJR5ooAuQEZrU62Tag7v5OrPIQI7foZsuoKigmXsT1AVD4Gfr9u-OtT-yKfjMps-zpcMLnS1F7UWICa_rzqnICn9zRcNUe9S5dC9O8PT8ibVCcU1mUVl1VBC1VHgUhQl7T_cEJaUKBjLnwMeA3OKC41A45IsL2EbR2qiohd5sFWv8sReb_gAaarO2X-f_z_OUBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliOqq-y4fiKA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi00ODIxMDA2ODUyOTE0MzU5GAAYDA&sigh=lSXLiM_1JWU&uach_m=%5BUACH%5D&cid=CAQSTwCa7L7dauW-cuQWFi659Ps5JSAeXiroZyXANVgbnX4d8B4rLsxr6OWlefLHzaaO0oxkwYBW3LA5y6QsF-eog1jrg8xThFmwIVNMUpPZxvcYAQ HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUnp6e8q3Hn02qx9nr5ulHgfqaOhOFhnsIORFFJRHSgAHbZOc4nFtnhzzAgnkCg
Source: global trafficHTTP traffic detected: GET /pagead/drt/si?st=NO_DATA HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUnp6e8q3Hn02qx9nr5ulHgfqaOhOFhnsIORFFJRHSgAHbZOc4nFtnhzzAgnkCg
Source: global trafficHTTP traffic detected: GET /btr/view?ai=CFlzftTSIZ7fqNvicjuwP6qqliQyW75bOfLntip-hE-iin8aRDhABIOPuhSVgyZbLi8Sk_A-gAZPCv5A-yAECqAMByAPJBKoEjQJP0CL5SLOELaIQSqv0YIbDE8pOSbgr22jlHHBjjvufLioiWQD0qy5QZ63BY74A0vox_NruVSkZofwTOaw4ZX4--HDB5YWFIJft_oiYIPFrFuRGbt_LpG9JRyvxC5uwc2yi2Uyz3KdpR1li7oUfANKZ_S77aEEq26oHgYDYQzaz2ZTJP64pzZOxSktqkFuOahg1x3py7XiJm_yNyrAkQDR_ddhv30tgcROq6HoPe_QtpIdqxYlDxhWX7sDCyRWuNpMsGj4_OQ1X9ByemvAeYXnC17BOnu4_ao4Yu6J4z3M_UgR9Cx34rXaJtRmjRKbRKBDtLBH6isuKog6ayRvEJZo1YXmItnJIWEB1POvJR8AE9IPAwv8EiAWpyvnHUJIFBAgEGAGSBQQIBRgEoAYCgAeT-o_wGKgH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB_fCsQLYBwHyBwQQz9dm0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYjv-xsuH4igOaCUpodHRwczovL3BjYXBwc3RvcmUuY29tLz9hcD1hZHdwJmFzPWdfZF9hbGxfbmV3X3VzX2NhX2F1X2diX2luJmdhZF9zb3VyY2U9NYAKAcgLAdoMEQoLEJC4hu_4vLX3zQESAgED2BMN0BUBmBYBgBcBshceChoIABIUcHViLTQ4MjEwMDY4NTI5MTQzNTkYABgBuhcCOAGyGAkSArBTGAIiAQDQGAHoGAE&sigh=IhB1dc_aNk8&uach_m=%5BUACH%5D&ase=2&cid=CAQSTgCa7L7dHFLM9IPFcD6ghiOIXDaBWC3kpV_PFb9R9pCIrNFE7BSHF3RZLGlcutaAcbdRcj-GmWm9tJZKlN96y-eWrNTvXXeYwXuCpX3sSxgB&vis=1&ibtr=1&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source;navigation-source, triggerReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4821006852914359&output=html&h=90&slotname=4034399826&adk=3689936537&adf=2221415025&pi=t.ma~as.4034399826&w=847&abgtt=9&fwrn=4&fwrnh=100&lmt=1736870130&rafmt=2&format=847x90&url=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=2&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.&dt=1736979634920&bpp=1&bdt=1621&idt=1620&shv=r20250113&mjsv=m202501090101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=1200x90%2C336x280&correlator=4566372036047&frm=20&pv=1&u_tz=-300&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=15&ady=860&biw=1263&bih=907&scr_x=0&scr_y=0&eid=42533202%2C31089683%2C95344791%2C95350245%2C95340252%2C95340254&oid=2&pvsid=3788874330487745&tmod=2006592406&uas=0&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=o%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1625Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUnp6e8q3Hn02qx9nr5ulHgfqaOhOFhnsIORFFJRHSgAHbZOc4n
Source: global trafficHTTP traffic detected: GET /ext/download-icon_1697445891.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce
Source: global trafficHTTP traffic detected: GET /ext/Footer-Logo_1720602781.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce
Source: global trafficHTTP traffic detected: GET /compressedFonts/RobotoRegular.woff2 HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /compressedFonts/RobotoBold.woff2 HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /click_1734018555_64x64.png HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce
Source: global trafficHTTP traffic detected: GET /download_l_1734165033_64x64.png HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce
Source: global trafficHTTP traffic detected: GET /i/ca-pub-4821006852914359?href=https%3A%2F%2Fnuance-pdf-professional2.software.informer.com%2F7.2&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce
Source: global trafficHTTP traffic detected: GET /ng-assets/creative/assets/index-5333d910.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce
Source: global trafficHTTP traffic detected: GET /sig.js?rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9 HTTP/1.1Host: serve.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce
Source: global trafficHTTP traffic detected: GET /sig.js?rpclid=f2906c3b-d38e-11ef-93a7-aab196f2f20d&params=FD4w747ub408eaM-61M3wJ3qfK7ErWHy518FlRGHao3f2PgYtkrU2HX0FFqbUAk8GJ00NxtW6WbXQuI8X1R_UXehWD3jEYZp8ei2zrBAxLF_eC2lrTItLT6yz_yg3qTdqPt-cj1efdGND7MZs7ZsJRipunhgT1FJD1LmFwmpi2OQr3jTzQR9zLhN6QczGb3mADM0t22ZeO2Xg8vOdZ1mlHLLgV4JF8Ewi3eE2AqQEV5caCIffDgbT78Fp5xkdUBCPKbARqx_8dnDHiOjCvOSb8zgsh2ZWSOtPn8Jt3midXYsYSKsXfbpaFDmrS7in6m-SbDqI-7b6lnILvGIshUNqXmndP6THKiDOHkNtxfBm68RZWVMHDodxBN1AQoMoSIGhvlBVALm3I3Zh-sHGXHJLE1ypsFqtnfq3svddbFFasOB2kyZpEryAs4P90VcBWSq HTTP/1.1Host: serve.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce
Source: global trafficHTTP traffic detected: GET /f/AGSKWxVkpyu97IQUbHGCdzKUl7_eFeBwzzdrGLuvBYBvuDrMTj9uwC5VJyh_iBwuw_xJup-pg77HXsGPc4OiUPmYHGZqanKuWcKbHs8e1kkw2VvKXjqUksHi-XY6BgDkB8_uMQbl4Ol4cg==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzM2OTc5NjM5LDk2ODAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly9udWFuY2UtcGRmLXByb2Zlc3Npb25hbDIuc29mdHdhcmUuaW5mb3JtZXIuY29tLzcuMi8iLG51bGwsW1s4LCJCSHQwUkNmMExPbyJdLFs5LCJlbi1VUyJdLFsyMywiMTczNjk3OTYzNyJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /btr/view?ai=CFlzftTSIZ7fqNvicjuwP6qqliQyW75bOfLntip-hE-iin8aRDhABIOPuhSVgyZbLi8Sk_A-gAZPCv5A-yAECqAMByAPJBKoEjQJP0CL5SLOELaIQSqv0YIbDE8pOSbgr22jlHHBjjvufLioiWQD0qy5QZ63BY74A0vox_NruVSkZofwTOaw4ZX4--HDB5YWFIJft_oiYIPFrFuRGbt_LpG9JRyvxC5uwc2yi2Uyz3KdpR1li7oUfANKZ_S77aEEq26oHgYDYQzaz2ZTJP64pzZOxSktqkFuOahg1x3py7XiJm_yNyrAkQDR_ddhv30tgcROq6HoPe_QtpIdqxYlDxhWX7sDCyRWuNpMsGj4_OQ1X9ByemvAeYXnC17BOnu4_ao4Yu6J4z3M_UgR9Cx34rXaJtRmjRKbRKBDtLBH6isuKog6ayRvEJZo1YXmItnJIWEB1POvJR8AE9IPAwv8EiAWpyvnHUJIFBAgEGAGSBQQIBRgEoAYCgAeT-o_wGKgH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB_fCsQLYBwHyBwQQz9dm0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYjv-xsuH4igOaCUpodHRwczovL3BjYXBwc3RvcmUuY29tLz9hcD1hZHdwJmFzPWdfZF9hbGxfbmV3X3VzX2NhX2F1X2diX2luJmdhZF9zb3VyY2U9NYAKAcgLAdoMEQoLEJC4hu_4vLX3zQESAgED2BMN0BUBmBYBgBcBshceChoIABIUcHViLTQ4MjEwMDY4NTI5MTQzNTkYABgBuhcCOAGyGAkSArBTGAIiAQDQGAHoGAE&sigh=IhB1dc_aNk8&uach_m=%5BUACH%5D&ase=2&cid=CAQSTgCa7L7dHFLM9IPFcD6ghiOIXDaBWC3kpV_PFb9R9pCIrNFE7BSHF3RZLGlcutaAcbdRcj-GmWm9tJZKlN96y-eWrNTvXXeYwXuCpX3sSxgB&vis=1&ibtr=1&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUnp6e8q3Hn02qx9nr5ulHgfqaOhOFhnsIORFFJRHSgAHbZOc4nFtnhzzAgnkCg; DSID=NO_DATA
Source: global trafficHTTP traffic detected: GET /rtimp?sid=f28d8534-d38e-11ef-93a7-aab196f2f20d&d=nuance-pdf-professional2.software.informer.com&cr=ext_download_prot_smrtsp&gid=&im=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9&p=Z4g0tQAM55kHg4k6AAGLsDXa4KrzOKSPp000GA&r=1930373240&a=ipv4&ow=1280&oh=984&iw=1200&ih=90&tzof=300&tz=America%2FNew_York&pxr=1&cts=1736979641.481&cto=1665&edx=10&furl=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fpagead%2Fads%3Fclient%3Dca-pub-4821006852914359%26output%3Dhtml%26h%3D90%26slotname%3D7854405427%26adk%3D4056614258%26adf%3D1706824535%26pi%3Dt.ma~as.7854405427%26w%3D1200%26abgtt%3D9%26fwrn%3D4%26fwrnh%3D100%26lmt%3D1736870130%26rafmt%3D2%26format%3D1200x90%26url%3Dhttps%253A%252F%252Fnuance-pdf-professional2.software.informer.com%252F7.2%252F%26fwr%3D0%26fwrattr%3Dtrue%26rpe%3D1%26resp_fmts%3D2%26wgl%3D1%26uach%3DWyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.%26dt%3D1736979634915%26bpp%3D4%26bdt%3D1617%26idt%3D1532%26shv%3Dr20250113%26mjsv%3Dm202501090101%26ptt%3D9%26saldr%3Daa%26abxe%3D1%26cookie_enabled%3D1%26eoidce%3D1%26correlator%3D4566372036047%26frm%3D20%26pv%3D2%26u_tz%3D-300%26u_his%3D1%26u_h%3D1024%26u_w%3D1280%26u_ah%3D984%26u_aw%3D1280%26u_cd%3D24%26u_sd%3D1%26dmc%3D8%26adx%3D32%26ady%3D311%26biw%3D1263%26bih%3D907%26scr_x%3D0%26scr_y%3D0%26eid%3D42533202%252C31089683%252C95344791%252C95350245%252C95340252%252C95340254%26oid%3D2%26pvsid%3D3788874330487745%26tmod%3D2006592406%26uas%3D0%26nvt%3D1%26fc%3D896%26brdim%3D0%252C0%252C0%252C0%252C1280%252C0%252C1280%252C984%252C1280%252C907%26vis%3D1%26rsz%3Do%257C%257Coe%257C%26abl%3DCS%26pfx%3D0%26fu%3D128%26bc%3D31%26bz%3D1%26td%3D1%26tdf%3D0%26psd%3DW251bGwsbnVsbCxudWxsLDNd%26nt%3D1%26ifi%3D1%26uci%3Da!1%26fsb%3D1%26dtd%3D1582&ctp=creative&cnm=ext_download_prot_smrtsp HTTP/1.1Host: g4.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie
Source: global trafficHTTP traffic detected: GET /rtimp?sid=f2906c3b-d38e-11ef-93a7-aab196f2f20d&d=nuance-pdf-professional2.software.informer.com&cr=ext_download_prot_smrtsp&gid=&im=FD4w747ub408eaM-61M3wJ3qfK7ErWHy518FlRGHao3f2PgYtkrU2HX0FFqbUAk8GJ00NxtW6WbXQuI8X1R_UXehWD3jEYZp8ei2zrBAxLF_eC2lrTItLT6yz_yg3qTdqPt-cj1efdGND7MZs7ZsJRipunhgT1FJD1LmFwmpi2OQr3jTzQR9zLhN6QczGb3mADM0t22ZeO2Xg8vOdZ1mlHLLgV4JF8Ewi3eE2AqQEV5caCIffDgbT78Fp5xkdUBCPKbARqx_8dnDHiOjCvOSb8zgsh2ZWSOtPn8Jt3midXYsYSKsXfbpaFDmrS7in6m-SbDqI-7b6lnILvGIshUNqXmndP6THKiDOHkNtxfBm68RZWVMHDodxBN1AQoMoSIGhvlBVALm3I3Zh-sHGXHJLE1ypsFqtnfq3svddbFFasOB2kyZpEryAs4P90VcBWSq&p=Z4g0tQANESoHg4m2ACXIeoWRGUCrQlQ9M1dJjA&r=1395646145&a=ipv4&ow=1280&oh=984&iw=336&ih=280&tzof=300&tz=America%2FNew_York&pxr=1&cts=1736979641.533&cto=1698&edx=10&furl=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fpagead%2Fads%3Fclient%3Dca-pub-4821006852914359%26output%3Dhtml%26h%3D280%26slotname%3D9917528229%26adk%3D658919145%26adf%3D3882744954%26pi%3Dt.ma~as.9917528229%26w%3D336%26abgtt%3D9%26fwrn%3D4%26fwrnh%3D100%26lmt%3D1736870130%26rafmt%3D3%26format%3D336x280%26url%3Dhttps%253A%252F%252Fnuance-pdf-professional2.software.informer.com%252F7.2%252F%26fwr%3D0%26fwrattr%3Dtrue%26rpe%3D1%26resp_fmts%3D1%26wgl%3D1%26uach%3DWyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzIiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTMyIl0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzIiXV0sMF0.%26dt%3D1736979634919%26bpp%3D1%26bdt%3D1620%26idt%3D1594%26shv%3Dr20250113%26mjsv%3Dm202501090101%26ptt%3D9%26saldr%3Daa%26abxe%3D1%26cookie_enabled%3D1%26eoidce%3D1%26prev_fmts%3D1200x90%26correlator%3D4566372036047%26frm%3D20%26pv%3D1%26u_tz%3D-300%26u_his%3D1%26u_h%3D1024%26u_w%3D1280%26u_ah%3D984%26u_aw%3D1280%26u_cd%3D24%26u_sd%3D1%26dmc%3D8%26adx%3D15%26ady%3D550%26biw%3D1263%26bih%3D907%26scr_x%3D0%26scr_y%3D0%26eid%3D42533202%252C31089683%252C95344791%252C95350245%252C95340252%252C95340254%26oid%3D2%26pvsid%3D3788874330487745%26tmod%3D2006592406%26uas%3D0%26nvt%3D1%26fc%3D896%26brdim%3D0%252C0%252C0%252C0%252C1280%252C0%252C1280%252C984%252C1280%252C907%26vis%3D1%26rsz%3Do%257C%257CoeE%257C%26abl%3DCS%26pfx%3D0%26fu%3D128%26bc%3D31%26bz%3D1%26td%3D1%26tdf%3D0%26psd%3DW251bGwsbnVsbCxudWxsLDNd%26nt%3D1%26ifi%3D2%26uci%3Da!2%26fsb%3D1%26dtd%3D1600&ctp=creative&cnm=ext_download_prot_smrtsp HTTP/1.1Host: g4.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language:
Source: global trafficHTTP traffic detected: GET /ext/download-icon_1697445891.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce; sid_cross=f2906c3b-d38e-11ef-93a7-aab196f2f20d
Source: global trafficHTTP traffic detected: GET /ext/Footer-Logo_1720602781.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce; sid_cross=f2906c3b-d38e-11ef-93a7-aab196f2f20d
Source: global trafficHTTP traffic detected: GET /click_1734018555_64x64.png HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce; sid_cross=f2906c3b-d38e-11ef-93a7-aab196f2f20d
Source: global trafficHTTP traffic detected: GET /download_l_1734165033_64x64.png HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=f3b61b5a-d38e-11ef-abcc-b61a6926ccce; sid_cross=f2906c3b-d38e-11ef-93a7-aab196f2f20d
Source: global trafficHTTP traffic detected: GET /favicon.ico HTTP/1.1Host: software.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635; __gads=ID=5c69e94fc791666f:T=1736979637:RT=1736979637:S=ALNI_MZ91N_Bhxth3E9d4L0p2k_EFPCBew; __gpi=UID=00000fbf26fe8626:T=1736979637:RT=1736979637:S=ALNI_MaVs1UyIzr7FOvcBakfRn50LMdu2Q; __eoi=ID=04f90f572a58aaff:T=1736979637:RT=1736979637:S=AA-AfjahxK2Y084g0TaOOC-JkUpD
Source: global trafficHTTP traffic detected: GET /images/spacer.gif HTTP/1.1Host: img.informer.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635; __gads=ID=5c69e94fc791666f:T=1736979637:RT=1736979637:S=ALNI_MZ91N_Bhxth3E9d4L0p2k_EFPCBew; __gpi=UID=00000fbf26fe8626:T=1736979637:RT=1736979637:S=ALNI_MaVs1UyIzr7FOvcBakfRn50LMdu2Q; __eoi=ID=04f90f572a58aaff:T=1736979637:RT=1736979637:S=AA-AfjahxK2Y084g0TaOOC-JkUpD
Source: global trafficHTTP traffic detected: GET /getconfig/sodar?sv=200&tid=gda&tv=r20250113&st=env HTTP/1.1Host: ep1.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://nuance-pdf-professional2.software.informer.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /f/AGSKWxXd9Foo-Ehq0xgBlp-pejyP-Ol0ad23R_mcLF3Y9JbnGV6KrkTQez0VKEKlJJNzfX7YJXfMevUhSDXv4Lf_WRHLx0WuGH6Af5GoBw_TFsXy6R8uQmBEBn-BtdI6MsKAR_fcvkEPrw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzM2OTc5NjQxLDgwMDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbNyw5XSxudWxsLDIsbnVsbCwiZW4iXSwiaHR0cHM6Ly9udWFuY2UtcGRmLXByb2Zlc3Npb25hbDIuc29mdHdhcmUuaW5mb3JtZXIuY29tLzcuMi8iLG51bGwsW1s4LCJCSHQwUkNmMExPbyJdLFs5LCJlbi1VUyJdLFsyMywiMTczNjk3OTYzNyJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /favicon.ico HTTP/1.1Host: software.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635; __gads=ID=5c69e94fc791666f:T=1736979637:RT=1736979637:S=ALNI_MZ91N_Bhxth3E9d4L0p2k_EFPCBew; __gpi=UID=00000fbf26fe8626:T=1736979637:RT=1736979637:S=ALNI_MaVs1UyIzr7FOvcBakfRn50LMdu2Q; __eoi=ID=04f90f572a58aaff:T=1736979637:RT=1736979637:S=AA-AfjahxK2Y084g0TaOOC-JkUpD
Source: global trafficHTTP traffic detected: GET /images/spacer.gif HTTP/1.1Host: img.informer.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _ga_207ENHB31P=GS1.1.1736979634.1.0.1736979634.0.0.0; _ga=GA1.1.1288033908.1736979635; __gads=ID=5c69e94fc791666f:T=1736979637:RT=1736979637:S=ALNI_MZ91N_Bhxth3E9d4L0p2k_EFPCBew; __gpi=UID=00000fbf26fe8626:T=1736979637:RT=1736979637:S=ALNI_MaVs1UyIzr7FOvcBakfRn50LMdu2Q; __eoi=ID=04f90f572a58aaff:T=1736979637:RT=1736979637:S=AA-AfjahxK2Y084g0TaOOC-JkUpD
Source: global trafficHTTP traffic detected: GET /sodar/sodar2.js HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /getconfig/sodar?sv=200&tid=gda&tv=r20250113&st=env HTTP/1.1Host: ep1.adtrafficquality.googleConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /f/AGSKWxVXYCSCPy5B1JgAKQtMnN0P2vaiBVd2lKtPbNdS0mJZ169N_8_kHQeYInRDippu2LA40Av4IPEiztZtmSeWGs2pPc-bPcpJmOq_rJPXo-BBKqAScHkzEK7X2rkh8EAznuL94ZCAn_1hRIGfXO9TUAfWVVWyCoMLxAQ3Fd9dmq6qVhuml9aNDFxPJHvY/_.com/adlib_/noodleAdFramed._centre_ad./VASTAdPlugin._468x60. HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /recaptcha/api2/aframe HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /sodar/sodar2/232/runner.html HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /f/AGSKWxUFa7gOa_QQmkFb3ywy-2AQ5ufRFIdrnC3uKi2p1cVvgQgaDS4R-iN9IEYr8CSFSaIAg68rnnhFbnNfPEcVqrjQD6-VJ009pGvDDmvYIhHKo86COyXrpqX0PJM1aY83CwKOWrnUgw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzM2OTc5NjQzLDcxNzAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4iLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly9udWFuY2UtcGRmLXByb2Zlc3Npb25hbDIuc29mdHdhcmUuaW5mb3JtZXIuY29tLzcuMi8iLG51bGwsW1s4LCJCSHQwUkNmMExPbyJdLFs5LCJlbi1VUyJdLFsyMywiMTczNjk3OTYzNyJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20250113&jk=3788874330487745&bg=!NTalNnnNAAYsEuUeDBI7ADQBe5WfOIi-8zjsGZFErpG8kHxxskXxqa05Ld5vn961hkZqxPZ3CsYSLLs4tVQBnqsWbOLdAgAAAPFSAAAAAmgBB34ANsqp6OxNDAnbocVlCPgHBV-H_LnmaLM1lbFnaPpFAT2In31Herl84e_ejfLGfrtrS4deR4Rz45kCpbBBZmssnKGWrC6sWDGvsdy67pEsjMgO2f7qw8Y4hhFeExFnJPLlYdamAM5mdS-YvSuKlKVCsADT0LntSg7lRWjhwTu611VY6yhDMtql8dXVyU_8yimnvSBmz3NWOw7gK5WC3TUSQ23Z3xYSUgy0ussESwr4FAC49zlt9bxnKmvWKUDF0eoiEZP3LxTiJUDAumQ6-AMvpFpFtK63N0CeUhMaZyI0lrcP3Yd51odx3ujnEIsMeIz9hzSqSc7VJEG7uf8yVoNgVgyTzvRzIaw3pLWTi6BEBYJ0E7uEdYuJX_pkzo0Ra37B97kGnmX5Bbbp3doQjctSo1dZZ8J_vCfojCfj4XpJs8AqUKFiAIo4g5nPVd9C_gbhhUfY8ufo_BOZvZ94YBToxnA2-qfvJUIiH4te2zLP1QBX4SdJ6QEKgjoYp8oIYmSzp59OWoU2DFf3UGdYrWdDvlIKgWIxVUmegS5M6GQG0vxQvM4HAJ6lEExzDwflbZZz5uq013OIHk14b--M4iQ-30Gat8t-3qe19fNJLXdbId-MsuxUxx33g-9SLNbsoYC3MNLink-iqcrr86SqXkPoCR6i2nkG8w6gFhfcNVlJe4fOvCGfB2hVwg5_6GzR94bZQaPxFLAtR4vWkQYmZEZ51gW-Ymwed0kBz5X0A0ukHPmYVl2GvK3H-lHZC5J3gf-3f9Qk3syouT17NydYvnlXsEE4EpfQb8HshhOI452kIVQ9S5dqK4U4CUVhvXFZrBJfHPyfAc2ei6dRWJj3lOIO1ELnJRzx12CF_aAtIvEie1bB6An0ljlfslBHnQiY3VbxDMDfEPOYHKpQYQJSMgoAAyWSDi-wrc5d813ylZvnm80W4VCjv6SL4eYdKjX9TmWtYBC-kefBcGxYKG_q0ytT HTTP/1.1Host: ep1.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://nuance-pdf-professional2.software.informer.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /install/?mid=f28d8534-d38e-11ef-93a7-aab196f2f20d&rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&utm_source=adx_ext_download_prot_smrtsp___5e460bab&uq=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9 HTTP/1.1Host: get4.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /aclk?sa=L&ai=Cg079tTSIZ5nPM7qSjuwPsJeGsAe9qs_Ndemi3NbEEsCNtwEQASAAYMmWy4vEpPwPggEXY2EtcHViLTQ4MjEwMDY4NTI5MTQzNTnIAQmoAwHIAwKqBIUCT9DUYKjKI4pQraEcfrh6m7h9bplWrkbPj_91eeUOpJhdu9KpO0_XYY-cFu19QnZyNheKNP9npaVhnppps6EXhc3BzLo3anLFZHbeg9orLOvmqDeb92XzJ9zmloLoNmP_QdruBQ3lrp4hdP1u3o5ziALuCeqfDUCAk3nMPyRGcGzELC11L3Li97soOg-L0FVd1MKKdwSb3JXcm9Jc4SzAnkh4e7olKZznc1bs88r2I5yWFLGbTgw6FY7xoSlUEd1JBSESOIhUn4RAQ2j7Ze9B0WVkDsyfWXvNgTvg52WwxBA1jx_SabV4xe97aV_23ubQshb_NJtK01romKes9Gi9QiiAfXxigAaarO2X-f_z_OUBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOljj466y4fiKA_oLAggBgAwB0BUBgBcBshcCGAw&num=1&sig=AOD64_0RRIR_3oWVmHVGijS2gmW-a71wAg&client=ca-pub-4821006852914359&adurl=https%3A%2F%2Fget4.protectonow.com%2Finstall%2F%3Fmid%3Df28d8534-d38e-11ef-93a7-aab196f2f20d%26rpclid%3Df28d8534-d38e-11ef-93a7-aab196f2f20d%26utm_source%3Dadx_ext_download_prot_smrtsp___5e460bab%26uq%3D_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g%26params%3DNb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9 HTTP/1.1Host: adclick.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUnp6e8q3Hn02qx9nr5ulHgfqaOhOFhnsIORFFJRHSgAHbZOc4nFtnhzzAgnkCg; DSID=NO_DATA
Source: global trafficHTTP traffic detected: GET /siglp.js?rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9 HTTP/1.1Host: get4.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"device-memory: 8rtt: 300sec-ch-ua-mobile: ?0sec-ch-viewport-height: 907User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-viewport-width: 1280sec-ch-ua-platform-version: "10.0.0"downlink: 10sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get4.protectonow.com/install/?mid=f28d8534-d38e-11ef-93a7-aab196f2f20d&rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&utm_source=adx_ext_download_prot_smrtsp___5e460bab&uq=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304
Source: global trafficHTTP traffic detected: GET /install/?mid=f28d8534-d38e-11ef-93a7-aab196f2f20d&rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&utm_source=adx_ext_download_prot_smrtsp___5e460bab&uq=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9 HTTP/1.1Host: get4.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab
Source: global trafficHTTP traffic detected: GET /recaptcha/enterprise.js?render=6LfkWDYqAAAAAJvAuJELqQLg85Lg8zAp-k7w8siS&badge=inline&onload=onRecaptchaLoaded HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /sxp/i/7d278047aab7cca6e1b3bb44e5382d20.js HTTP/1.1Host: euob.7roundprince.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ng-assets/lp/assets/index-526d8edf.css HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304
Source: global trafficHTTP traffic detected: GET /ng-assets/lp/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://get4.protectonow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ng-assets/lp/assets/index-81ed22ca.js HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://get4.protectonow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /siglp.js?rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9 HTTP/1.1Host: get4.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304
Source: global trafficHTTP traffic detected: GET /recaptcha/enterprise.js?render=6LfkWDYqAAAAAJvAuJELqQLg85Lg8zAp-k7w8siS&badge=inline&onload=onRecaptchaLoaded HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /install/?mid=f28d8534-d38e-11ef-93a7-aab196f2f20d&rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&utm_source=adx_ext_download_prot_smrtsp___5e460bab&uq=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9 HTTP/1.1Host: get4.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304
Source: global trafficHTTP traffic detected: GET /sxp/i/7d278047aab7cca6e1b3bb44e5382d20.js HTTP/1.1Host: euob.7roundprince.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ng-assets/lp/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304
Source: global trafficHTTP traffic detected: GET /ng-assets/lp/assets/index-81ed22ca.js HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d
Source: global trafficHTTP traffic detected: GET /ct?id=74676&url=https%3A%2F%2Fget4.protectonow.com%2Finstall%2F%3Fmid%3Df28d8534-d38e-11ef-93a7-aab196f2f20d%26rpclid%3Df28d8534-d38e-11ef-93a7-aab196f2f20d%26utm_source%3Dadx_ext_download_prot_smrtsp___5e460bab%26uq%3D_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g%26params%3DNb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9&sf=0&tpi=&ch=Channel1&uvid=f28d8534-d38e-11ef-93a7-aab196f2f20d&tsf=0&tsfmi=&tsfu=&cb=1736979657811&hl=1&op=1&ag=300509663&rand=94562791077125201222680867707701820560600701505507059297861210065900025581282908020500&fs=1280x907&fst=1280x907&np=win32&nv=google%20inc.&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&ss=1280x1024&nc=0&at=&di=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
Source: global trafficHTTP traffic detected: GET /compressedFonts/RobotoRegularLatin_1701696927.woff2 HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://get4.protectonow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /compressedFonts/RobotoLight.woff2 HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://get4.protectonow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /compressedFonts/RobotoBold.woff2 HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://get4.protectonow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /adx/userSync/44236094.js?id=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g HTTP/1.1Host: get4.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"device-memory: 8rtt: 300sec-ch-ua-mobile: ?0sec-ch-viewport-height: 907User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-viewport-width: 1280sec-ch-ua-platform-version: "10.0.0"downlink: 5.9sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get4.protectonow.com/install/?mid=f28d8534-d38e-11ef-93a7-aab196f2f20d&rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&utm_source=adx_ext_download_prot_smrtsp___5e460bab&uq=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /recaptcha/enterprise/anchor?ar=1&k=6LfkWDYqAAAAAJvAuJELqQLg85Lg8zAp-k7w8siS&co=aHR0cHM6Ly9nZXQ0LnByb3RlY3Rvbm93LmNvbTo0NDM.&hl=en&v=zIriijn3uj5Vpknvt_LnfNbF&size=invisible&badge=inline&cb=7k1uo1xcezm HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ext/stticon_1735726475.png HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://get4.protectonow.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ext/checkmark-chrome_1698059071.svg+xml HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://get4.protectonow.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ext/chrome-logo_1698059188.svg+xml HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://get4.protectonow.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /bg1_1735475692_1920x1080.png HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /tracker/tc_imp.gif?e=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
Source: global trafficHTTP traffic detected: GET /ct?id=74676&url=https%3A%2F%2Fget4.protectonow.com%2Finstall%2F%3Fmid%3Df28d8534-d38e-11ef-93a7-aab196f2f20d%26rpclid%3Df28d8534-d38e-11ef-93a7-aab196f2f20d%26utm_source%3Dadx_ext_download_prot_smrtsp___5e460bab%26uq%3D_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g%26params%3DNb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9&sf=0&tpi=&ch=Channel1&uvid=f28d8534-d38e-11ef-93a7-aab196f2f20d&tsf=0&tsfmi=&tsfu=&cb=1736979657811&hl=1&op=1&ag=300509663&rand=94562791077125201222680867707701820560600701505507059297861210065900025581282908020500&fs=1280x907&fst=1280x907&np=win32&nv=google%20inc.&ref=https%3A%2F%2Fgoogleads.g.doubleclick.net%2F&ss=1280x1024&nc=0&at=&di=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
Source: global trafficHTTP traffic detected: GET /ext/TOOLTIP_1701944305.svg+xml HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://get4.protectonow.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /adx/userSync/44236094.js?id=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g HTTP/1.1Host: get4.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /ng-assets/vendors/lottie_light.5.10.2.min.js HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /ext/stticon_1735726475.png HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /ext/chrome-logo_1698059188.svg+xml HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /ext/checkmark-chrome_1698059071.svg+xml HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /tracker/tc_imp.gif?e=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
Source: global trafficHTTP traffic detected: GET /bg1_1735475692_1920x1080.png HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /ext/TOOLTIP_1701944305.svg+xml HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /mon HTTP/1.1Host: obseu.7roundprince.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=6438bdec51f10f97b581b4ebc5ecefc9
Source: global trafficHTTP traffic detected: GET /recaptcha/enterprise/webworker.js?hl=en&v=zIriijn3uj5Vpknvt_LnfNbF HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfkWDYqAAAAAJvAuJELqQLg85Lg8zAp-k7w8siS&co=aHR0cHM6Ly9nZXQ0LnByb3RlY3Rvbm93LmNvbTo0NDM.&hl=en&v=zIriijn3uj5Vpknvt_LnfNbF&size=invisible&badge=inline&cb=7k1uo1xcezmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/bg/CY4IdQ8PNOqs9ugPxTaJh2hYWy8m1lFu__OIecPWn-w.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LfkWDYqAAAAAJvAuJELqQLg85Lg8zAp-k7w8siS&co=aHR0cHM6Ly9nZXQ0LnByb3RlY3Rvbm93LmNvbTo0NDM.&hl=en&v=zIriijn3uj5Vpknvt_LnfNbF&size=invisible&badge=inline&cb=7k1uo1xcezmAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ext/loader_1698324395.json HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://get4.protectonow.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /step1_1735132523.json HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://get4.protectonow.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ng-assets/vendors/lottie_light.5.10.2.min.js HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /step2A_enjoy_1716197370.json HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://get4.protectonow.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /recaptcha/enterprise/webworker.js?hl=en&v=zIriijn3uj5Vpknvt_LnfNbF HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /js/bg/CY4IdQ8PNOqs9ugPxTaJh2hYWy8m1lFu__OIecPWn-w.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /m/signin?redirect=https%3A%2F%2Fmedium.com%2Ffavicon.ico&loginType=default HTTP/1.1Host: medium.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?return_to=%2Ffavicon.ico HTTP/1.1Host: squareup.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?redirect_after_login=/favicon.ico HTTP/1.1Host: twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /signin/yahoo/?redir=https%3A%2F%2Fwww.flickr.com/favicon.ico HTTP/1.1Host: login.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ext/loader_1698324395.json HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /step2A_enjoy_1716197370.json HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /step1_1735132523.json HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /mon HTTP/1.1Host: obseu.7roundprince.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=6438bdec51f10f97b581b4ebc5ecefc9
Source: global trafficHTTP traffic detected: GET /adx/getlst HTTP/1.1Host: get4.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"device-memory: 8rtt: 250sec-ch-ua-mobile: ?0sec-ch-viewport-height: 907User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-viewport-width: 1280sec-ch-ua-platform-version: "10.0.0"downlink: 7.25sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-model: ""sec-ch-prefers-color-scheme: lightsec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/install/?mid=f28d8534-d38e-11ef-93a7-aab196f2f20d&rpclid=f28d8534-d38e-11ef-93a7-aab196f2f20d&utm_source=adx_ext_download_prot_smrtsp___5e460bab&uq=_JDg0vZrlOp4T6_9U0ssm5ItFDhV3TsqhLGO26omVj-2pXmkcPDHdNwDCaqhZpjpKTa7dG0kopMzaVwvRrpzQLXyz5bNrDsHKX4rae-VljJo0XQMs9qPDHH7jO7Lx_9WhNCEj1xuWu-4f2YWpcIqzgA77etzE7oZtFSzHsIewF6zNBxh8d3T9Zk-HKlhZPa0MQd1POmBJVA9GftafTfIXKITadh35clew_PwRPW1jYBE6OV5DcPze2-TuMN32-hA8DrE-3ihdR3djmkB6y-R7g&params=Nb4JPRRnYVi8kbj0c1FI_FNKZ59xnDOliVxcIM85n2qs5y8gv1uVg3RbjZW5_FrVlYGWPzD9NIsLWNEOHzu4YOmD8OuiS8UkPejZgAKFm3ZlUxHBNGiYcbgU5DmL2JgBOnA6uq5HqYXDGOAkkcHp77mTvilkZ5d9Q2rpDl_8WOAn-k2Y5V9CBXA9Hn2pQTPVn67DMY2sybqayiZvf5flizO3fgV6Cw9N2-R52IBOSmAosKxVeFWSaITqzx-S70fbalfXf6j_MGyOC9eAxeZ7JGLaNEYTuDszAbHweW2Joh-qvwh3aS1didawvBHLOP-V2AJ9n6wIzxxqj8vOzYkgNldKNUmJt1QcCV7gcheIGQeY618UdBWcgJbQ4H-Y9TkqHO2sUSV-RHzJCsRWDjhnFAPFm7pN506i_DH--SzmnConwZt5nHCFtvPxN2SulUo9Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /ext/favicon-32x32_1701772986.png HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /login?return_to=%2Ffavicon.ico HTTP/1.1Host: app.squareup.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=SRPD_Mkhe.3UR35YScKLK5.tMpLvECuNBbeBog.LEyY-1736979664-1.0.1.1-YrEsi1Qj14Ldhb7gIGk7iAEIbuXay1JSjEQU0n.Qmt2G1Fhd0OqkDAoLB7F4axTDB16YH3i4gPHQgvZ3WVsHhg
Source: global trafficHTTP traffic detected: GET /login?dest=https%3A%2F%2Fwww.reddit.com%2Ffavicon.ico HTTP/1.1Host: www.reddit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /m/signin?redirect=https%3A%2F%2Fmedium.com%2Ffavicon.ico&loginType=default HTTP/1.1Host: medium.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=lo_cdda9c8dabff; sid=1:5wRlU0P+Ld7Wm8g2WuehNZa3AuiktuZtp4zVC8LEvzUU3zkg4Ewg1W9p+eMsXGNL; _cfuvid=UE4cGWGVzn3Pkoc00fSzzxsFDODiOtqXSOzZGm2exmQ-1736979664365-0.0.1.1-604800000
Source: global trafficHTTP traffic detected: GET /login?redirect_to=%2Ffavicon.ico HTTP/1.1Host: www.tumblr.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?redirect_after_login=/favicon.ico HTTP/1.1Host: x.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login/?dest=https%3A%2F%2Fwww.reddit.com%2Ffavicon.ico HTTP/1.1Host: www.reddit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?redir=https%3A%2F%2Fwww.flickr.com/favicon.ico HTTP/1.1Host: login.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBNA0iGcCEN-LuFZiN8mjLJVjAEYZqjIFEgEBAQGGiWeSZ9xH0iMA_eMAAA&S=AQAAAgMDIMHnLAHCZr6Y7Ydev0M
Source: global trafficHTTP traffic detected: GET /login?cont=https%3a%2f%2fwww.dropbox.com%2fstatic%2fimages%2ffavicon.ico HTTP/1.1Host: www.dropbox.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?return_to=%2Ffavicon.ico HTTP/1.1Host: app.squareup.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=SRPD_Mkhe.3UR35YScKLK5.tMpLvECuNBbeBog.LEyY-1736979664-1.0.1.1-YrEsi1Qj14Ldhb7gIGk7iAEIbuXay1JSjEQU0n.Qmt2G1Fhd0OqkDAoLB7F4axTDB16YH3i4gPHQgvZ3WVsHhg; __cf_bm=EE2VQHqAXN3Lq9SowEkosbafwWA.uoanZaCCBtsRlJ8-1736979665-1.0.1.1-BBZfH9LnxXdr.qC4LkuH7mDJ28HMAabUHHLruJsQhRgn2lhJ4neYbSk1EZONy84ZIzTmqdz6Q_qtZIGLMTAgaA
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login/?next=https%3A%2F%2Fwww.pinterest.com%2Ffavicon.ico HTTP/1.1Host: www.pinterest.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?redirect_after_login=/favicon.ico HTTP/1.1Host: x.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: guest_id_marketing=v1%3A173697966522460177; guest_id_ads=v1%3A173697966522460177; personalization_id="v1_2RxsTWuw4OAhbOwz1VOnkw=="; guest_id=v1%3A173697966522460177
Source: global trafficHTTP traffic detected: GET /ap/signin?_encoding=UTF8&openid.assoc_handle=usflex&openid.claimed_id=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.identity=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.mode=checkid_setup&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.ns.pape=http%3A%2F%2Fspecs.openid.net%2Fextensions%2Fpape%2F1.0&openid.pape.max_auth_age=10000000&openid.return_to=https%3A%2F%2Fwww.amazon.com%2Ffavicon.ico HTTP/1.1Host: www.amazon.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /recaptcha/enterprise/reload?k=6LfkWDYqAAAAAJvAuJELqQLg85Lg8zAp-k7w8siS HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AGVEItdiapGS4RM72ZhqlUl6C0PmIwMd1mqlSqABalyTpquqOumAjBWDhdd9Cec706HKvUYl9nAGIke6cdqjG30
Source: global trafficHTTP traffic detected: GET /adx/getlst HTTP/1.1Host: get4.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /ext/favicon-32x32_1701772986.png HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /login/?dest=https%3A%2F%2Fwww.reddit.com%2Ffavicon.ico&rdt=50489 HTTP/1.1Host: www.reddit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rdt=267854e329c41407b90ec32ae6ab4949
Source: global trafficHTTP traffic detected: GET /login/de/index?ref=https://eu.battle.net/favicon.ico HTTP/1.1Host: eu.battle.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login/?redir=favicon.ico HTTP/1.1Host: store.steampowered.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /mon HTTP/1.1Host: obseu.7roundprince.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=6438bdec51f10f97b581b4ebc5ecefc9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?return_to=https%3A%2F%2Fgithub.com%2Ffavicon.ico%3Fid%3D1 HTTP/1.1Host: github.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?redir=https%3A%2F%2Fwww.flickr.com/favicon.ico HTTP/1.1Host: login.yahoo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBNA0iGcCEN-LuFZiN8mjLJVjAEYZqjIFEgEBAQGGiWeSZ9xH0iMA_eMAAA&S=AQAAAgMDIMHnLAHCZr6Y7Ydev0M
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login/?dest=https%3A%2F%2Fwww.reddit.com%2Ffavicon.ico&rdt=50489 HTTP/1.1Host: www.reddit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rdt=267854e329c41407b90ec32ae6ab4949; loid=000000001h86nxd98r.2.1736979666145.Z0FBQUFBQm5pRFRTMGJDZm9yZkpCYnoxX0lxQ011UEhCQTBVQjRSS1Q5YmVjOU8wRE1oYldvc2JDYjJvUjhkOGhXQWJXTTdURmxiRFJSenMwMDBIUjFKc2ZwU1p0WWF5VmJUdzgwc29iU0RFSXJyUWRFY0doX2FHNVpwTDFZb3h2R1pQSzVHNGFIcEQ; session_tracker=bncmmbeellcmkhhqpe.0.1736979666149.Z0FBQUFBQm5pRFRTSUs1dDFwckxPQXAza0NUd2pLSWZSTVZSa3d6TnQ4dmx5M1pYWVZueHlvSFhmdHMwVlZ0QU1oUmNsWVQ0eWlQMTRPblpNMlV6S3RIRnRRNmhKN2hmRFllYlIxUzZKMnBMNU0wbFRDQ0xCOGRCRGxZRlNjQ29JVjFrWWcyQjJyamc; csv=2
Source: global trafficHTTP traffic detected: GET /signin?returnUri=https://t.paypal.com/ts?v=1.0.0 HTTP/1.1Host: www.paypal.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /checkcookie?redir=https%3A%2F%2Fslack.com%2Ffavicon.ico%23 HTTP/1.1Host: slack.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?cont=https%3a%2f%2fwww.dropbox.com%2fstatic%2fimages%2ffavicon.ico HTTP/1.1Host: www.dropbox.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: gvc=OTcwNjE2NzY5MDAyNzU1NjkyNTM4Mzg1NDA5MzIwMDQyNzM0NDU=; t=daf4CXdg9ze-14JRg7ciUO3g; __Host-js_csrf=daf4CXdg9ze-14JRg7ciUO3g
Source: global trafficHTTP traffic detected: GET /recaptcha/enterprise/clr?k=6LfkWDYqAAAAAJvAuJELqQLg85Lg8zAp-k7w8siS HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AGVEItdiapGS4RM72ZhqlUl6C0PmIwMd1mqlSqABalyTpquqOumAjBWDhdd9Cec706HKvUYl9nAGIke6cdqjG30
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /profile/login/?next=https%3A%2F%2Fdisqus.com%2Ffavicon.ico HTTP/1.1Host: disqus.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?r=%2Ffavicon.ico HTTP/1.1Host: 500px.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ap/signin?_encoding=UTF8&openid.assoc_handle=usflex&openid.claimed_id=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.identity=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.mode=checkid_setup&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.ns.pape=http%3A%2F%2Fspecs.openid.net%2Fextensions%2Fpape%2F1.0&openid.pape.max_auth_age=10000000&openid.return_to=https%3A%2F%2Fwww.amazon.com%2Ffavicon.ico HTTP/1.1Host: www.amazon.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /account/login?continue=%2ffavicon.ico HTTP/1.1Host: secure.indeed.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?return_to=https%3A%2F%2Fgithub.com%2Ffavicon.ico%3Fid%3D1 HTTP/1.1Host: github.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /account/signin/?next=/favicon.ico HTTP/1.1Host: bitbucket.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login/?redir=favicon.ico HTTP/1.1Host: store.steampowered.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: steamCountry=US%7C185ce35c568ebbb18a145d0cabae7186; browserid=412742498574669646; sessionid=56b058730c112796b6479c46
Source: global trafficHTTP traffic detected: GET /profile/login/?next=https%3A%2F%2Fdisqus.com%2Ffavicon.ico HTTP/1.1Host: disqus.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: csrftoken=EFEhcHhQhWmpkzFWgkb4l4hRJ7h7XG57
Source: global trafficHTTP traffic detected: GET /login?redirect_on_login=/favicon.ico HTTP/1.1Host: www.twitch.tvConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /signin?returnUri=https://t.paypal.com/ts?v=1.0.0 HTTP/1.1Host: www.paypal.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: enforce_policy=ccpa; cookie_check=yes; d_id=5099871da141466094dbf69e8b17d15b1736979666851; LANG=en_US%3BUS; tsrce=unifiedloginnodeweb; x-pp-s=eyJ0IjoiMTczNjk3OTY2Njk5MiIsImwiOiIwIiwibSI6IjAifQ; nsid=s%3A7jp1AdbJ76xHDGr9cGyjY5CuPgSk0YKi.ufL0KH2OrTnUCzal80gRFrymdFZBZZRsruaDmTDefow; l7_az=dcg01.phx; ts=vreXpYrS%3D1768515666%26vteXpYrS%3D1736981466%26vr%3D6c0e57681940a551a8f5b2c6ed301df2%26vt%3D6c0e57681940a551a8f5b2c6ed301df1%26vtyp%3Dnew; ts_c=vr%3D6c0e57681940a551a8f5b2c6ed301df2%26vt%3D6c0e57681940a551a8f5b2c6ed301df1
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?u=2&to=ZmF2aWNvbi5pY28- HTTP/1.1Host: vk.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /checkcookie?redir=https%3A%2F%2Fslack.com%2Ffavicon.ico%23 HTTP/1.1Host: slack.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: utm=%7B%7D; b=ce5c65c19aafca2f55cd62828473a69d; x=ce5c65c19aafca2f55cd62828473a69d.1736979667
Source: global trafficHTTP traffic detected: GET /login?r=%2Ffavicon.ico HTTP/1.1Host: 500px.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-east-1.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ap/signin?_encoding=UTF8&openid.assoc_handle=imdb_us&openid.claimed_id=http%3a%2f%2fspecs.openid.net%2fauth%2f2.0%2fidentifier_select&openid.identity=http%3a%2f%2fspecs.openid.net%2fauth%2f2.0%2fidentifier_select&openid.mode=checkid_setup&openid.ns=http%3a%2f%2fspecs.openid.net%2fauth%2f2.0&openid.pape.max_auth_age=10000000&openid.return_to=https%3a%2f%2fwww.imdb.com%2ffavicon.ico HTTP/1.1Host: www.imdb.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?redirect_on_login=/favicon.ico HTTP/1.1Host: www.twitch.tvConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: server_session_id=cce539605bd44508a344b6cd496a734f; unique_id=h2TUiANie7MufhOvAf5ToiVLtkyIgO0M; unique_id_durable=h2TUiANie7MufhOvAf5ToiVLtkyIgO0M
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?rt=L&rp=%2ffavicon.ico&step=confirmation HTTP/1.1Host: accounts.craigslist.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?to=ZmF2aWNvbi5pY28- HTTP/1.1Host: vk.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: remixlang=3; remixstlid=9070584652967973254_mnjrB69IMZ6oBwHNdHxkT3wUvPTCprtcWbUJD3znC0P; remixlgck=a900ee1aa12896b00d; remixua=43%7C-1%7C214%7C2987383930
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ap/signin?_encoding=UTF8&openid.assoc_handle=imdb_us&openid.claimed_id=http%3a%2f%2fspecs.openid.net%2fauth%2f2.0%2fidentifier_select&openid.identity=http%3a%2f%2fspecs.openid.net%2fauth%2f2.0%2fidentifier_select&openid.mode=checkid_setup&openid.ns=http%3a%2f%2fspecs.openid.net%2fauth%2f2.0&openid.pape.max_auth_age=10000000&openid.return_to=https%3a%2f%2fwww.imdb.com%2ffavicon.ico HTTP/1.1Host: www.imdb.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login?rt=L&rp=%2ffavicon.ico&step=confirmation HTTP/1.1Host: accounts.craigslist.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /ping HTTP/1.1Host: ws-broker-service.us-west-2.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?to=ZmF2aWNvbi5pY28- HTTP/1.1Host: vk.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: remixlang=3; remixstlid=9070584652967973254_mnjrB69IMZ6oBwHNdHxkT3wUvPTCprtcWbUJD3znC0P; remixlgck=a900ee1aa12896b00d; remixua=43%7C-1%7C214%7C2987383930; remixstid=592023190_96kIY7SAVoZUZJP16tUK0IzIelNfYo8zuZu57LMa4Ez; remixrefkey=d5bd82eca1c665aa9b
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /mon HTTP/1.1Host: obseu.7roundprince.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=6438bdec51f10f97b581b4ebc5ecefc9
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /btn_win_1735204076.svg+xml HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /lottie_2_a_1735132522.json HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://get4.protectonow.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /lottie_2_b_1735132522.json HTTP/1.1Host: cdn.protectonow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://get4.protectonow.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://get4.protectonow.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /login.php?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: m.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /btn_win_1735204076.svg+xml HTTP/1.1Host: cdn.protectonow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=fda95280-d38e-11ef-bc27-c22fbff8fb28; uid_cross=fda95280-d38e-11ef-bc27-c22fbff8fb28; mid=f28d8534-d38e-11ef-93a7-aab196f2f20d; utm_source=adx_ext_download_prot_smrtsp___5e460bab; utm_source_cross=adx_ext_download_prot_smrtsp___5e460bab; p2088478120=144748304; sid=f28d8534-d38e-11ef-93a7-aab196f2f20d; sid_cross=f28d8534-d38e-11ef-93a7-aab196f2f20d; _cq_duid=1.1736979657.TvALYahdnYzqGls0; _cq_suid=1.1736979657.eNPi4xFKiCjhbtvd
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /?next=https%3A%2F%2Fm.facebook.com%2F&refsrc=deprecated&_rdr HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /mon HTTP/1.1Host: obseu.7roundprince.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=6438bdec51f10f97b581b4ebc5ecefc9
Source: global trafficHTTP traffic detected: GET /nN2TcE8GMLPezErz6w5W-PB6k8tpgqYQwDK_ztbu5-RW9t4BvzG1t6GlJ6YelK4_4REzeFOihB5lhTt5VRGZd_is=s60 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /recaptcha/enterprise/reload?k=6LfkWDYqAAAAAJvAuJELqQLg85Lg8zAp-k7w8siS HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AGVEItcqPAGgDz9R39TCtyf0ykP6PrOJeBtLeY1yZYy_jeEXom3zBSuoQdBBL3lYEV4hx8-grTTDGmKO5HBOj-g; NID=520=IAVM4TEnE7iB2heoyAK8bUBmssZBJ9HtY7iqh_pGj86sZkMGT-kketGiRZdONFMD-Ktto8VGnNIbmYrX73frEs2BerJRIH2L3CYyDy_jk4ejEcPK6VF2LGYzqJuLG2YMtwCfDMJ39-a1V1oE-Iso6oUytohjs82ueqFP4fC5IkuuVZgBwDiPk9z2yfytFg
Source: global trafficHTTP traffic detected: GET /0nQtqVz_nvTu--u9xv7fTgdxle_nhvLuozE_euJlo8Vz8a-9kkkMPQps-OTUd4nIGQw3vs9fE7ERcL3lI2uiq-KgsgM=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /BKHuX2DD95zO1DoQSIHyXH8_F9Ik4ADuI1XxoAT5L2OTASpb1WOd69fnhHBop3GdxSYFFkLGQS-h8atDYI5f9nhd6fo=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /kthxNShwMYLSZFOKTNPGLHvbrqlqgZ4P8nRvtOM2YvRsI_iN15aPS8-plCCn8H6jPpuWNS6yLjVcqQwJCAASb2iy=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /FHttL1Pz951zHElWjx4j6u1_BY3GEeXLsfZFrWYilHM5mr5YetXvFnxg_B-P5heOsymqcYv_ZHxpozUVQOFLtantkw=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /sXqrFJhwlJsMvvJjhSVy2ykEBnWq07nXuJOjNVx4MMRRZAM-lD49906qnccjpcuacrYtAzt05oXRzYzEIQR7p-qfWw=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /vqhAd_lufZkkSsSvR1Pmt6J2vprUgpe9mBlBn0ym67AlBwW6d8X0JJzMBWDhCylteZIziZPzAJe46sATxOZfGRGo=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /recaptcha/enterprise/clr?k=6LfkWDYqAAAAAJvAuJELqQLg85Lg8zAp-k7w8siS HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09AGVEItcqPAGgDz9R39TCtyf0ykP6PrOJeBtLeY1yZYy_jeEXom3zBSuoQdBBL3lYEV4hx8-grTTDGmKO5HBOj-g; NID=520=IAVM4TEnE7iB2heoyAK8bUBmssZBJ9HtY7iqh_pGj86sZkMGT-kketGiRZdONFMD-Ktto8VGnNIbmYrX73frEs2BerJRIH2L3CYyDy_jk4ejEcPK6VF2LGYzqJuLG2YMtwCfDMJ39-a1V1oE-Iso6oUytohjs82ueqFP4fC5IkuuVZgBwDiPk9z2yfytFg
Source: global trafficHTTP traffic detected: GET /QIS6-nC9cFHkmg07ddwwblOq2Z_NZYP4k1Odsp6mPopMQhrQZtoclOZmHbigOCWbvUoJcOTrIjvnMpr5iaeE8kTH=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /MUdE5q8Y9INai_J-IONHSquUfvECl-yO-WBvTD6fOoNmR2iyAryh9nqYOpYW6DuWuYTOxHi6PBTq79ffeVq9BvJV-I8=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /49X_jZPODshK81NcE2VTAn7jtIuCGi3bo2PH8UdQ8YV-X-3W8ik7UDMK1DFB7HO4uqZPhfZn6pki3HWeE2DMN204tg=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /VflcyYKNiX81FYhjH8SofMF0O-CPgL7K-IQ-9eLjJEav9S3ip87NFX2ZPIvH_WJu85srQH4JWVNT35vKe-QfcQce4Q=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /SkcnoY_VoqWsdNnku3ClBCPmc7RbouAiM5gfiO1zQ9cpMtswb7SCIklPv2pp73nkDPNpOXvj4uGh1UEkeNO2aRd80A=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /2xJU2w7BQ2OUHsQwFNLOl3wbGd0rtPUuMJI1Um242S6N-acN0xG6Syj1jL17gxLKb3RMKwn6fajnFJISLQ8KCmP0yw=s275-w275-h175 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /j-eBhzua_ZWgA6PQoz_0eYIenmIJxLebpoAVM818kY2qeWu2oE70aXG2XR1JGfDXkPFcHbLoDoItv4iLnnUBYee3=s1280-w1280-h800 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-wow64: ?0sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQjcvc0BCI/KzQEIucrNAQii0c0BCIrTzQEIntbNAQin2M0BCPnA1BUY9snNARi60s0BGOuNpRc=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://chromewebstore.google.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: GET /mon HTTP/1.1Host: obseu.7roundprince.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=6438bdec51f10f97b581b4ebc5ecefc9
Source: global trafficHTTP traffic detected: GET /js/googleapis.proxy.js?onload=startup HTTP/1.1Host: apis.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=520=g5C5DWn9iisNcNEgWgCcabmaxT35c2dMBKSohzv8g0ZLFxD6J0CatfTvgHo-_XaimQJZIER7cnlZEROvxLpnqCvadHyJMNTI7ZAqL2m1VE2FjRcG9CJeUY19WSswccMcl6DEpZQNoz3ymKj3tvgPz_Boz37YNYhRcZL4SG9e6oc5OPTvg9o3fbHwc6Yk-G9dW1ltHg
Source: global trafficHTTP traffic detected: GET /_/scs/abc-static/_/js/k=gapi.gapi.en.l2ZUC8FxqV8.O/m=googleapis_proxy/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9xAAkaXO7Lqf7-9uTpZLtrkpWaXQ/cb=gapi.loaded_0?le=scs HTTP/1.1Host: apis.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=520=g5C5DWn9iisNcNEgWgCcabmaxT35c2dMBKSohzv8g0ZLFxD6J0CatfTvgHo-_XaimQJZIER7cnlZEROvxLpnqCvadHyJMNTI7ZAqL2m1VE2FjRcG9CJeUY19WSswccMcl6DEpZQNoz3ymKj3tvgPz_Boz37YNYhRcZL4SG9e6oc5OPTvg9o3fbHwc6Yk-G9dW1ltHg
Source: global trafficHTTP traffic detected: GET /nN2TcE8GMLPezErz6w5W-PB6k8tpgqYQwDK_ztbu5-RW9t4BvzG1t6GlJ6YelK4_4REzeFOihB5lhTt5VRGZd_is HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: chromecache_207.2.drString found in binary or memory: <p>Once you've done this, you can try to <a href="/signin">sign in again</a>.</p> </div></div><div id="overlay"></div></div><footer data-qa="footer"><section class="links"><div class="grid"><div class="col span_1_of_4 nav_col"><ul><li class="cat_1">Using Slack</li><li><a href="/is" data-qa="product_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_product">Product</a></li><li><a href="/enterprise" data-qa="enterprise_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_enterprise">Enterprise</a></li><li><a href="/pricing?ui_step=28&amp;ui_element=5" data-qa="pricing_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_pricing">Pricing</a></li><li><a href="https://get.slack.help/hc/en-us" data-qa="support_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_support">Support</a></li><li><a href="/guides" data-qa="getting_started" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_getting_started">Slack Guides</a></li><li><a href="/marketplace" data-qa="app_directory" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_app_directory">Slack Marketplace</a></li><li><a href="https://api.slack.com/" data-qa="api" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_api">API</a></li></ul></div><div class="col span_1_of_4 nav_col"><ul><li class="cat_2">Slack <ts-icon class="ts_icon_heart"></ts-icon></li><li><a href="/careers" data-qa="jobs" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_jobs">Jobs</a></li><li><a href="/customers" data-qa="customers" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_customers">Customers</a></li><li><a href="/developers" data-qa="developers" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_developers">Developers</a></li><li><a href="/events" data-qa="events" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_events">Events</a></li><li><a href="https://slackhq.com/" data-qa="blog_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_blog">Blog</a></li></ul></div><div class="col span_1_of_4 nav_col"><ul><li class="cat_3">Legal</li><li><a href="/privacy-policy" data-qa="privacy" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_privacy">Privacy</a></li><li><a href="/trust/security" data-qa="security" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_security">Security</a></li><li><a href="/terms-of-service" data-qa="tos" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_tos">Terms of Service</a></li><li><a href="/legal" data-qa="policies" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_policies">Policies</a></li></ul></div><div class="col span_1_of_4 nav_col"><ul><li class="cat_4">Handy Links</li><li><a href="/downloads" data-qa="downloads" data-clog-event="WEBSITE_CLICK" data-clog
Source: chromecache_207.2.drString found in binary or memory: <p>Once you've done this, you can try to <a href="/signin">sign in again</a>.</p> </div></div><div id="overlay"></div></div><footer data-qa="footer"><section class="links"><div class="grid"><div class="col span_1_of_4 nav_col"><ul><li class="cat_1">Using Slack</li><li><a href="/is" data-qa="product_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_product">Product</a></li><li><a href="/enterprise" data-qa="enterprise_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_enterprise">Enterprise</a></li><li><a href="/pricing?ui_step=28&amp;ui_element=5" data-qa="pricing_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_pricing">Pricing</a></li><li><a href="https://get.slack.help/hc/en-us" data-qa="support_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_support">Support</a></li><li><a href="/guides" data-qa="getting_started" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_getting_started">Slack Guides</a></li><li><a href="/marketplace" data-qa="app_directory" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_app_directory">Slack Marketplace</a></li><li><a href="https://api.slack.com/" data-qa="api" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_api">API</a></li></ul></div><div class="col span_1_of_4 nav_col"><ul><li class="cat_2">Slack <ts-icon class="ts_icon_heart"></ts-icon></li><li><a href="/careers" data-qa="jobs" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_jobs">Jobs</a></li><li><a href="/customers" data-qa="customers" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_customers">Customers</a></li><li><a href="/developers" data-qa="developers" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_developers">Developers</a></li><li><a href="/events" data-qa="events" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_events">Events</a></li><li><a href="https://slackhq.com/" data-qa="blog_footer" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_blog">Blog</a></li></ul></div><div class="col span_1_of_4 nav_col"><ul><li class="cat_3">Legal</li><li><a href="/privacy-policy" data-qa="privacy" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_privacy">Privacy</a></li><li><a href="/trust/security" data-qa="security" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_security">Security</a></li><li><a href="/terms-of-service" data-qa="tos" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_tos">Terms of Service</a></li><li><a href="/legal" data-qa="policies" data-clog-event="WEBSITE_CLICK" data-clog-params="click_target=footer_policies">Policies</a></li></ul></div><div class="col span_1_of_4 nav_col"><ul><li class="cat_4">Handy Links</li><li><a href="/downloads" data-qa="downloads" data-clog-event="WEBSITE_CLICK" data-clog
Source: chromecache_366.2.drString found in binary or memory: &nbsp; <span aria-hidden="true">|</span> &nbsp;<a href="https://steamcommunity.com/linkfilter/?u=http%3A%2F%2Fwww.facebook.com%2FSteam" target="_blank" rel=" noopener"><img src="https://store.fastly.steamstatic.com/public/images/ico/ico_facebook.png" alt="Facebook"> Steam</a> equals www.facebook.com (Facebook)
Source: chromecache_384.2.drString found in binary or memory: }</script><script async src="https://www.googletagmanager.com/gtag/js?id=AW-10805689966"></script><script>function gtag(){dataLayer.push(arguments)}window.dataLayer=window.dataLayer||[],gtag("js",new Date),gtag("config","AW-10805689966")</script><script type="text/javascript">!function(e){if(!window.pintrk){window.pintrk=function(){window.pintrk.queue.push(Array.prototype.slice.call(arguments))};var n=window.pintrk;n.queue=[],n.version="3.0";var t=document.createElement("script");t.async=!0,t.src="https://s.pinimg.com/ct/core.js";var r=document.getElementsByTagName("script")[0];r.parentNode.insertBefore(t,r)}}(),pintrk("load","2613922701259"),pintrk("page")</script><noscript><img height="1" width="1" style="display:none" alt="" src="https://ct.pinterest.com/v3/?tid=2613922701259&noscript=1"/></noscript><script>window.pintrk&&pintrk("track","pagevisit")</script><script>!function(e,t,n,c,o,a,f){e.fbq||(o=e.fbq=function(){o.callMethod?o.callMethod.apply(o,arguments):o.queue.push(arguments)},e._fbq||(e._fbq=o),(o.push=o).loaded=!0,o.version="2.0",o.queue=[],(a=t.createElement(n)).async=!0,a.src="https://connect.facebook.net/en_US/fbevents.js",(f=t.getElementsByTagName(n)[0]).parentNode.insertBefore(a,f))}(window,document,"script"),fbq("init","324942534599956"),fbq("track","PageView")</script><noscript><img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=324942534599956&ev=PageView&noscript=1"/></noscript><script>!function(t,h,e,j,s,n){t.hj=t.hj||function(){(t.hj.q=t.hj.q||[]).push(arguments)},t._hjSettings={hjid:3105627,hjsv:6},s=h.getElementsByTagName("head")[0],(n=h.createElement("script")).async=1,n.src="https://static.hotjar.com/c/hotjar-"+t._hjSettings.hjid+".js?sv="+t._hjSettings.hjsv,s.appendChild(n)}(window,document)</script><script>const testImages = { equals www.facebook.com (Facebook)
Source: chromecache_294.2.drString found in binary or memory: </style><meta property="fb:app_id" content="138566025676"/><meta property="og:site_name" content="Airbnb"/><meta property="og:locale" content="en_US"/><meta property="og:url" content="https://www.airbnb.com/login"/><meta property="og:title" content="Log In / Sign Up - Airbnb"/><meta property="og:description" content="Join a global community of travelers and local hosts on Airbnb. Log in with your email address, Facebook, or Google."/><meta property="og:type" content="website"/><meta property="og:image" content="https://a0.muscache.com/im/pictures/fe7217ff-0b24-438d-880d-b94722c75bf5.jpg"/><meta name="robots" content="noindex, nofollow"/><meta name="description" content="Join a global community of travelers and local hosts on Airbnb. Log in with your email address, Facebook, or Google."/><title>Log In / Sign Up - Airbnb</title><link rel="manifest" href="/manifest.json"/><meta name="twitter:card" content="summary"/><meta name="twitter:title" content="Log In / Sign Up - Airbnb"/><meta name="twitter:site" content="@airbnb"/><meta name="twitter:app:name:iphone" content="Airbnb"/><meta name="twitter:app:name:ipad" content="Airbnb"/><meta name="twitter:app:name:googleplay" content="Airbnb"/><meta name="twitter:app:id:iphone" content="401626263"/><meta name="twitter:app:id:ipad" content="401626263"/><meta name="twitter:app:id:googleplay" content="com.airbnb.android"/><meta name="twitter:url" content="https://www.airbnb.com/login"/><script id="data-apollo-state" data-apollo-state="true" type="application/json">{}</script><script id="data-flagger_cdn_experiments" data-flagger_cdn_experiments="true" type="application/json">{"flagger_cdn_experiments":[]}</script><script id="aphrodite-classes" type="application/json">["_is5jnq","_1k81gub","_siy8gh","_vuzcgs","_176ugpa","_3hmsj","_pvfq6t","_z5mecy","_88xxct","_qrzeuh","_1y9y8er","_7lvai1","_gt7qdv","_2ftibv","_1tpjx2u","_je2ned","_15sn973","_1vk19cb","_1n35162","_kh8wuv","_k3vzc58","_1l63kxf","_88sa87","_tcop0t","_fvfsqm","_bc4egv","_jwti9r","_1udzt2s","_qr5vxk","_15m7xnk","_wxdo12","_1fqnaqg","_1sv27e6","_ar9stc","_jro6t0","_3qymq","_sovp2k","_xmk1z0p","_j8ldew","_pd8gea","_1fx0lfx","_lldyhy","_zlfm26","_1sbp7g1","_1p4noobx","_115qwnm","_1xbvnt9","_j7hlqym"]</script></head><body class="with-new-header"><div id="site-skip-links"><a class="screen-reader-only screen-reader-only-focusable skip-to-content" data-hook="skip-to-content" href="#site-content" tabindex="0">Skip to content</a><span id="popups-everywhere-skip-link"></span></div><div id="smart-banner"></div><noscript><div class="alert alert-with-icon alert-error no-js-alert" data-nosnippet="true"><i class="icon alert-icon icon-alert-alt"></i>We equals www.facebook.com (Facebook)
Source: chromecache_360.2.drString found in binary or memory: <li class="fb"><a href="https://www.facebook.com/softwareinformercom/" rel="noopener" target="_blank">FB</a></li> equals www.facebook.com (Facebook)
Source: chromecache_283.2.drString found in binary or memory: <span class='fb-custom social-wrapper' data-href='https://www.facebook.com/sharer.php?u=http://workspaceupdates.googleblog.com/2023/04/new-community-features-for-google-chat-and-an-update-currents%20.html'> equals www.facebook.com (Facebook)
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: Math.round(q);t["gtm.videoElapsedTime"]=Math.round(f);t["gtm.videoPercent"]=r;t["gtm.videoVisible"]=u;return t},Nk:function(){e=nb()},Kd:function(){d()}}};var Vb=wa(["data-gtm-yt-inspected-"]),SE=["www.youtube.com","www.youtube-nocookie.com"],TE,UE=!1; equals www.youtube.com (Youtube)
Source: chromecache_248.2.drString found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=xC(a,c,e);U(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return U(122),!0;if(d&&f){for(var m=yb(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},AC=function(){var a=[],b=function(c){return bb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: if(!(e||f||g||k.length||m.length))return;var p={Kh:e,Ih:f,Jh:g,ri:k,si:m,bf:n,Mb:b},q=A.YT;if(q)return q.ready&&q.ready(d),b;var r=A.onYouTubeIframeAPIReady;A.onYouTubeIframeAPIReady=function(){r&&r();d()};H(function(){for(var u=E.getElementsByTagName("script"),v=u.length,t=0;t<v;t++){var w=u[t].getAttribute("src");if(cF(w,"iframe_api")||cF(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,B=0;B<y;B++)if(!UE&&aF(x[B],p.bf))return lc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_232.2.dr, chromecache_195.2.drString found in binary or memory: inline:{css:1},disableRealtimeCallback:!1,drive_share:{skipInitCommand:!0},csi:{rate:.01},client:{cors:!1},signInDeprecation:{rate:0},include_granted_scopes:!0,llang:"en",iframes:{youtube:{params:{location:["search","hash"]},url:":socialhost:/:session_prefix:_/widget/render/youtube?usegapi=1",methods:["scroll","openwindow"]},ytsubscribe:{url:"https://www.youtube.com/subscribe_embed?usegapi=1"},plus_circle:{params:{url:""},url:":socialhost:/:session_prefix::se:_/widget/plus/circle?usegapi=1"}, equals www.youtube.com (Youtube)
Source: chromecache_248.2.drString found in binary or memory: var eE=function(a,b,c,d,e){var f=VB("fsl",c?"nv.mwt":"mwt",0),g;g=c?VB("fsl","nv.ids",[]):VB("fsl","ids",[]);if(!g.length)return!0;var k=$B(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);U(121);if(m==="https://www.facebook.com/tr/")return U(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!FA(k,HA(b, equals www.facebook.com (Facebook)
Source: chromecache_350.2.drString found in binary or memory: xf=y(["https://sandbox.google.com/tools/feedback/"]),yf=y(["https://www.google.cn/tools/feedback/"]),zf=y(["https://help.youtube.com/tools/feedback/"]),Af=y(["https://asx-frontend-staging.corp.google.com/inapp/"]),Bf=y(["https://asx-frontend-staging.corp.google.com/tools/feedback/"]),Cf=y(["https://localhost.corp.google.com/inapp/"]),Df=y(["https://localhost.proxy.googlers.com/inapp/"]),Ef=S(ff),Ff=[S(gf),S(hf)],Gf=[S(jf),S(kf),S(lf),S(mf),S(nf),S(of),S(pf),S(qf),S(rf),S(sf)],Hf=[S(tf),S(uf)],If= equals www.youtube.com (Youtube)
Source: global trafficDNS traffic detected: DNS query: www.google.com
Source: global trafficDNS traffic detected: DNS query: nuance-pdf-professional2.software.informer.com
Source: global trafficDNS traffic detected: DNS query: img.informer.com
Source: global trafficDNS traffic detected: DNS query: hits.informer.com
Source: global trafficDNS traffic detected: DNS query: software.informer.com
Source: global trafficDNS traffic detected: DNS query: i.informer.com
Source: global trafficDNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global trafficDNS traffic detected: DNS query: g.bidbrain.app
Source: global trafficDNS traffic detected: DNS query: cdn.bidbrain.app
Source: global trafficDNS traffic detected: DNS query: serve.bidbrain.app
Source: global trafficDNS traffic detected: DNS query: fundingchoicesmessages.google.com
Source: global trafficDNS traffic detected: DNS query: g4.bidbrain.app
Source: global trafficDNS traffic detected: DNS query: g6.bidbrain.app
Source: global trafficDNS traffic detected: DNS query: ep1.adtrafficquality.google
Source: global trafficDNS traffic detected: DNS query: ep2.adtrafficquality.google
Source: global trafficDNS traffic detected: DNS query: get4.protectonow.com
Source: global trafficDNS traffic detected: DNS query: adclick.g.doubleclick.net
Source: global trafficDNS traffic detected: DNS query: cdn.protectonow.com
Source: global trafficDNS traffic detected: DNS query: g.protectonow.com
Source: global trafficDNS traffic detected: DNS query: euob.7roundprince.com
Source: global trafficDNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global trafficDNS traffic detected: DNS query: obseu.7roundprince.com
Source: global trafficDNS traffic detected: DNS query: m.facebook.com
Source: global trafficDNS traffic detected: DNS query: www.facebook.com
Source: global trafficDNS traffic detected: DNS query: ws-broker-service.us-east-1.amazonaws.com
Source: global trafficDNS traffic detected: DNS query: ws-broker-service.us-west-2.amazonaws.com
Source: global trafficDNS traffic detected: DNS query: stun.l.google.com
Source: global trafficDNS traffic detected: DNS query: medium.com
Source: global trafficDNS traffic detected: DNS query: squareup.com
Source: global trafficDNS traffic detected: DNS query: twitter.com
Source: global trafficDNS traffic detected: DNS query: plus.google.com
Source: global trafficDNS traffic detected: DNS query: login.yahoo.com
Source: global trafficDNS traffic detected: DNS query: app.squareup.com
Source: global trafficDNS traffic detected: DNS query: www.reddit.com
Source: global trafficDNS traffic detected: DNS query: x.com
Source: global trafficDNS traffic detected: DNS query: www.tumblr.com
Source: global trafficDNS traffic detected: DNS query: www.expedia.de
Source: global trafficDNS traffic detected: DNS query: workspaceupdates.googleblog.com
Source: global trafficDNS traffic detected: DNS query: www.dropbox.com
Source: global trafficDNS traffic detected: DNS query: www.amazon.com
Source: global trafficDNS traffic detected: DNS query: www.pinterest.com
Source: global trafficDNS traffic detected: DNS query: eu.battle.net
Source: global trafficDNS traffic detected: DNS query: store.steampowered.com
Source: global trafficDNS traffic detected: DNS query: github.com
Source: global trafficDNS traffic detected: DNS query: slack.com
Source: global trafficDNS traffic detected: DNS query: www.paypal.com
Source: global trafficDNS traffic detected: DNS query: 500px.com
Source: global trafficDNS traffic detected: DNS query: www.airbnb.com
Source: global trafficDNS traffic detected: DNS query: disqus.com
Source: global trafficDNS traffic detected: DNS query: secure.meetup.com
Source: global trafficDNS traffic detected: DNS query: bitbucket.org
Source: global trafficDNS traffic detected: DNS query: secure.indeed.com
Source: global trafficDNS traffic detected: DNS query: vk.com
Source: global trafficDNS traffic detected: DNS query: www.twitch.tv
Source: global trafficDNS traffic detected: DNS query: accounts.craigslist.org
Source: global trafficDNS traffic detected: DNS query: www.imdb.com
Source: global trafficDNS traffic detected: DNS query: www.meetup.com
Source: global trafficDNS traffic detected: DNS query: chromewebstore.google.com
Source: global trafficDNS traffic detected: DNS query: lh3.googleusercontent.com
Source: global trafficDNS traffic detected: DNS query: apis.google.com
Source: global trafficDNS traffic detected: DNS query: play.google.com
Source: global trafficDNS traffic detected: DNS query: scone-pa.clients6.google.com
Source: unknownHTTP traffic detected: POST /rtimp HTTP/1.1Host: g.bidbrain.appConnection: keep-aliveContent-Length: 2036sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plain;charset=UTF-8Accept: */*Origin: https://googleads.g.doubleclick.netSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenConnection: closex-xss-protection: 1; mode=blockx-content-type-options: nosniffstrict-transport-security: max-age=63072000; includeSubDomains; preloadx-ua-compatible: IE=edgereporting-endpoints: coop-endpoint="https://www.pinterest.com/_/_/coop_report/", coep-endpoint="https://www.pinterest.com/_/_/coep_report/"cross-origin-opener-policy-report-only: same-origin; report-to="coop-endpoint"set-cookie: csrftoken=c60a1ce73e66702cfef2361c6b0aa8b8; path=/; expires=Thu, 15 Jan 2026 22:21:05 GMT; samesite=lax; secureset-cookie: _pinterest_sess=TWc9PSZsNmg3K29zWS83d3hBR3FqSEcvK201eE0wV1hQcnNrdExLU0NtdGRUL084bmJzN2FGQzRQcHUvTHNhMzFCZTBDR2JpR0l0WG5zSytZZzFWdVE5QXFkc0ZMNmt1YXBPSlRBNWVDUndDNDIyVT0mY0o4Q3JiU2JZTXFMaFljNFNrUHI0dTUvZDJ3PQ==; path=/; expires=Sat, 10 Jan 2026 22:21:05 GMT; domain=.pinterest.com; samesite=none; secure; httponlyset-cookie: _auth=0; path=/; expires=Sat, 10 Jan 2026 22:21:05 GMT; domain=.pinterest.com; secure; httponlyp3p: CP="This is not a P3P policy. See https://www.pinterest.com/_/_/help/articles/pinterest-and-p3p for more info."
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Wed, 15 Jan 2025 22:21:07 GMTContent-Type: text/html;charset=UTF-8Transfer-Encoding: chunkedConnection: closeSet-Cookie: CTK=; Max-Age=0; Path=/; Secure; SameSite=Nonevary: Originvary: Access-Control-Request-Methodvary: Access-Control-Request-Headersx-frame-options: SAMEORIGINcontent-security-policy: upgrade-insecure-requests; frame-ancestors https://indeed.com https://*.indeed.comstrict-transport-security: max-age=86400pragma: no-cacheCache-Control: no-store, no-cache, must-revalidate, privateexpires: Wed, 15 Jan 2025 22:20:07 GMTcontent-language: en-USCF-Cache-Status: DYNAMICSet-Cookie: CTK=1ihm0smkljcli800; Domain=.indeed.com; Max-Age=157680000; Path=/; Secure; SameSite=NoneSet-Cookie: SURF=L15qlqeydX57jMJwiTCor0L8B8mRrtdf; Domain=.indeed.com; Expires=Wed, 22 Jan 2025 22:21:07 GMT; Path=/; Secure; HttpOnlySet-Cookie: __cf_bm=XVZED35ik4IcsPADKRZQSUrp7Q7DJFd5qfLFJNL2dKE-1736979667-1.0.1.1-tCvNRGXtL7maSUCXmAKg_3vza_pgxLuUhs40pQfC3qnGK5HQtByizPOAQLlmv.ImDAJied7_p6V5PeScq.tahQ; path=/; expires=Wed, 15-Jan-25 22:51:07 GMT; domain=.indeed.com; HttpOnly; Secure; SameSite=NoneSet-Cookie: __cflb=0H28v9ueys8DmBCU6XVKET5P25SoAHyMoHahgNbxQUL; SameSite=None; Secure; path=/; expires=Thu, 16-Jan-25 21:21:07 GMT; HttpOnly
Source: global trafficHTTP traffic detected: HTTP/1.1 403 ForbiddenConnection: closeContent-Length: 718Content-Type: text/html;charset=utf-8Server: DataDomeX-DataDome: protectedAccept-CH: Sec-CH-UA,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Arch,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-Device-MemoryCharset: utf-8Cache-Control: max-age=0, private, no-cache, no-store, must-revalidatePragma: no-cacheAccess-Control-Allow-Credentials: trueAccess-Control-Expose-Headers: x-dd-b, x-set-cookieAccess-Control-Allow-Origin: *X-DataDome-CID: AHrlqAAAAAMAztJwa_OoWHcACC57vQ==X-DD-B: 1Set-Cookie: datadome=_ytUD3uhZhfex2S4yH9hAPt3qlrurjZD6TWm7CkfgnkKFBS4iDMam6Uss0Y5nRDuvddJfZRbNqYljSLalC9LhZrgUYSgHFMvCy9FifVHINg59jyVESkuZfFAKB16wi~_; Max-Age=2592000; Domain=.paypal.com; Path=/; Secure; SameSite=LaxAccept-Ranges: bytesDate: Wed, 15 Jan 2025 22:21:07 GMTVia: 1.1 varnishPaypal-Debug-Id: f456470014759Strict-Transport-Security: max-age=63072000; includeSubDomains; preloadX-Served-By: cache-ewr-kewr1740022-EWRX-Cache: MISSX-Cache-Hits: 0X-Timer: S1736979668.753533,VS0,VE18set-cookie: ddbc=1; secure; httponlyServer-Timing: content-encoding;desc="",x-cdn;desc="fastly"
Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundX-Content-Type-Options: nosniffX-Xss-Protection: 1; mode=blockAtl-Traceid: e79e86ff298342ce9e14486017388583Atl-Request-Id: e79e86ff-2983-42ce-9e14-486017388583Strict-Transport-Security: max-age=63072000; includeSubDomains; preloadReport-To: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}Nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}Access-Control-Allow-Origin: *Content-Length: 19046Content-Type: text/htmlVary: Accept-EncodingServer-Timing: atl-edge;dur=1,atl-edge-internal;dur=2,atl-edge-upstream;dur=0,atl-edge-pop;desc="aws-eu-central-1"Date: Wed, 15 Jan 2025 22:21:07 GMTServer: AtlassianEdgeConnection: close
Source: chromecache_288.2.drString found in binary or memory: http://csi.gstatic.com/csi
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: http://google.com
Source: chromecache_284.2.dr, chromecache_412.2.dr, chromecache_225.2.dr, chromecache_301.2.drString found in binary or memory: http://googleads.g.doubleclick.net
Source: chromecache_350.2.drString found in binary or memory: http://localhost.corp.google.com/inapp/
Source: chromecache_350.2.drString found in binary or memory: http://localhost.proxy.googlers.com/inapp/
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: http://mathiasbynens.be/
Source: chromecache_284.2.dr, chromecache_412.2.dr, chromecache_225.2.dr, chromecache_301.2.drString found in binary or memory: http://pagead2.googlesyndication.com
Source: chromecache_283.2.drString found in binary or memory: http://schema.org/Blog
Source: chromecache_283.2.drString found in binary or memory: http://schema.org/BlogPosting
Source: chromecache_283.2.drString found in binary or memory: http://schema.org/Person
Source: chromecache_283.2.drString found in binary or memory: http://twitter.com/share?text=Google
Source: chromecache_366.2.drString found in binary or memory: http://twitter.com/steam
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/02/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/03/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/04/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/05/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/06/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/07/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/08/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/09/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/10/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/11/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2021/12/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/01/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/02/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/03/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/04/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/05/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/06/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/07/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/08/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/09/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/10/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/11/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2022/12/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/01/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/02/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/03/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/04/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/04/new-community-features-for-google-chat-and-an-update-
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/04/set-default-label-values-for-files-in.html
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/04/streamlined-file-organization-google-drive-location-p
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/05/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/06/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/07/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/08/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/09/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/10/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/11/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2023/12/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/01/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/02/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/03/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/04/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/05/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/06/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/07/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/08/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/09/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/10/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/11/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2024/12/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2025/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/2025/01/
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/feeds/5157300376140296114/comments/default
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/feeds/posts/default
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/feeds/posts/default?alt=rss
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/API
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Accessibility
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Accounts
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Additional%20Google%20services
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Admin%20SDK
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Admin%20console
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Alpha
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Android
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/App%20Maker
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/AppSheet
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Assistant
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Bet
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Beta
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/BigQuery
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Chrome
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Cloud%20Search
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Colab
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Contacts
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Currents
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/DLP
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Developer
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Directory%20Sync
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Docs
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Drive%20for%20desktop
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Duet%20AI
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Editors
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Education%20Edition
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/End-user
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/G%20Suite
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/G%20Suite%20for%20Education
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/G%20Suite%20for%20Government
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Gemini
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Gmail
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Apps%20Script
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Calendar
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Chat
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Classroom
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Cloud%20Directory%20Sync
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Docs
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Drawings
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Drive
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Forms
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Hangouts
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Keep
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Maps
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Meet
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Meet%20Hardware
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Photos
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Sheets
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Sites
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Slides
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Tasks
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Vault
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Vids
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Voice
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Workspace
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Workspace%20Add-ons
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Workspace%20Marketplace
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Workspace%20Migrate
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Google%20Workspace%20for%20Education
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Groups
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Identity
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Jamboard
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/MDM
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Marketplace
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Microsoft%20Exchange
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Microsoft%20Outlook
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Migration
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Mobile
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Next%202023
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/NotebookLM
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Other
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Premier%20Edition
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Rapid
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Rapid%20Release
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Rapid%20Releases
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/SAML
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/SSO
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Scheduled%20Release
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Security%20and%20Compliance
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/Weekly%20Recap
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/What%27s%20New
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/YouTube
Source: chromecache_283.2.drString found in binary or memory: http://workspaceupdates.googleblog.com/search/label/iOS
Source: chromecache_300.2.dr, chromecache_351.2.dr, chromecache_191.2.drString found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_213.2.drString found in binary or memory: http://www.broofa.com
Source: chromecache_366.2.drString found in binary or memory: http://www.steampowered.com/steamworks/
Source: chromecache_366.2.drString found in binary or memory: http://www.valvesoftware.com
Source: chromecache_366.2.drString found in binary or memory: http://www.valvesoftware.com/about
Source: chromecache_366.2.drString found in binary or memory: http://www.valvesoftware.com/legal.htm
Source: chromecache_207.2.drString found in binary or memory: http://www.whatarecookies.com/enable.asp
Source: chromecache_283.2.drString found in binary or memory: https://2542116.fls.doubleclick.net/activityi;src=2542116;type=gblog;cat=googl0;ord=ord=
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/0311ec2/style/rollup-slack_kit_helpers.css
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/2e88f6d/style/libs/lato-2-compressed.css
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/7250118/style/rollup-slack_kit_legacy_adapters.css
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/80588/img/emoji_2017_12_06/sheet_apple_64_indexed_256.png
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/80588/img/emoji_2017_12_06/sheet_google_64_indexed_256.png
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/80588/marketing/img/meta/favicon-32.png
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/a667a46/style/sticky_nav.css
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/b36bb29/style/rollup-plastic.css
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/bv1-13/application.3145a8060f24bcc31342.min.css
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/bv1-13/modern.vendor.b8590c39d48d3bf85d03.min.css
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/bv1-13/slack_beacon.1f9ab05446fdf309c62d.min.js
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/bv1-13/webpack.manifest.7a51c5a667c1161537c6.min.js
Source: chromecache_207.2.drString found in binary or memory: https://a.slack-edge.com/db887d0/style/footer.css
Source: chromecache_347.2.drString found in binary or memory: https://accounts.google.com/gsi/client
Source: chromecache_288.2.drString found in binary or memory: https://accounts.google.com/gsi/ottoken
Source: chromecache_288.2.drString found in binary or memory: https://accounts.google.com/o/fedcm/config.json
Source: chromecache_288.2.dr, chromecache_270.2.dr, chromecache_232.2.dr, chromecache_433.2.dr, chromecache_195.2.dr, chromecache_404.2.drString found in binary or memory: https://accounts.google.com/o/oauth2/auth
Source: chromecache_288.2.dr, chromecache_232.2.dr, chromecache_279.2.dr, chromecache_296.2.dr, chromecache_195.2.drString found in binary or memory: https://accounts.google.com/o/oauth2/iframe
Source: chromecache_270.2.dr, chromecache_232.2.dr, chromecache_433.2.dr, chromecache_195.2.dr, chromecache_404.2.drString found in binary or memory: https://accounts.google.com/o/oauth2/postmessageRelay
Source: chromecache_283.2.drString found in binary or memory: https://ad.doubleclick.net/ddm/activity/src=2542116;type=gblog;cat=googl0;ord=1?
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_283.2.drString found in binary or memory: https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
Source: chromecache_207.2.drString found in binary or memory: https://api.slack.com/
Source: chromecache_270.2.dr, chromecache_213.2.dr, chromecache_232.2.dr, chromecache_433.2.dr, chromecache_195.2.dr, chromecache_404.2.drString found in binary or memory: https://apis.google.com
Source: chromecache_350.2.drString found in binary or memory: https://apis.google.com/js/client.js
Source: chromecache_354.2.drString found in binary or memory: https://apis.google.com/js/googleapis.proxy.js?onload=startup
Source: chromecache_347.2.drString found in binary or memory: https://appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/inapp/
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-autopush.corp.google.co.uk/tools/feedback/
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-autopush.corp.google.com/inapp/
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-autopush.corp.google.com/tools/feedback/
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-autopush.corp.google.de/inapp/
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-autopush.corp.google.de/tools/feedback/
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-staging.corp.google.com/inapp/
Source: chromecache_350.2.drString found in binary or memory: https://asx-frontend-staging.corp.google.com/tools/feedback/
Source: chromecache_350.2.drString found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/inapp/
Source: chromecache_350.2.drString found in binary or memory: https://asx-help-frontend-autopush.corp.youtube.com/tools/feedback/
Source: chromecache_283.2.drString found in binary or memory: https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiaYFhlSrNre35Mng8pmt5iePv668NArrjDt2lJq2v
Source: chromecache_283.2.drString found in binary or memory: https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEil-tQSvWkISdvbujn818sEroZRYYKpRGceE-TwpWR
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://cdn.ampproject.org/amp4ads-host-v0.js
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://cdn.ampproject.org/rtv/$
Source: chromecache_288.2.dr, chromecache_270.2.dr, chromecache_232.2.dr, chromecache_433.2.dr, chromecache_195.2.dr, chromecache_404.2.drString found in binary or memory: https://clients6.google.com
Source: chromecache_384.2.drString found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: chromecache_288.2.drString found in binary or memory: https://console.developers.google.com/
Source: chromecache_288.2.dr, chromecache_270.2.dr, chromecache_232.2.dr, chromecache_433.2.dr, chromecache_195.2.dr, chromecache_404.2.drString found in binary or memory: https://content.googleapis.com
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://cse.google.com/cse.js
Source: chromecache_288.2.drString found in binary or memory: https://csi.gstatic.com/csi
Source: chromecache_384.2.drString found in binary or memory: https://ct.pinterest.com/v3/?tid=2613922701259&noscript=1
Source: chromecache_288.2.drString found in binary or memory: https://developers.google.com/
Source: chromecache_288.2.drString found in binary or memory: https://developers.google.com/api-client-library/javascript/reference/referencedocs
Source: chromecache_288.2.drString found in binary or memory: https://developers.google.com/identity/gsi/web/guides/gis-migration)
Source: chromecache_288.2.drString found in binary or memory: https://developers.googleblog.com/2018/03/discontinuing-support-for-json-rpc-and.html
Source: chromecache_347.2.drString found in binary or memory: https://devvit-gateway.reddit.com
Source: chromecache_270.2.dr, chromecache_433.2.dr, chromecache_404.2.drString found in binary or memory: https://domains.google.com/suggest/flow
Source: chromecache_249.2.dr, chromecache_280.2.dr, chromecache_385.2.drString found in binary or memory: https://ep1.adtrafficquality.google/bg/
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://ep1.adtrafficquality.google/getconfig/sodar
Source: chromecache_249.2.dr, chromecache_280.2.drString found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232
Source: chromecache_249.2.dr, chromecache_280.2.drString found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232
Source: chromecache_249.2.dr, chromecache_280.2.drString found in binary or memory: https://ep2.adtrafficquality.google
Source: chromecache_249.2.dr, chromecache_280.2.drString found in binary or memory: https://ep2.adtrafficquality.google/sodar/
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://ep2.adtrafficquality.google/sodar/$
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://ep3.adtrafficquality.google/ivt/worklet/caw.js
Source: chromecache_347.2.drString found in binary or memory: https://events.redditmedia.com/v2j
Source: chromecache_350.2.drString found in binary or memory: https://feedback-pa.clients6.google.com
Source: chromecache_350.2.drString found in binary or memory: https://feedback.googleusercontent.com/resources/annotator.css
Source: chromecache_350.2.drString found in binary or memory: https://feedback.googleusercontent.com/resources/render_frame2.html
Source: chromecache_350.2.drString found in binary or memory: https://feedback2-test.corp.google.com/inapp/%
Source: chromecache_350.2.drString found in binary or memory: https://feedback2-test.corp.google.com/tools/feedback/%
Source: chromecache_350.2.drString found in binary or memory: https://feedback2-test.corp.googleusercontent.com/inapp/%
Source: chromecache_350.2.drString found in binary or memory: https://feedback2-test.corp.googleusercontent.com/tools/feedback/%
Source: chromecache_445.2.drString found in binary or memory: https://fonts.google.com/license/googlerestricted
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://fonts.googleapis.com/css2?family=Google
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://fonts.googleapis.com/css?family=Google
Source: chromecache_283.2.drString found in binary or memory: https://fonts.googleapis.com/css?family=Roboto:400italic
Source: chromecache_283.2.drString found in binary or memory: https://fonts.googleapis.com/icon?family=Material
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oLlVnmZjtiu7.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oLlVnmdjtiu7.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oLlVnmhjtg.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oLlVnmtjtiu7.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oLlVnmxjtiu7.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oPFTnmZjtiu7.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oPFTnmdjtiu7.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oPFTnmhjtg.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oPFTnmtjtiu7.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUp9-KzpRiLCAt4Unrc-xIKmCU5oPFTnmxjtiu7.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUu9-KzpRiLCAt4Unrc-xIKmCU5qE52i1dC.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUu9-KzpRiLCAt4Unrc-xIKmCU5qER2i1dC.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUu9-KzpRiLCAt4Unrc-xIKmCU5qEV2i1dC.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUu9-KzpRiLCAt4Unrc-xIKmCU5qEl2i1dC.woff2)
Source: chromecache_445.2.drString found in binary or memory: https://fonts.gstatic.com/s/googlesanstext/v22/5aUu9-KzpRiLCAt4Unrc-xIKmCU5qEp2iw.woff2)
Source: chromecache_213.2.drString found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/alert/v11/gm_grey200-36dp/2x/gm_alert_gm_grey200_3
Source: chromecache_213.2.drString found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/alert/v11/gm_grey600-36dp/2x/gm_alert_gm_grey600_3
Source: chromecache_213.2.drString found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/close/v19/gm_grey200-24dp/1x/gm_close_gm_grey200_2
Source: chromecache_213.2.drString found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/close/v19/gm_grey600-24dp/1x/gm_close_gm_grey600_2
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://fundingchoicesmessages.google.com/i/$
Source: chromecache_207.2.drString found in binary or memory: https://get.slack.help/hc/en-us
Source: chromecache_284.2.dr, chromecache_412.2.dr, chromecache_225.2.dr, chromecache_301.2.drString found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://googleads.g.doubleclick.net/pagead/html/$
Source: chromecache_350.2.drString found in binary or memory: https://gstatic.com/uservoice/surveys/resources/
Source: chromecache_311.2.drString found in binary or memory: https://help.meetup.com/hc/articles/360027447252
Source: chromecache_311.2.drString found in binary or memory: https://help.meetup.com/hc/articles/360046339551
Source: chromecache_366.2.drString found in binary or memory: https://help.steampowered.com/en/
Source: chromecache_366.2.drString found in binary or memory: https://help.steampowered.com/en/?snr=1_44_44_
Source: chromecache_350.2.drString found in binary or memory: https://help.youtube.com/tools/feedback/
Source: chromecache_393.2.dr, chromecache_198.2.dr, chromecache_287.2.dr, chromecache_317.2.drString found in binary or memory: https://hits.informer.com/log.php?id=
Source: chromecache_222.2.dr, chromecache_410.2.drString found in binary or memory: https://img.informer.com/images/default_icon/default_48_0.png
Source: chromecache_347.2.drString found in binary or memory: https://lit.dev/docs/api/LitElement/#LitElement.styles
Source: chromecache_350.2.drString found in binary or memory: https://localhost.corp.google.com/inapp/
Source: chromecache_350.2.drString found in binary or memory: https://localhost.proxy.googlers.com/inapp/
Source: chromecache_347.2.drString found in binary or memory: https://ogp.me/ns#
Source: chromecache_412.2.dr, chromecache_214.2.dr, chromecache_323.2.dr, chromecache_368.2.dr, chromecache_434.2.dr, chromecache_278.2.dr, chromecache_225.2.dr, chromecache_221.2.dr, chromecache_238.2.dr, chromecache_305.2.dr, chromecache_301.2.dr, chromecache_342.2.dr, chromecache_423.2.dr, chromecache_377.2.dr, chromecache_229.2.drString found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_249.2.dr, chromecache_280.2.dr, chromecache_385.2.drString found in binary or memory: https://pagead2.googlesyndication.com/bg/
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://pagead2.googlesyndication.com/getconfig/sodar
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=colleague-executed&name=
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&bin=
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&name=invalid_geo&context=10
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=extra&rnd=
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&lidartos
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&start&control&fle=1&s
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-fallback2
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-later2
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-pagehide2
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-start2
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=reach&proto=
Source: chromecache_436.2.dr, chromecache_371.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=fccs&
Source: chromecache_284.2.dr, chromecache_301.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rcs_internal
Source: chromecache_249.2.dr, chromecache_280.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=232
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/html/$
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/$
Source: chromecache_284.2.dr, chromecache_412.2.dr, chromecache_225.2.dr, chromecache_360.2.dr, chromecache_301.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=
Source: chromecache_284.2.dr, chromecache_412.2.dr, chromecache_278.2.dr, chromecache_225.2.dr, chromecache_301.2.dr, chromecache_229.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/err_rep.js
Source: chromecache_412.2.dr, chromecache_278.2.dr, chromecache_225.2.dr, chromecache_229.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/logging_library.js
Source: chromecache_412.2.dr, chromecache_278.2.dr, chromecache_225.2.dr, chromecache_229.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/$
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping
Source: chromecache_412.2.dr, chromecache_278.2.dr, chromecache_225.2.dr, chromecache_301.2.dr, chromecache_229.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping?e=1
Source: chromecache_261.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?
Source: chromecache_249.2.dr, chromecache_280.2.drString found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=232
Source: chromecache_366.2.drString found in binary or memory: https://partner.steamgames.com/steamdirect
Source: chromecache_213.2.dr, chromecache_351.2.dr, chromecache_359.2.dr, chromecache_277.2.dr, chromecache_325.2.drString found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_270.2.dr, chromecache_232.2.dr, chromecache_433.2.dr, chromecache_195.2.dr, chromecache_404.2.drString found in binary or memory: https://plus.google.com
Source: chromecache_283.2.drString found in binary or memory: https://plus.google.com/112374322230920073195
Source: chromecache_283.2.drString found in binary or memory: https://plus.google.com/116899029375914044550
Source: chromecache_270.2.dr, chromecache_232.2.dr, chromecache_433.2.dr, chromecache_195.2.dr, chromecache_404.2.drString found in binary or memory: https://plus.googleapis.com
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://publickeyservice.msmt.gcp.privacysandboxservices.com
Source: chromecache_384.2.drString found in binary or memory: https://s.pinimg.com/ct/core.js
Source: chromecache_350.2.drString found in binary or memory: https://sandbox.google.com/inapp/
Source: chromecache_350.2.drString found in binary or memory: https://sandbox.google.com/inapp/%
Source: chromecache_350.2.drString found in binary or memory: https://sandbox.google.com/tools/feedback/
Source: chromecache_350.2.drString found in binary or memory: https://sandbox.google.com/tools/feedback/%
Source: chromecache_350.2.drString found in binary or memory: https://scone-pa.clients6.google.com
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/car.js
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/cocar.js
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://securepubads.g.doubleclick.net/static/topics/topics_frame.html
Source: chromecache_207.2.drString found in binary or memory: https://slack-status.com
Source: chromecache_207.2.drString found in binary or memory: https://slack.com
Source: chromecache_207.2.drString found in binary or memory: https://slack.com/
Source: chromecache_207.2.drString found in binary or memory: https://slack.com/beacon/timing
Source: chromecache_207.2.drString found in binary or memory: https://slack.com/create
Source: chromecache_207.2.drString found in binary or memory: https://slack.com/get-started#/create
Source: chromecache_207.2.drString found in binary or memory: https://slack.com/get-started#/find
Source: chromecache_207.2.drString found in binary or memory: https://slack.com/is
Source: chromecache_207.2.drString found in binary or memory: https://slack.com/pricing?ui_step=55&amp;ui_element=5
Source: chromecache_207.2.drString found in binary or memory: https://slack.com/signin
Source: chromecache_207.2.drString found in binary or memory: https://slackatwork.com
Source: chromecache_207.2.drString found in binary or memory: https://slackhq.com/
Source: chromecache_410.2.drString found in binary or memory: https://software.informer.com/go/g.php?go=https%3A%2F%2Ftopxnotes.software.informer.com%2F&hs=473582
Source: chromecache_432.2.dr, chromecache_203.2.drString found in binary or memory: https://software.informer.com/go/go2.php?oe9&s=
Source: chromecache_428.2.dr, chromecache_351.2.drString found in binary or memory: https://ssl.gstatic.com/chrome/webstore/images/placeholder_logo.png
Source: chromecache_428.2.dr, chromecache_351.2.drString found in binary or memory: https://ssl.gstatic.com/chrome/webstore/images/placeholder_logo_2x.png
Source: chromecache_428.2.drString found in binary or memory: https://ssl.gstatic.com/chrome/webstore/images/placeholder_marquee.png
Source: chromecache_428.2.drString found in binary or memory: https://ssl.gstatic.com/chrome/webstore/images/placeholder_marquee_2x.png
Source: chromecache_428.2.dr, chromecache_351.2.drString found in binary or memory: https://ssl.gstatic.com/chrome/webstore/images/placeholder_promo_tile.png
Source: chromecache_428.2.dr, chromecache_351.2.drString found in binary or memory: https://ssl.gstatic.com/chrome/webstore/images/placeholder_promo_tile_2x.png
Source: chromecache_288.2.drString found in binary or memory: https://ssl.gstatic.com/gb/js/
Source: chromecache_350.2.drString found in binary or memory: https://stagingqual-feedback-pa-googleapis.sandbox.google.com
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_366.2.drString found in binary or memory: https://steamcommunity.com/
Source: chromecache_366.2.drString found in binary or memory: https://steamcommunity.com/?subsection=broadcasts
Source: chromecache_366.2.drString found in binary or memory: https://steamcommunity.com/discussions/
Source: chromecache_366.2.drString found in binary or memory: https://steamcommunity.com/market/
Source: chromecache_366.2.drString found in binary or memory: https://steamcommunity.com/my/wishlist/
Source: chromecache_366.2.drString found in binary or memory: https://steamcommunity.com/workshop/
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/css/applications/store/main.css?v=Dd1QBcW7Ng34&amp;l=eng
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/css/v6/browse.css?v=i6TQ7oIBXK-E&amp;l=english&amp;_cdn=
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/css/v6/cart.css?v=SFGHVOgNiRXD&amp;l=english&amp;_cdn=fa
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/css/v6/store.css?v=p1S4tSu2k8Oq&amp;l=english&amp;_cdn=f
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/images/footerLogo_valve_new.png
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/images/ico/ico_twitter.png
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/images/v6/logo_steam_footer.png
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/javascript/applications/store/libraries~b28b7af69.js?v=v
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/javascript/applications/store/main.js?v=8o5YE6fTVBhG&amp
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/javascript/applications/store/manifest.js?v=kTC9eG2cWexl
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/javascript/dynamicstore.js?v=iQ2CGpHeNwDH&amp;l=english&
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/javascript/main.js?v=wiAgKBaqWusf&amp;l=english&amp;_cdn
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/css/buttons.css?v=ecbk11GZ8OUy&amp;l=english&amp;
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/css/login.css?v=s2eLMp3puLuI&amp;l=english&amp;_c
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/css/motiva_sans.css?v=YzJgj1FjzW34&amp;l=english&
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/css/shared_global.css?v=LkH7FFmHUNxE&amp;l=englis
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/css/shared_responsive.css?v=r6syZUh8_Rpk&amp;l=en
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/images/responsive/header_logo.png
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/images/responsive/steam_share_image.jpg
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/javascript/auth_refresh.js?v=w6QbwI-5-j2S&amp;l=e
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=NXam5zydzNu8&amp
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/javascript/login.js?v=bV0ZlWAiNlZX&amp;l=english&
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/javascript/shared_global.js?v=gOyfgA0bHRkL&amp;l=
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=tvQi85m
Source: chromecache_366.2.drString found in binary or memory: https://store.fastly.steamstatic.com/public/shared/javascript/tooltip.js?v=QYkT4eS5mbTN&amp;l=englis
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/?snr=1_60_4__global-header
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/?snr=1_60_4__global-responsive-menu
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/about
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/about/?snr=1_60_4__global-header
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/about/?snr=1_60_4__global-responsive-menu
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/account/cookiepreferences/?snr=1_44_44_
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/digitalgiftcards/?snr=1_44_44_
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/explore/?snr=1_60_4__global-header
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/explore/?snr=1_60_4__global-responsive-menu
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/favicon.ico&quot;
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/hardware_recycling/?snr=1_44_44_
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/join/?redir=favicon.ico&snr=1_60_4__62
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/legal/?snr=1_44_44_
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/login/?redir=login%2F%3Fredir%3Dfavicon.ico&redir_ssl=1&snr=1_60_4__g
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/mobile
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/news/?snr=1_60_4__global-header
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/news/?snr=1_60_4__global-responsive-menu
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/points/shop/?snr=1_60_4__global-header
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/points/shop/?snr=1_60_4__global-responsive-menu
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/privacy_agreement/?snr=1_44_44_
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/privacy_agreement/?snr=1_60_4__global-responsive-menu
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/stats/?snr=1_60_4__global-header
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/stats/?snr=1_60_4__global-responsive-menu
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/steam_refunds/?snr=1_44_44_
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/steam_refunds/?snr=1_60_4__global-responsive-menu
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/subscriber_agreement/?snr=1_44_44_
Source: chromecache_366.2.drString found in binary or memory: https://store.steampowered.com/subscriber_agreement/?snr=1_60_4__global-responsive-menu
Source: chromecache_350.2.dr, chromecache_351.2.drString found in binary or memory: https://support.google.com/
Source: chromecache_283.2.drString found in binary or memory: https://support.google.com/a/answer/13137538
Source: chromecache_283.2.drString found in binary or memory: https://support.google.com/a/users/answer/11219858
Source: chromecache_428.2.drString found in binary or memory: https://support.google.com/chrome/a/answer/15469659?hl=
Source: chromecache_350.2.drString found in binary or memory: https://support.google.com/inapp/
Source: chromecache_350.2.drString found in binary or memory: https://support.google.com/inapp/%
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://td.doubleclick.net
Source: chromecache_350.2.drString found in binary or memory: https://test-scone-pa-googleapis.sandbox.google.com
Source: chromecache_249.2.dr, chromecache_280.2.drString found in binary or memory: https://tpc.googlesyndication.com
Source: chromecache_249.2.dr, chromecache_280.2.drString found in binary or memory: https://tpc.googlesyndication.com/sodar/
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://tpc.googlesyndication.com/sodar/$
Source: chromecache_207.2.drString found in binary or memory: https://twitter.com/SlackHQ
Source: chromecache_347.2.drString found in binary or memory: https://w3-reporting.reddit.com/reports
Source: chromecache_270.2.dr, chromecache_232.2.dr, chromecache_433.2.dr, chromecache_195.2.dr, chromecache_404.2.drString found in binary or memory: https://workspace.google.com/:session_prefix:marketplace/appfinder?usegapi=1
Source: chromecache_283.2.drString found in binary or memory: https://www.blogger.com/dyn-css/authorization.css?targetBlogID=5245696872621940063&amp;zx=12a811db-c
Source: chromecache_283.2.drString found in binary or memory: https://www.blogger.com/feeds/5245696872621940063/posts/default
Source: chromecache_283.2.drString found in binary or memory: https://www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
Source: chromecache_350.2.drString found in binary or memory: https://www.google.cn/tools/feedback/
Source: chromecache_350.2.drString found in binary or memory: https://www.google.cn/tools/feedback/%
Source: chromecache_249.2.dr, chromecache_280.2.dr, chromecache_351.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://www.google.com
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://www.google.com/adsense/search/async-ads.js
Source: chromecache_412.2.dr, chromecache_249.2.dr, chromecache_280.2.dr, chromecache_385.2.dr, chromecache_225.2.drString found in binary or memory: https://www.google.com/recaptcha/api2/aframe
Source: chromecache_347.2.drString found in binary or memory: https://www.google.com/recaptcha/enterprise.js?onload=grecaptchaOnLoad&amp;render=explicit
Source: chromecache_347.2.drString found in binary or memory: https://www.google.com/recaptcha/enterprise.js?render=6LfRNvoUAAAAAKgEWIXbpPkMWcboc1n1gAeXq7lP
Source: chromecache_347.2.drString found in binary or memory: https://www.google.com/recaptcha/enterprise.js?render=6LfirrMoAAAAAHZOipvza4kpp_VtTwLNuXVwURNQ
Source: chromecache_303.2.dr, chromecache_372.2.drString found in binary or memory: https://www.google.com/recaptcha/enterprise/
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://www.google.com/s2/favicons?sz=64&domain_url=
Source: chromecache_350.2.dr, chromecache_351.2.drString found in binary or memory: https://www.google.com/tools/feedback
Source: chromecache_350.2.drString found in binary or memory: https://www.google.com/tools/feedback/
Source: chromecache_350.2.drString found in binary or memory: https://www.google.com/tools/feedback/%
Source: chromecache_350.2.drString found in binary or memory: https://www.google.com/tools/feedback/help_panel_binary.js
Source: chromecache_248.2.dr, chromecache_300.2.dr, chromecache_191.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://www.googleadservices.com
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://www.googleadservices.com/.well-known/private-aggregation/report-shared-storage
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://www.googleadservices.com/pagead/managed/js/activeview/
Source: chromecache_288.2.drString found in binary or memory: https://www.googleapis.com/auth/plus.login
Source: chromecache_270.2.dr, chromecache_433.2.dr, chromecache_404.2.drString found in binary or memory: https://www.googleapis.com/auth/plus.me
Source: chromecache_270.2.dr, chromecache_433.2.dr, chromecache_404.2.drString found in binary or memory: https://www.googleapis.com/auth/plus.people.recommended
Source: chromecache_288.2.drString found in binary or memory: https://www.googleapis.com/auth/userinfo.email
Source: chromecache_288.2.drString found in binary or memory: https://www.googleapis.com/auth/userinfo.profile
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://www.googletagmanager.com
Source: chromecache_384.2.drString found in binary or memory: https://www.googletagmanager.com/gtag/js?id=AW-10805689966
Source: chromecache_283.2.drString found in binary or memory: https://www.googletagmanager.com/gtag/js?id=G-DY1T9T89QG
Source: chromecache_300.2.dr, chromecache_191.2.drString found in binary or memory: https://www.googletagservices.com/agrp/
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://www.gstatic.com
Source: chromecache_213.2.drString found in binary or memory: https://www.gstatic.com/gb/html/afbp.html
Source: chromecache_213.2.drString found in binary or memory: https://www.gstatic.com/images/icons/material/anim/mspin/mspin_googcolor_medium.css
Source: chromecache_213.2.drString found in binary or memory: https://www.gstatic.com/images/icons/material/anim/mspin/mspin_googcolor_small.css
Source: chromecache_213.2.drString found in binary or memory: https://www.gstatic.com/images/icons/material/system/1x/broken_image_grey600_18dp.png
Source: chromecache_283.2.drString found in binary or memory: https://www.gstatic.com/images/icons/material/system/1x/search_grey600_24dp.png
Source: chromecache_213.2.drString found in binary or memory: https://www.gstatic.com/images/icons/material/system/2x/broken_image_grey600_18dp.png
Source: chromecache_283.2.drString found in binary or memory: https://www.gstatic.com/images/icons/material/system/2x/post_facebook_black_24dp.png
Source: chromecache_283.2.drString found in binary or memory: https://www.gstatic.com/images/icons/material/system/2x/post_twitter_black_24dp.png
Source: chromecache_412.2.dr, chromecache_225.2.drString found in binary or memory: https://www.gstatic.com/prose/protected/$
Source: chromecache_303.2.dr, chromecache_372.2.dr, chromecache_281.2.dr, chromecache_227.2.drString found in binary or memory: https://www.gstatic.com/recaptcha/releases/zIriijn3uj5Vpknvt_LnfNbF/recaptcha__en.js
Source: chromecache_350.2.dr, chromecache_351.2.drString found in binary or memory: https://www.gstatic.com/uservoice/feedback/client/web/
Source: chromecache_350.2.drString found in binary or memory: https://www.gstatic.com/uservoice/surveys/resources/
Source: chromecache_311.2.drString found in binary or memory: https://www.meetup.com/help/
Source: chromecache_311.2.drString found in binary or memory: https://www.meetup.com/privacy/
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_347.2.drString found in binary or memory: https://www.reddit.com
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/assets/account/standalone-auth-bg.svg
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/assets/favicon/120x120.png
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/assets/favicon/128x128.png
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/assets/favicon/152x152.png
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/assets/favicon/180x180.png
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/assets/favicon/192x192.png
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/assets/favicon/64x64.png
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/assets/favicon/76x76.png
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/assets/favicon/manifest.json
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/alert-controller-client-js-09e8dda9.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/answers-register-step-client-js-505d56f6.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/auth-overlay-client-js-4391eff2.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/login-step-client-js-f62cd5bb.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/onboarding-flow-client-js-1f727f41.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/phone-auth-client-js-5c311a5b.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/recovery-step-client-js-4af36736.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/register-step-client-js-fd1826ab.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/shell-74ec768d.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/sso-linking-step-client-js-07a250a0.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/en-US/standalone-auth-client-js-79db2216.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/polyfills/core-js.1c7aca84f142889ea448de106c19e2ec.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/polyfills/custom-elements-es5-adapter.3342b468203af1a14ca005e8
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/polyfills/fetch.a1ad5fb96dc0cb61b9454244c9bd7fe6.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/polyfills/intersection-observer.e09cbb4189f6808e65aaf9f27b007c
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/polyfills/lit-polyfill-support.2e7548e448acb656e34764769ec320e
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/polyfills/regenerator-runtime.8710f32f34292d0b9a2da4993cb85d94
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/polyfills/webcomponents.ed846db3e7c3b1354dcb129b8858e4d4.js
Source: chromecache_347.2.drString found in binary or memory: https://www.redditstatic.com/shreddit/sentry-94f7e90f.js
Source: chromecache_366.2.drString found in binary or memory: https://www.valvesoftware.com/en/contact?contact-person=Translation%20Team%20Feedback
Source: chromecache_207.2.drString found in binary or memory: https://www.youtube.com/channel/UCY3YECgeBcLCzIrFLP4gblw
Source: chromecache_248.2.dr, chromecache_238.2.dr, chromecache_377.2.drString found in binary or memory: https://www.youtube.com/iframe_api
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49744
Source: unknownNetwork traffic detected: HTTP traffic on port 49817 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49743
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49985
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49740
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49981
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49980
Source: unknownNetwork traffic detected: HTTP traffic on port 49932 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49898 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49852 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50131 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50211 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49739
Source: unknownNetwork traffic detected: HTTP traffic on port 50177 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50257 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49737
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49979
Source: unknownNetwork traffic detected: HTTP traffic on port 49772 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50085 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50360 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50501
Source: unknownNetwork traffic detected: HTTP traffic on port 50165 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49749 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50004 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49969
Source: unknownNetwork traffic detected: HTTP traffic on port 49886 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49968
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49967
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49963
Source: unknownNetwork traffic detected: HTTP traffic on port 50359 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49962
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49961
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49960
Source: unknownNetwork traffic detected: HTTP traffic on port 50189 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49760 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50108 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50073 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50028 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50303 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50269 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49959
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49958
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49955
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49954
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49953
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49952
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49951
Source: unknownNetwork traffic detected: HTTP traffic on port 49839 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49864 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49950
Source: unknownNetwork traffic detected: HTTP traffic on port 50280 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49944 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49910 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50337 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50051 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49796 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50235 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49948
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49946
Source: unknownNetwork traffic detected: HTTP traffic on port 50382 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49945
Source: unknownNetwork traffic detected: HTTP traffic on port 49737 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49944
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49788
Source: unknownNetwork traffic detected: HTTP traffic on port 50061 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49785
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49783
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49782
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49781
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49780
Source: unknownNetwork traffic detected: HTTP traffic on port 49968 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50187 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50026 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49807 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50270 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49759 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49779
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49778
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49777
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49776
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49775
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49774
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49773
Source: unknownNetwork traffic detected: HTTP traffic on port 49862 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49772
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49771
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49770
Source: unknownNetwork traffic detected: HTTP traffic on port 50282 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50247 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49830 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50155 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50430 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49991 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49768
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49767
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49766
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49765
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49764
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49763
Source: unknownNetwork traffic detected: HTTP traffic on port 50038 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49762
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49761
Source: unknownNetwork traffic detected: HTTP traffic on port 50143 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49760
Source: unknownNetwork traffic detected: HTTP traffic on port 50208 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49770 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50429 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50259 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49759
Source: unknownNetwork traffic detected: HTTP traffic on port 50083 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49758
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49757
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49756
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49755
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49997
Source: unknownNetwork traffic detected: HTTP traffic on port 50121 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49754
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49996
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49753
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49995
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49752
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49751
Source: unknownNetwork traffic detected: HTTP traffic on port 50016 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49991
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49990
Source: unknownNetwork traffic detected: HTTP traffic on port 49874 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49747 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49829 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49934 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50199 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49749
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49748
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49747
Source: unknownNetwork traffic detected: HTTP traffic on port 50277 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50337
Source: unknownNetwork traffic detected: HTTP traffic on port 50036 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50339
Source: unknownNetwork traffic detected: HTTP traffic on port 49672 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50151 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50392 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50116 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50330
Source: unknownNetwork traffic detected: HTTP traffic on port 50225 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50466 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49803 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50071 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50106
Source: unknownNetwork traffic detected: HTTP traffic on port 49900 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50105
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50108
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50349
Source: unknownNetwork traffic detected: HTTP traffic on port 49837 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50109
Source: unknownNetwork traffic detected: HTTP traffic on port 49929 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50340
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50100
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50341
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50102
Source: unknownNetwork traffic detected: HTTP traffic on port 50339 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50101
Source: unknownNetwork traffic detected: HTTP traffic on port 50243 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50104
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50103
Source: unknownNetwork traffic detected: HTTP traffic on port 49798 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50197 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50117
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50359
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50116
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50119
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50118
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50111
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50353
Source: unknownNetwork traffic detected: HTTP traffic on port 49930 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50110
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50113
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50112
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50115
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50357
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50114
Source: unknownNetwork traffic detected: HTTP traffic on port 49850 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50360
Source: unknownNetwork traffic detected: HTTP traffic on port 50175 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50213 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49757 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49798
Source: unknownNetwork traffic detected: HTTP traffic on port 50012 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50127
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49797
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49796
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50129
Source: unknownNetwork traffic detected: HTTP traffic on port 50255 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49952 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49794
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49793
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49792
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50120
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50362
Source: unknownNetwork traffic detected: HTTP traffic on port 50093 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49790
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50364
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50121
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50363
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50124
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50366
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50365
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50126
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50125
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50367
Source: unknownNetwork traffic detected: HTTP traffic on port 50048 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49825 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50340 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49779 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50315 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50106 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50267 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49942 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50081 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50362 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50303
Source: unknownNetwork traffic detected: HTTP traffic on port 50173 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49919 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49954 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50014 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50309
Source: unknownNetwork traffic detected: HTTP traffic on port 49788 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50201 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49767 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49827 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49882 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50141 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50233 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50315
Source: unknownNetwork traffic detected: HTTP traffic on port 50384 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50316
Source: unknownNetwork traffic detected: HTTP traffic on port 50118 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49815 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50279 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50394 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50223 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50163 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49860 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50349 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49755 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50329
Source: unknownNetwork traffic detected: HTTP traffic on port 50245 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50058 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50322
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50323
Source: unknownNetwork traffic detected: HTTP traffic on port 50002 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50185 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49920 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49926 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50054
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50053
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50056
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50055
Source: unknownNetwork traffic detected: HTTP traffic on port 49766 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50058
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50057
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50059
Source: unknownNetwork traffic detected: HTTP traffic on port 49961 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50061
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50060
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50063
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50062
Source: unknownNetwork traffic detected: HTTP traffic on port 50102 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50045 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50274 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50065
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50064
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50069
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50068
Source: unknownNetwork traffic detected: HTTP traffic on port 50205 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50240 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50183 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50070
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50072
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50071
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50074
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50073
Source: unknownNetwork traffic detected: HTTP traffic on port 49823 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50080 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49790 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49869 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50227 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50252 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50195 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50076
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50075
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50078
Source: unknownNetwork traffic detected: HTTP traffic on port 50057 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50114 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50077
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50079
Source: unknownNetwork traffic detected: HTTP traffic on port 50390 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50081
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50080
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50083
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50082
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50085
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50084
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50087
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50086
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50089
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50088
Source: unknownNetwork traffic detected: HTTP traffic on port 50079 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50090
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50092
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50091
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50094
Source: unknownNetwork traffic detected: HTTP traffic on port 50136 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50093
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50096
Source: unknownNetwork traffic detected: HTTP traffic on port 49938 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50023 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49811 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49754 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50365 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50018
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50017
Source: unknownNetwork traffic detected: HTTP traffic on port 50193 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50259
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50019
Source: unknownNetwork traffic detected: HTTP traffic on port 49813 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49951 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50424 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50010
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50252
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50251
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50012
Source: unknownNetwork traffic detected: HTTP traffic on port 49916 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50254
Source: unknownNetwork traffic detected: HTTP traffic on port 50055 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50011
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50253
Source: unknownNetwork traffic detected: HTTP traffic on port 50090 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50014
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50256
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50013
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50255
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50016
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50258
Source: unknownNetwork traffic detected: HTTP traffic on port 50353 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50015
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50257
Source: unknownNetwork traffic detected: HTTP traffic on port 50161 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50261
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50260
Source: unknownNetwork traffic detected: HTTP traffic on port 49776 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49845 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50215 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50029
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50028
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50021
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50263
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50020
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50262
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50023
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50265
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50022
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50264
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50025
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50267
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50266
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50027
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50269
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50026
Source: unknownNetwork traffic detected: HTTP traffic on port 49879 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49780 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50268
Source: unknownNetwork traffic detected: HTTP traffic on port 49985 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50264 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50270
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50030
Source: unknownNetwork traffic detected: HTTP traffic on port 50021 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50272
Source: unknownNetwork traffic detected: HTTP traffic on port 50138 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50271
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50039
Source: unknownNetwork traffic detected: HTTP traffic on port 49995 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50011 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49928 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50032
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50274
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50031
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50273
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50034
Source: unknownNetwork traffic detected: HTTP traffic on port 49857 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50276
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50033
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50275
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50036
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50278
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50035
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50277
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50038
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50037
Source: unknownNetwork traffic detected: HTTP traffic on port 49764 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50279
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50281
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50280
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50041
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50283
Source: unknownNetwork traffic detected: HTTP traffic on port 50412 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50040
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50282
Source: unknownNetwork traffic detected: HTTP traffic on port 50104 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50341 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50089 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50203 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50276 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50033 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50171 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50043
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50285
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50042
Source: unknownNetwork traffic detected: HTTP traffic on port 49835 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50284
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50045
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50044
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50047
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50049
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50048
Source: unknownNetwork traffic detected: HTTP traffic on port 49880 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50050
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50051
Source: unknownNetwork traffic detected: HTTP traffic on port 50126 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49792 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50168 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50260 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50357 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49912 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49958 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50219 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49946 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50018 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50077 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50134 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49855 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50053 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49981 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49752 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50237 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50099 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49831 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50031 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50156 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50043 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50473 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50272 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50100 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49774 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49782 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50249 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49740 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50207 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50323 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49808 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50006 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50181 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50065 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49867 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49865 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49942
Source: unknownNetwork traffic detected: HTTP traffic on port 50229 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 50099
Source: unknownNetwork traffic detected: HTTP traffic on port 50112 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49762 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50075 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50158 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49833 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49938
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49936
Source: unknownNetwork traffic detected: HTTP traffic on port 49902 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49934
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49933
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49932
Source: unknownNetwork traffic detected: HTTP traffic on port 50087 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49930
Source: unknownNetwork traffic detected: HTTP traffic on port 50008 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49794 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49936 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49929
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49928
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49927
Source: unknownNetwork traffic detected: HTTP traffic on port 50367 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49926
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49925
Source: unknownNetwork traffic detected: HTTP traffic on port 50250 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49739 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49920
Source: unknownNetwork traffic detected: HTTP traffic on port 50063 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50124 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50191 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49821 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50262 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 50217 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49914 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49919
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49918
Source: classification engineClassification label: mal48.win@31/413@228/69
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2056 --field-trial-handle=2004,i,9348203157779861519,15638006010270494539,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://nuance-pdf-professional2.software.informer.com/7.2/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5628 --field-trial-handle=2004,i,9348203157779861519,15638006010270494539,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4456 --field-trial-handle=2004,i,9348203157779861519,15638006010270494539,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2056 --field-trial-handle=2004,i,9348203157779861519,15638006010270494539,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5628 --field-trial-handle=2004,i,9348203157779861519,15638006010270494539,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4456 --field-trial-handle=2004,i,9348203157779861519,15638006010270494539,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: Window RecorderWindow detected: More than 3 window changes detected
ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid AccountsWindows Management Instrumentation2
Browser Extensions
1
Process Injection
1
Process Injection
OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local System1
Encrypted Channel
Exfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization ScriptsRootkitLSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable Media4
Non-Application Layer Protocol
Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive5
Application Layer Protocol
Automated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin HookBinary PaddingNTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput Capture3
Ingress Tool Transfer
Traffic DuplicationData Destruction
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet

This section contains all screenshots as thumbnails, including those not shown in the slideshow.