Edit tour

Windows Analysis Report
https://sheingivesback.com

Overview

General Information

Sample URL:	https://sheingivesback.com
Analysis ID:	1639107
Tags:	tweetfeed
Infos:

Detection

Score:	60
Range:	0 - 100
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

AI detected suspicious Javascript

Creates files inside the system directory

Deletes files inside the Windows folder

HTML body with high number of embedded SVGs detected

HTML page contains hidden javascript code

Classification

Process Tree

System is w10x64

chrome.exe (PID: 2732 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 5480 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2056,i,11606197318203324033,6967171693360018938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2116 /prefetch:3 MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 6900 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-pre-read-main-dll --field-trial-handle=2056,i,11606197318203324033,6967171693360018938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5876 /prefetch:8 MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 6908 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2056,i,11606197318203324033,6967171693360018938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5668 /prefetch:8 MD5: E81F54E6C1129887AEA47E7D092680BF)

chrome.exe (PID: 6432 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://sheingivesback.com" MD5: E81F54E6C1129887AEA47E7D092680BF)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://sheingivesback.com

Avira URL Cloud: detection malicious, Label: malware

Antivirus detection for URL or domain

Source: https://ww1.sheingivesback.com/munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D	Avira URL Cloud: Label: malware
Source: https://ww1.sheingivesback.com/munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D	Avira URL Cloud: Label: malware
Source: http://ww1.sheingivesback.com	Avira URL Cloud: Label: malware
Source: https://ww1.sheingivesback.com/munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D	Avira URL Cloud: Label: malware
Source: https://ww1.sheingivesback.com/munin/a/ls?t=67d4cf71&token=03431f44e37b70c9175e1b959296721b694ea8fa	Avira URL Cloud: Label: malware
Source: https://ww1.sheingivesback.com/munin/a/ls?t=67d4cf83&token=19fe8fb83187a140d59b022cd60290330bfcf0ba	Avira URL Cloud: Label: malware
Source: https://ww1.sheingivesback.com/munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D	Avira URL Cloud: Label: malware

Phishing

AI detected suspicious Javascript

Source: 1.13..script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: https://obseu.seaskydvd.com/ct?id=80705&url=https%... The provided JavaScript snippet exhibits several high-risk behaviors, including dynamic code execution, data exfiltration, and the use of obfuscated code/URLs. These indicators strongly suggest malicious intent, likely for the purpose of executing remote code or stealing sensitive user data. The script's complex structure and use of various techniques to conceal its true purpose further increase the risk assessment.
Source: 2.27..script.csv	Joe Sandbox AI: Detected suspicious JavaScript with source url: https://obseu.seaskydvd.com/ct?id=80706&url=https%... This script exhibits several high-risk behaviors, including dynamic code execution, data exfiltration, and the use of obfuscated code/URLs. The script appears to be executing a complex function with a large amount of encoded data, which is a strong indicator of malicious intent. Additionally, the script is interacting with multiple domains, some of which may be of dubious reputation, further increasing the risk. Overall, this script demonstrates a high level of suspicion and should be treated as a potential security threat.

Source: https://dentalimplants-aesthetic-center.com/full-arch?utm_source=adwords&utm_campaign=TIE+-+Pmax+-+HQ+Leads+-+122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE

HTTP Parser: Total embedded SVG size: 179276

Source: https://ww1.sheingivesback.com/

HTTP Parser: Base64 decoded: <svg fill='#D7D7D7' style="float: right" xmlns="http://www.w3.org/2000/svg" height="24" viewBox="0 0 24 24" width="24"><path d="M0 0h24v24H0z" fill="none"/><path d="M5.88 4.12L13.76 12l-7.88 7.88L8 22l10-10L8 2z"/></svg>

Source: https://dentalimplants-aesthetic-center.com/full-arch?utm_source=adwords&utm_campaign=TIE+-+Pmax+-+HQ+Leads+-+122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE	HTTP Parser: Iframe src: https://www.googletagmanager.com/ns.html?id=GTM-56FQ9VN9
Source: https://dentalimplants-aesthetic-center.com/full-arch?utm_source=adwords&utm_campaign=TIE+-+Pmax+-+HQ+Leads+-+122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/16644413673?random=1742000024081&cv=11&fst=1742000024081&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45je53d0v9191281019z89191640297za200zb9191640297&gcd=13l3l3l3l1l1&dma=0&tag_exp=102482433~102587591~102717422~102788824~102803279~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fdentalimplants-aesthetic-center.com%2Ffull-arch%3Futm_source%3Dadwords%26utm_campaign%3DTIE%2B-%2BPmax%2B-%2BHQ%2BLeads%2B-%2B122324%26gad_source%3D5%26gclid%3DEAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE&ref=https%3A%2F%2Fsyndicatedsearch.goog%2F&hn=www.googleadservices.com&frm=0&tiba=Dental%20Implant%20Aesthetic%20Center&npa=0&pscdl=noapi&auid=1976769472.1742000022&uaa=x86&uab=64&uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
Source: https://dentalimplants-aesthetic-center.com/full-arch?utm_source=adwords&utm_campaign=TIE+-+Pmax+-+HQ+Leads+-+122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE	HTTP Parser: Iframe src: https://td.doubleclick.net/td/rul/16644413673?random=1742000048966&cv=11&fst=1742000048966&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45je53d0v9191281019za200zb9191640297&gcd=13l3l3l3l1l1&dma=0&tag_exp=102482433~102587591~102717422~102788824~102803279~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fdentalimplants-aesthetic-center.com%2Ffull-arch%3Futm_source%3Dadwords%26utm_campaign%3DTIE%2B-%2BPmax%2B-%2BHQ%2BLeads%2B-%2B122324%26gad_source%3D5%26gclid%3DEAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE&ref=https%3A%2F%2Fsyndicatedsearch.goog%2F&hn=www.googleadservices.com&frm=0&tiba=Dental%20Implant%20Aesthetic%20Center&npa=0&pscdl=noapi&auid=1976769472.1742000022&uaa=x86&uab=64&uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dform_start

Source: https://sheingivesback.com/	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10	HTTP Parser: No favicon
Source: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10	HTTP Parser: No favicon
Source: https://dentalimplants-aesthetic-center.com/full-arch?utm_source=adwords&utm_campaign=TIE+-+Pmax+-+HQ+Leads+-+122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE	HTTP Parser: No favicon
Source: https://dentalimplants-aesthetic-center.com/full-arch?utm_source=adwords&utm_campaign=TIE+-+Pmax+-+HQ+Leads+-+122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE	HTTP Parser: No favicon

Source: https://dentalimplants-aesthetic-center.com/full-arch?utm_source=adwords&utm_campaign=TIE+-+Pmax+-+HQ+Leads+-+122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE

HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 142.250.185.68:443 -> 192.168.2.7:49686 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 64.225.91.73:443 -> 192.168.2.7:49687 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 64.225.91.73:443 -> 192.168.2.7:49688 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.26.45:443 -> 192.168.2.7:49690 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 64.225.91.73:443 -> 192.168.2.7:49691 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.27.45:443 -> 192.168.2.7:49692 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.148.254:443 -> 192.168.2.7:49695 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.138.26.49:443 -> 192.168.2.7:49697 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 76.223.26.96:443 -> 192.168.2.7:49700 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.68:443 -> 192.168.2.7:49701 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.66.121.138:443 -> 192.168.2.7:49698 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.75.69.192:443 -> 192.168.2.7:49703 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.66.121.69:443 -> 192.168.2.7:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.206:443 -> 192.168.2.7:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.75.69.192:443 -> 192.168.2.7:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.74.193:443 -> 192.168.2.7:49721 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.74.193:443 -> 192.168.2.7:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.148.254:443 -> 192.168.2.7:49738 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.186.132:443 -> 192.168.2.7:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.68:443 -> 192.168.2.7:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 162.159.140.166:443 -> 192.168.2.7:49777 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49783 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49789 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49791 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.79.73:443 -> 192.168.2.7:49797 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.68.95:443 -> 192.168.2.7:49796 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49795 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.153.218:443 -> 192.168.2.7:49802 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.68.95:443 -> 192.168.2.7:49804 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.68.95:443 -> 192.168.2.7:49808 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.69.95:443 -> 192.168.2.7:49807 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.22.83:443 -> 192.168.2.7:49806 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.22.83:443 -> 192.168.2.7:49832 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.71.102:443 -> 192.168.2.7:49836 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.22.83:443 -> 192.168.2.7:49837 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.153.218:443 -> 192.168.2.7:49841 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.153.218:443 -> 192.168.2.7:49845 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.239.233:443 -> 192.168.2.7:49863 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.68.95:443 -> 192.168.2.7:49865 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.186.132:443 -> 192.168.2.7:49853 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.251.9:443 -> 192.168.2.7:49862 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49867 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.22.83:443 -> 192.168.2.7:49869 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.147:443 -> 192.168.2.7:49868 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49882 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49881 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49879 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49880 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49883 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49884 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.252.35:443 -> 192.168.2.7:49886 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.252.35:443 -> 192.168.2.7:49887 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.243:443 -> 192.168.2.7:49889 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49893 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49894 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49895 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49896 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49898 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.0.35:443 -> 192.168.2.7:49900 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.0.35:443 -> 192.168.2.7:49901 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.196:443 -> 192.168.2.7:49937 version: TLS 1.2

Source: unknown	TCP traffic detected without corresponding DNS query: 23.199.215.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.18.98.62
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 23.199.215.203
Source: unknown	TCP traffic detected without corresponding DNS query: 2.18.98.62
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 2.23.227.208
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.15
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.15
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.15
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.15
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.15
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.15
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.15
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: sheingivesback.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: sheingivesback.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?orighost=https://sheingivesback.com/ HTTP/1.1Host: domaincntrol.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://sheingivesback.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: sheingivesback.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyA2KlwBX3mkFo30om9LUFYQhpqLoa_BNhE HTTP/1.1Host: www.google.comConnection: keep-aliveX-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQEI9s/OAQiB1s4BCMDYzgEIydzOAQiE4M4BCKLkzgEIr+TOAQjp5M4BSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /?orighost=https://sheingivesback.com/ HTTP/1.1Host: domaincntrol.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-alivesec-ch-ua-platform: "Windows"viewport-width: 1280ect: 4gdevice-memory: 8sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0dpr: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36rtt: 200downlink: 0.35Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sxp/i/224f85302aa2b6ec30aac9a85da2cbf9.js HTTP/1.1Host: euob.seaskydvd.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /munin/a/ls?t=67d4cf71&token=03431f44e37b70c9175e1b959296721b694ea8fa HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-alivesec-ch-ua-platform: "Windows"viewport-width: 1280ect: 4gdevice-memory: 8sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0dpr: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36rtt: 200downlink: 0.35Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/domains/caf.js?abp=1&adsdeli=true HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1Host: d38psrni17bvxu.cloudfront.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ct?id=80705&url=https%3A%2F%2Fww1.sheingivesback.com%2F&sf=0&tpi=&ch=AdsDeli%20-%20domain%20-%20landingpage&uvid=03431f44e37b70c9175e1b959296721b694ea8fa&tsf=0&tsfmi=&tsfu=&cb=1741999986207&hl=2&op=0&ag=1204617104&rand=23199107012511168110691885555112201660900812821595265000710510081296956982640931550662&fs=1280x897&fst=1280x897&np=win32&nv=google%20inc.&ref=&ss=1280x1024&nc=0&at=&di=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
Source: global traffic	HTTP traffic detected: GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1Host: d38psrni17bvxu.cloudfront.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tracker/tc_imp.gif?e=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&cri=lhgvNlQLlb&ts=1135&cb=1741999987342 HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /tracker/tc_imp.gif?e=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&cri=lhgvNlQLlb&ts=1135&cb=1741999987342 HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-alivesec-ch-ua-platform: "Windows"viewport-width: 1280ect: 4gdevice-memory: 8sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0dpr: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36rtt: 200downlink: 2.3Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-alivesec-ch-ua-platform: "Windows"viewport-width: 1280ect: 4gdevice-memory: 8sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0dpr: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36rtt: 200downlink: 2.3Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=8sz6w9qxm67e&cd_fexp=72717108&aqid=c8_UZ--nOOXajuwP4vDrkQg&psid=5837883959&pbt=bs&adbx=375&adby=133&adbh=498&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=7%7C0%7C1084%7C1303%7C678&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=i6uefwxx5zl0&cd_fexp=72717108&aqid=c8_UZ--nOOXajuwP4vDrkQg&psid=5837883959&pbt=bv&adbx=375&adby=133&adbh=498&adbw=530&adbah=160%2C160%2C160&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=7%7C0%7C1084%7C1303%7C678&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10 HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-alivedevice-memory: 8dpr: 1viewport-width: 1280rtt: 250downlink: 2.75ect: 4gsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-alivesec-ch-ua-platform: "Windows"viewport-width: 1280ect: 4gdevice-memory: 8sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0dpr: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36rtt: 200downlink: 2.3Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /munin/a/ls?t=67d4cf83&token=19fe8fb83187a140d59b022cd60290330bfcf0ba HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-alivesec-ch-ua-platform: "Windows"viewport-width: 1280ect: 4gdevice-memory: 8sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0dpr: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36rtt: 200downlink: 2.3Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /sxp/i/55e67f29c9eb36517f5d1b5907116250.js HTTP/1.1Host: euob.seaskydvd.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-alivesec-ch-ua-platform: "Windows"viewport-width: 1280ect: 4gdevice-memory: 8sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0dpr: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36rtt: 200downlink: 2.3Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /ct?id=80706&url=https%3A%2F%2Fww1.sheingivesback.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8%26query%3DShine%2BDental%26afdToken%3DChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE%26pcsa%3Dfalse%26nb%3D0%26nm%3D4%26nx%3D255%26ny%3D68%26is%3D530x498%26clkt%3D10&sf=0&tpi=&ch=AdsDeli%20-%20domain%20-%20adspage&uvid=19fe8fb83187a140d59b022cd60290330bfcf0ba&tsf=0&tsfmi=&tsfu=&cb=1742000004603&hl=3&op=0&ag=1204617104&rand=54618772166807522092786601627026126251106009971869910166552087800205720780045025762581&fs=1280x897&fst=1280x897&np=win32&nv=google%20inc.&ref=https%3A%2F%2Fsyndicatedsearch.goog%2F&ss=1280x1024&nc=0&at=&di=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
Source: global traffic	HTTP traffic detected: GET /munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D HTTP/1.1Host: ww1.sheingivesback.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: _cq_duid=1.1741999986.OWRehxfNHIThdiCa; _cq_suid=1.1741999986.S5fHSjMzbrCgG2Cz; __gsas=ID=48b9ad3808e8952e:T=1741999987:RT=1741999987:S=ALNI_MaTlh-Lsw472ucvLQSuwAr2iAeD-Q
Source: global traffic	HTTP traffic detected: GET /images/afs/snowman.png HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tracker/tc_imp.gif?e=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&cri=g39pG7bwFj&ts=1089&cb=1742000005692 HTTP/1.1Host: obseu.seaskyd
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=6bzsn1sdrt1c&cd_fexp=72717108&aqid=hM_UZ_34MdakjuwP0a23iA8&psid=5837883959&pbt=bs&adbx=367.5&adby=133&adbh=986&adbw=530&adbah=332%2C284%2C344&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=18%7C0%7C1289%7C9%7C658&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /svg/larger-globe.svg?c=%2380868B HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /svg/right_chevron_icon.svg?c=%23ffffff HTTP/1.1Host: afs.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/afs/snowman.png HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /afs/gen_204?client=dp-teaminternet09_3ph&output=uds_ads_only&zx=hkwxu6ubrssg&cd_fexp=72717108&aqid=hM_UZ_34MdakjuwP0a23iA8&psid=5837883959&pbt=bv&adbx=367.5&adby=133&adbh=986&adbw=530&adbah=332%2C284%2C344&adbn=master-1&eawp=partner-dp-teaminternet09_3ph&errv=735462593&csala=18%7C0%7C1289%7C9%7C658&lle=0&ifv=1&hpt=1 HTTP/1.1Host: syndicatedsearch.googConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tracker/tc_imp.gif?e=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&cri=g39pG7bwFj&ts=1089&cb=1742000005692 HTTP/1.1Host: obseu.seaskyd
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /full-arch?utm_source=adwords&utm_campaign=TIE%20-%20Pmax%20-%20HQ%20Leads%20-%20122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE HTTP/1.1Host: dentalimplants-aesthetic-center.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Browser-Channel: stableX-Browser-Year: 2025X-Browser-Validation: wTKGXmLo+sPWz1JKKbFzUyHly1Q=X-Browser-Copyright: Copyright 2025 Google LLC. All rights reserved.Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://syndicatedsearch.goog/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /intl-tel-input/17.0.12/css/intlTelInput.min.css HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/entry.4f9516d1.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /libphonenumber/1.10.60/libphonenumber-js.min.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /intl-tel-input/17.0.12/js/utils.min.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/nJ2GBhddc4dFkRr7MLro/media/64215f768068331d1be2e9a2.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /funnel/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /intl-tel-input/intlTelInput.min.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f8cd77ac849a6995f5d24.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f889d71bcd55d5040a8e9.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /platform/platform.js HTTP/1.1Host: static.elfsight.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/679929285d06f48514c255ce.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/67992928fcaefabd1198ccb8.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/67992928fcaefa51c698ccb6.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/payment-warning.dd3003de.svg HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Purpose: prefetchSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/index.66e00f1d.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/entry.4f9516d1.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/679929285d06f453fec255cd.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/nJ2GBhddc4dFkRr7MLro/media/64215f768068331d1be2e9a2.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f8ba2b2284338344c9b74.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f8bbb69347e08087ed601.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/66a039c5b22843a0f34dbfd7.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/constants.91d064ff.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/HLImage.vue.6ee36179.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/useRedirectAction.38206ea7.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/client-only.b7bb1942.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/components.f7f419c6.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/HLConst.b017eec0.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f8cd77ac849a6995f5d24.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/67992928fcaefa51c698ccb6.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/679929285d06f48514c255ce.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/67992928fcaefabd1198ccb8.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f889d71bcd55d5040a8e9.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/679929285d06f453fec255cd.png HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/HtmlPreview.vue.18dc50d5.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/index.decbbc93.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/FunnelServices.07826a45.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/am_helper.3e8b5c2f.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/currency_helper.ed08bd45.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f8ba2b2284338344c9b74.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f8bbb69347e08087ed601.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/66a039c5b22843a0f34dbfd7.webp HTTP/1.1Host: images.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /p/boot/?page=https%3A%2F%2Fdentalimplants-aesthetic-center.com%2Ffull-arch%3Futm_source%3Dadwords%26utm_campaign%3DTIE%2520-%2520Pmax%2520-%2520HQ%2520Leads%2520-%2520122324%26gad_source%3D5%26gclid%3DEAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE&w=e3c994c6-d260-406c-a6cc-f159763708d2 HTTP/1.1Host: core.service.elfsight.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://dentalimplants-aesthetic-center.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/i18n.config.45aa417d.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/entry.4f9516d1.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app-releases/google-reviews/stable/v3.18.1/5dbcb322b2d7f3d1f9f36cd07a62a52eb93fd3f4/app/googleReviews.js HTTP/1.1Host: universe-static.elfsightcdn.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /p/boot/?page=https%3A%2F%2Fdentalimplants-aesthetic-center.com%2Ffull-arch%3Futm_source%3Dadwords%26utm_campaign%3DTIE%2520-%2520Pmax%2520-%2520HQ%2520Leads%2520-%2520122324%26gad_source%3D5%26gclid%3DEAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE&w=e3c994c6-d260-406c-a6cc-f159763708d2 HTTP/1.1Host: core.service.elfsight.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: elfsight_viewed_recently=1
Source: global traffic	HTTP traffic detected: GET /_preview/page.d9fd05d0.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/entry.4f9516d1.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/Button.12cbc488.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /icons/app-all-in-one-reviews-logos-google-logo-multicolor.svg HTTP/1.1Host: static.elfsight.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Origin: https://dentalimplants-aesthetic-center.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/CustomCodeRenderer.ccbb7827.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/postscribe.f561ec8a.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/HtmlPreview.vue.18dc50d5.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/sources?uris%5B%5D=ChIJ_1ijB76Ef4gR_dzffyUlF7U&summary=true&translate=en HTTP/1.1Host: service-reviews-ultimate.elfsight.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36accept: application/jsonx-widget-token: eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0eXBlIjoiUFVCTElDIiwid2lkZ2V0UGlkIjoiZTNjOTk0YzYtZDI2MC00MDZjLWE2Y2MtZjE1OTc2MzcwOGQyIiwid2lkZ2V0UmV2aXNpb25QaWQiOiJiZmM0OTMzZS1hN2EzLTRmYjktOTA5Yi04NTliOWQ3ZDkyOTkiLCJhcHAiOiJnb29nbGUtcmV2aWV3cyIsImFjY291bnRQaWQiOiI2NGUxZDg5YS01N2VkLTQzYWUtODQ5MC1mZDQ0ZmMyYzBjMzciLCJzdWIiOiJlM2M5OTRjNi1kMjYwLTQwNmMtYTZjYy1mMTU5NzYzNzA4ZDIiLCJ2ZXIiOiJiZmM0OTMzZS1hN2EzLTRmYjktOTA5Yi04NTliOWQ3ZDkyOTkiLCJpYXQiOjE3NDIwMDAwMjAsImV4cCI6MTc0MjE3MjgyMH0.WAcjICGqMdYF4ilrb11JarhF6sDtVN5LYY47GJb-QIKTZWSYKGlDd1LU2DwU-rKJNR34jF5KyKoaooDAhRLOlLSgIKhQ4CQHW6QoGq2YH4-foHZhe5BEhMivLUy2HoGb1tOVHW-W-1IbEkYfabDbkAW4heet0zgTGVkkd5BM32QifsmJU-CK04hYpE7kiMsmdVP9iAYUxkxknYjdo7KfTlWiOJrNvznvQWqdfiyTayG3aCU4jBfjt3M_-zxrz8E5tAeuPwjX8-HWjnRpou1kheGJGytRAgaadkCwDN0LwrMGxnVP4Wpod0Sdm5u89w0LkM2xgQnrF1d6b1i4W7q-cECsKzsDQBQOWefD3qX0f141Pt0LLs-ONj-0U_AeHVY2caavBa5GqnXtojVUTAqsclmRNJxawGJrJeDn7K0Yjn4PuZUYUNz00JkWaRa0wRsByO6OEq9Z9b3k2m3TqMX-HnfWao3_A2vqZpAFNVYt8A0A9LElqdWil-HRRDQ_GshBYk839EC9upbSSeTiw1Z3O4IWAfZ2Vkbddrut0oGiILG1LtQm7O-hvXQ6_lruEnmobBk3nIMb5SJBmEj0DGdW_Ug3SZ2lXwnjFtcZfVtwKKUTSuFP40-Sqi0qCN3PxQr7FO0w-9Rj_qF1eMzKPds9Ft8VvnYEMoC2pkGpp-GexLAsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://dentalimplants-aesthetic-center.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /_preview/payment-warning.00adaf28.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/Button.12cbc488.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/funnel_event_helper.8a17a5b0.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/Button.12cbc488.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/orderform_helpers.47c81b73.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/Button.12cbc488.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sdk.js?tv=4.3 HTTP/1.1Host: cdn-st.adsmurai.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/pure.9cabf600.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/Button.12cbc488.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/MoonLoader.vue.4ac0e4b1.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/Button.12cbc488.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /icons/app-all-in-one-reviews-logos-google-logo-multicolor.svg HTTP/1.1Host: static.elfsight.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/reviews?uris%5B%5D=ChIJ_1ijB76Ef4gR_dzffyUlF7U&with_text_only=1&min_rating=5&page_length=100&order=date HTTP/1.1Host: service-reviews-ultimate.elfsight.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36accept: application/jsonx-widget-token: eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0eXBlIjoiUFVCTElDIiwid2lkZ2V0UGlkIjoiZTNjOTk0YzYtZDI2MC00MDZjLWE2Y2MtZjE1OTc2MzcwOGQyIiwid2lkZ2V0UmV2aXNpb25QaWQiOiJiZmM0OTMzZS1hN2EzLTRmYjktOTA5Yi04NTliOWQ3ZDkyOTkiLCJhcHAiOiJnb29nbGUtcmV2aWV3cyIsImFjY291bnRQaWQiOiI2NGUxZDg5YS01N2VkLTQzYWUtODQ5MC1mZDQ0ZmMyYzBjMzciLCJzdWIiOiJlM2M5OTRjNi1kMjYwLTQwNmMtYTZjYy1mMTU5NzYzNzA4ZDIiLCJ2ZXIiOiJiZmM0OTMzZS1hN2EzLTRmYjktOTA5Yi04NTliOWQ3ZDkyOTkiLCJpYXQiOjE3NDIwMDAwMjAsImV4cCI6MTc0MjE3MjgyMH0.WAcjICGqMdYF4ilrb11JarhF6sDtVN5LYY47GJb-QIKTZWSYKGlDd1LU2DwU-rKJNR34jF5KyKoaooDAhRLOlLSgIKhQ4CQHW6QoGq2YH4-foHZhe5BEhMivLUy2HoGb1tOVHW-W-1IbEkYfabDbkAW4heet0zgTGVkkd5BM32QifsmJU-CK04hYpE7kiMsmdVP9iAYUxkxknYjdo7KfTlWiOJrNvznvQWqdfiyTayG3aCU4jBfjt3M_-zxrz8E5tAeuPwjX8-HWjnRpou1kheGJGytRAgaadkCwDN0LwrMGxnVP4Wpod0Sdm5u89w0LkM2xgQnrF1d6b1i4W7q-cECsKzsDQBQOWefD3qX0f141Pt0LLs-ONj-0U_AeHVY2caavBa5GqnXtojVUTAqsclmRNJxawGJrJeDn7K0Yjn4PuZUYUNz00JkWaRa0wRsByO6OEq9Z9b3k2m3TqMX-HnfWao3_A2vqZpAFNVYt8A0A9LElqdWil-HRRDQ_GshBYk839EC9upbSSeTiw1Z3O4IWAfZ2Vkbddrut0oGiILG1LtQm7O-hvXQ6_lruEnmobBk3nIMb5SJBmEj0DGdW_Ug3SZ2lXwnjFtcZfVtwKKUTSuFP40-Sqi0qCN3PxQr7FO0w-9Rj_qF1eMzKPds9Ft8VvnYEMoC2pkGpp-GexLAsec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Origin: https://dentalimplants-aesthetic-center.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /attribution_service/user_session_v3/create_session HTTP/1.1Host: backend.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/sources?uris%5B%5D=ChIJ_1ijB76Ef4gR_dzffyUlF7U&summary=true&translate=en HTTP/1.1Host: service-reviews-ultimate.elfsight.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /signals/config/786023096743692?v=2.9.187&r=stable&domain=dentalimplants-aesthetic-center.com&hme=9d6c2cc137748d003f279fac8d52b2defc993e1177ef802e0d5b230c72882031&ex_m=71%2C123%2C108%2C112%2C62%2C4%2C101%2C70%2C16%2C98%2C90%2C51%2C55%2C177%2C180%2C192%2C188%2C189%2C191%2C29%2C102%2C53%2C78%2C190%2C172%2C175%2C185%2C186%2C193%2C134%2C41%2C198%2C195%2C196%2C34%2C147%2C15%2C50%2C202%2C201%2C136%2C18%2C40%2C1%2C43%2C66%2C67%2C68%2C72%2C94%2C17%2C14%2C97%2C93%2C92%2C109%2C52%2C111%2C39%2C110%2C30%2C95%2C26%2C173%2C176%2C144%2C87%2C57%2C85%2C33%2C74%2C0%2C96%2C32%2C28%2C83%2C84%2C89%2C47%2C46%2C88%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C58%2C63%2C65%2C76%2C54%2C103%2C27%2C77%2C9%2C8%2C81%2C48%2C21%2C105%2C104%2C106%2C99%2C10%2C20%2C3%2C38%2C75%2C19%2C5%2C91%2C82%2C44%2C35%2C86%2C2%2C36%2C64%2C42%2C107%2C45%2C80%2C69%2C113%2C61%2C60%2C31%2C100%2C59%2C56%2C49%2C79%2C73%2C24%2C114 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a-/ALV-UjWkF-E3S0Co3EWSgH825RTF3s4JoHrzRRA1R7JGVxPY-IUwPMsZ=s120-c-rp-mo-ba5-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocJFLDkJS1Jez_5p29-K09lBJIKrMh-wbmmjp0OZa_AWt8ONCA=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocJ3SogYpr2sl3Hi7SWTa2PpMsHV_-ua5NvhqrMtDUNDzZHKrQ=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocIWnVtj3Jk9ffkUeNHbBlxaVPOnBTzrKGma1q72qCbVNdFFDg=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a-/ALV-UjU3SInJl3GSvCIB2v1IoRsFv16Suat0Iu6DD_wtbWVgcWwfv0Mr=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocILgAevKT5QCLUq8eVJ5Xukb0O0_MZWWulG1lUDgQ9rxyZ_9L0=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /data/reviews?uris%5B%5D=ChIJ_1ijB76Ef4gR_dzffyUlF7U&with_text_only=1&min_rating=5&page_length=100&order=date HTTP/1.1Host: service-reviews-ultimate.elfsight.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=786023096743692&ev=PageView&dl=https%3A%2F%2Fdentalimplants-aesthetic-center.com&rl=https%3A%2F%2Fsyndicatedsearch.goog&if=false&ts=1742000024961&sw=1280&sh=1024&ud[external_id]=9c2056dee190f159e13cac6b8439856addc5c9972411d0dd9c44222db8426962&v=2.9.187&r=stable&ec=0&o=12316&fbp=fb.1.1742000022979.3687558139&pm=1&hrl=f3e590&ler=other&cdl=API_unavailable&it=1742000023612&coo=false&eid=1742000022264&tm=1&cs_cc=1&cas=7804077599714863%2C8114565021897356&exp=k0&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Attribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceAttribution-Reporting-Support: web;osSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=786023096743692&ev=PageView&dl=https%3A%2F%2Fdentalimplants-aesthetic-center.com&rl=https%3A%2F%2Fsyndicatedsearch.goog&if=false&ts=1742000024961&sw=1280&sh=1024&ud[external_id]=9c2056dee190f159e13cac6b8439856addc5c9972411d0dd9c44222db8426962&v=2.9.187&r=stable&ec=0&o=12316&fbp=fb.1.1742000022979.3687558139&pm=1&hrl=f3e590&ler=other&cdl=API_unavailable&it=1742000023612&coo=false&eid=1742000022264&tm=1&cs_cc=1&cas=7804077599714863%2C8114565021897356&exp=k0&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/16644413673/?random=1742000024081&cv=11&fst=1741996800000&bg=ffffff&guid=ON&async=1&gtm=45je53d0v9191281019z89191640297za200zb9191640297&gcd=13l3l3l3l1l1&dma=0&tag_exp=102482433~102587591~102717422~102788824~102803279~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fdentalimplants-aesthetic-center.com%2Ffull-arch%3Futm_source%3Dadwords%26utm_campaign%3DTIE%2B-%2BPmax%2B-%2BHQ%2BLeads%2B-%2B122324%26gad_source%3D5%26gclid%3DEAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE&ref=https%3A%2F%2Fsyndicatedsearch.goog%2F&hn=www.googleadservices.com&frm=0&tiba=Dental%20Implant%20Aesthetic%20Center&npa=0&pscdl=noapi&auid=1976769472.1742000022&uaa=x86&uab=64&uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzML20oQ6w7E7w4c_tL9kVZj5h6GvQmEA&random=1321669191&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1.0/events HTTP/1.1Host: capi.implant-info.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocLSGYlVhviAxh8Zoe569pc6y_t2cLMCexVDcw1Zo2ZaPDcdEQ=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocIWnVtj3Jk9ffkUeNHbBlxaVPOnBTzrKGma1q72qCbVNdFFDg=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocJFLDkJS1Jez_5p29-K09lBJIKrMh-wbmmjp0OZa_AWt8ONCA=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocJ3SogYpr2sl3Hi7SWTa2PpMsHV_-ua5NvhqrMtDUNDzZHKrQ=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocILgAevKT5QCLUq8eVJ5Xukb0O0_MZWWulG1lUDgQ9rxyZ_9L0=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a-/ALV-UjWkF-E3S0Co3EWSgH825RTF3s4JoHrzRRA1R7JGVxPY-IUwPMsZ=s120-c-rp-mo-ba5-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a-/ALV-UjU3SInJl3GSvCIB2v1IoRsFv16Suat0Iu6DD_wtbWVgcWwfv0Mr=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/16644413673/?random=1742000024081&cv=11&fst=1741996800000&bg=ffffff&guid=ON&async=1&gtm=45je53d0v9191281019z89191640297za200zb9191640297&gcd=13l3l3l3l1l1&dma=0&tag_exp=102482433~102587591~102717422~102788824~102803279~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fdentalimplants-aesthetic-center.com%2Ffull-arch%3Futm_source%3Dadwords%26utm_campaign%3DTIE%2B-%2BPmax%2B-%2BHQ%2BLeads%2B-%2B122324%26gad_source%3D5%26gclid%3DEAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE&ref=https%3A%2F%2Fsyndicatedsearch.goog%2F&hn=www.googleadservices.com&frm=0&tiba=Dental%20Implant%20Aesthetic%20Center&npa=0&pscdl=noapi&auid=1976769472.1742000022&uaa=x86&uab=64&uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzML20oQ6w7E7w4c_tL9kVZj5h6GvQmEA&random=1321669191&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=786023096743692&ev=PageView&dl=https%3A%2F%2Fdentalimplants-aesthetic-center.com&rl=https%3A%2F%2Fsyndicatedsearch.goog&if=false&ts=1742000024961&sw=1280&sh=1024&ud[external_id]=9c2056dee190f159e13cac6b8439856addc5c9972411d0dd9c44222db8426962&v=2.9.187&r=stable&ec=0&o=12316&fbp=fb.1.1742000022979.3687558139&pm=1&hrl=f3e590&ler=other&cdl=API_unavailable&it=1742000023612&coo=false&eid=1742000022264&tm=1&cs_cc=1&cas=7804077599714863%2C8114565021897356&exp=k0&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=786023096743692&ev=PageView&dl=https%3A%2F%2Fdentalimplants-aesthetic-center.com&rl=https%3A%2F%2Fsyndicatedsearch.goog&if=false&ts=1742000024961&sw=1280&sh=1024&ud[external_id]=9c2056dee190f159e13cac6b8439856addc5c9972411d0dd9c44222db8426962&v=2.9.187&r=stable&ec=0&o=12316&fbp=fb.1.1742000022979.3687558139&pm=1&hrl=f3e590&ler=other&cdl=API_unavailable&it=1742000023612&coo=false&eid=1742000022264&tm=1&cs_cc=1&cas=7804077599714863%2C8114565021897356&exp=k0&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/surveyComponent.0437f737.css HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/app.5efdd9e1.css HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /a/ACg8ocLSGYlVhviAxh8Zoe569pc6y_t2cLMCexVDcw1Zo2ZaPDcdEQ=s120-c-rp-mo-br100 HTTP/1.1Host: lh3.googleusercontent.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/Survey.0428aefd.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/surveyComponent.6ba67fcc.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/Survey.0428aefd.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/HtmlInput.vue.2d74b3c4.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/Survey.0428aefd.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/form_payment_helper.76bbd8c0.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/Survey.0428aefd.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/google_captcha_helper.5cbc2a38.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/Survey.0428aefd.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/HeadingElement.0ae54d75.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/surveyComponent.6ba67fcc.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/RadioOptionElement.801ff641.css HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/TextElement.c058eeb1.css HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/EmailElement.5321bf3f.css HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/FooterSwitcher.60afea31.css HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise.js?render=6LeDBFwpAAAAAJe8ux9-imrqZ2ueRsEtdiWoDDpX HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/TextElement.9f2c9586.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/surveyComponent.6ba67fcc.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/RadioOptionElement.61c8c4d0.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/surveyComponent.6ba67fcc.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/EmailElement.92cf0165.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/surveyComponent.6ba67fcc.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/FooterSwitcher.0fcb69a0.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/surveyComponent.6ba67fcc.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/TextElement.vue.d39b77aa.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/TextElement.9f2c9586.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/IntlTel.51bfc162.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/TextElement.9f2c9586.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/optimize_script.741d41ad.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/TextElement.9f2c9586.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/ShortLabel.a1437810.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/TextElement.9f2c9586.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_preview/check-circle.db3b9a64.js HTTP/1.1Host: stcdn.leadconnectorhq.comConnection: keep-aliveOrigin: https://dentalimplants-aesthetic-center.comsec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://stcdn.leadconnectorhq.com/_preview/TextElement.9f2c9586.jsAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /funnels/funnel/geo-location/ HTTP/1.1Host: backend.leadconnectorhq.comConnection: keep-alivesec-ch-ua-platform: "Windows"timezone: America/New_Yorksec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"fullUrl: https://dentalimplants-aesthetic-center.com/full-arch?utm_source=adwords&utm_campaign=TIE+-+Pmax+-+HQ+Leads+-+122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwEsec-ch-ua-mobile: ?0source: WEB_USERUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36channel: APPversion: 2021-04-15Accept: /Origin: https://dentalimplants-aesthetic-center.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise/anchor?ar=1&k=6LeDBFwpAAAAAJe8ux9-imrqZ2ueRsEtdiWoDDpX&co=aHR0cHM6Ly9kZW50YWxpbXBsYW50cy1hZXN0aGV0aWMtY2VudGVyLmNvbTo0NDM.&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=fmhco8my2wdv HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Browser-Channel: stableX-Browser-Year: 2025X-Browser-Validation: wTKGXmLo+sPWz1JKKbFzUyHly1Q=X-Browser-Copyright: Copyright 2025 Google LLC. All rights reserved.X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /funnels/funnel/geo-location/ HTTP/1.1Host: backend.leadconnectorhq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/enterprise/webworker.js?hl=en&v=J79K9xgfxwT6Syzx-UyWdD89 HTTP/1.1Host: www.google.comConnection: keep-aliveAccept: /X-Browser-Channel: stableX-Browser-Year: 2025X-Browser-Validation: wTKGXmLo+sPWz1JKKbFzUyHly1Q=X-Browser-Copyright: Copyright 2025 Google LLC. All rights reserved.X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerSec-Fetch-Storage-Access: activeReferer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6LeDBFwpAAAAAJe8ux9-imrqZ2ueRsEtdiWoDDpX&co=aHR0cHM6Ly9kZW50YWxpbXBsYW50cy1hZXN0aGV0aWMtY2VudGVyLmNvbTo0NDM.&hl=en&v=J79K9xgfxwT6Syzx-UyWdD89&size=invisible&cb=fmhco8my2wdvUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/16644413673/?random=1742000048966&cv=11&fst=1741996800000&bg=ffffff&guid=ON&async=1&gtm=45je53d0v9191281019za200zb9191640297&gcd=13l3l3l3l1l1&dma=0&tag_exp=102482433~102587591~102717422~102788824~102803279~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fdentalimplants-aesthetic-center.com%2Ffull-arch%3Futm_source%3Dadwords%26utm_campaign%3DTIE%2B-%2BPmax%2B-%2BHQ%2BLeads%2B-%2B122324%26gad_source%3D5%26gclid%3DEAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE&ref=https%3A%2F%2Fsyndicatedsearch.goog%2F&hn=www.googleadservices.com&frm=0&tiba=Dental%20Implant%20Aesthetic%20Center&npa=0&pscdl=noapi&auid=1976769472.1742000022&uaa=x86&uab=64&uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dform_start&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCjtLzMy7u-seUIvriJuCWz0LV3KCeJmv9g4jeRYxvR52oNVXfflxOR&random=2829477047&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"sec-ch-ua-mobile: ?0Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageSec-Fetch-Storage-Access: activeReferer: https://dentalimplants-aesthetic-center.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/16644413673/?random=1742000048966&cv=11&fst=1741996800000&bg=ffffff&guid=ON&async=1&gtm=45je53d0v9191281019za200zb9191640297&gcd=13l3l3l3l1l1&dma=0&tag_exp=102482433~102587591~102717422~102788824~102803279~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fdentalimplants-aesthetic-center.com%2Ffull-arch%3Futm_source%3Dadwords%26utm_campaign%3DTIE%2B-%2BPmax%2B-%2BHQ%2BLeads%2B-%2B122324%26gad_source%3D5%26gclid%3DEAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE&ref=https%3A%2F%2Fsyndicatedsearch.goog%2F&hn=www.googleadservices.com&frm=0&tiba=Dental%20Implant%20Aesthetic%20Center&npa=0&pscdl=noapi&auid=1976769472.1742000022&uaa=x86&uab=64&uafvl=Chromium%3B134.0.6998.36%7CNot%253AA-Brand%3B24.0.0.0%7CGoogle%2520Chrome%3B134.0.6998.36&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dform_start&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCjtLzMy7u-seUIvriJuCWz0LV3KCeJmv9g4jeRYxvR52oNVXfflxOR&random=2829477047&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36Accept: /X-Client-Data: CI62yQEIpLbJAQipncoBCNrwygEIkqHLAQiKo8sBCIWgzQE=Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeAccept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9

Source: chromecache_265.1.dr, chromecache_148.1.dr	String found in binary or memory: Math.round(q);t["gtm.videoElapsedTime"]=Math.round(f);t["gtm.videoPercent"]=r;t["gtm.videoVisible"]=u;return t},Qk:function(){e=sb()},Nd:function(){d()}}};var bc=wa(["data-gtm-yt-inspected-"]),DG=["www.youtube.com","www.youtube-nocookie.com"],EG,FG=!1; equals www.youtube.com (Youtube)
Source: chromecache_265.1.dr, chromecache_148.1.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=oD(a,c,e);Q(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return Q(122),!0;if(d&&f){for(var m=Cb(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},rD=function(){var a=[],b=function(c){return gb(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_265.1.dr, chromecache_148.1.dr	String found in binary or memory: if(!(f\|\|g\|\|k\|\|m.length\|\|n.length))return;var q={Uh:f,Sh:g,Th:k,Ai:m,Bi:n,pf:p,Rb:e},r=z.YT;if(r)return r.ready&&r.ready(d),e;var u=z.onYouTubeIframeAPIReady;z.onYouTubeIframeAPIReady=function(){u&&u();d()};E(function(){for(var v=A.getElementsByTagName("script"),t=v.length,w=0;w<t;w++){var x=v[w].getAttribute("src");if(OG(x,"iframe_api")\|\|OG(x,"player_api"))return e}for(var y=A.getElementsByTagName("iframe"),B=y.length,C=0;C<B;C++)if(!FG&&MG(y[C],q.pf))return sc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_166.1.dr	String found in binary or memory: return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var b=f.getFbeventsModules("signalsFBEventsGetTier"),c=d();function d(){try{if(a.trustedTypes&&a.trustedTypes.createPolicy){var b=a.trustedTypes;return b.createPolicy("facebook.com/signals/iwl",{createScriptURL:function(b){var c=typeof a.URL==="function"?a.URL:a.webkitURL;c=new c(b);c=c.hostname.endsWith(".facebook.com")&&c.pathname=="/signals/iwl.js";if(!c)throw new Error("Disallowed script URL");return b}})}}catch(a){}return null}e.exports=function(a,d){d=b(d);d=d==null?"www.facebook.com":"www."+d+".facebook.com";d="https://"+d+"/signals/iwl.js?pixel_id="+a;if(c!=null)return c.createScriptURL(d);else return d}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_166.1.dr	String found in binary or memory: return function(f,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=/^https:\/\/www\.([A-Za-z0-9\.]+)\.facebook\.com\/tr\/?$/,b=["https://www.facebook.com/tr","https://www.facebook.com/tr/"];e.exports=function(c){if(b.indexOf(c)!==-1)return null;var d=a.exec(c);if(d==null)throw new Error("Malformed tier: "+c);return d[1]}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_166.1.dr	String found in binary or memory: return function(f,g,h,i){var j={exports:{}};j.exports;(function(){"use strict";var a={ENDPOINT:"https://www.facebook.com/tr/",INSTAGRAM_TRIGGER_ATTRIBUTION:"https://www.instagram.com/tr/",AEM_ENDPOINT:"https://www.facebook.com/.well-known/aggregated-event-measurement/",GPS_ENDPOINT:"https://www.facebook.com/privacy_sandbox/pixel/register/trigger/",TOPICS_API_ENDPOINT:"https://www.facebook.com/privacy_sandbox/topics/registration/"};j.exports=a})();return j.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_278.1.dr	String found in binary or memory: return f}BG.K="internal.enableAutoEventOnTimer";var bc=wa(["data-gtm-yt-inspected-"]),DG=["www.youtube.com","www.youtube-nocookie.com"],EG,FG=!1; equals www.youtube.com (Youtube)
Source: chromecache_265.1.dr, chromecache_148.1.dr	String found in binary or memory: var QF=function(a,b,c,d,e){var f=MC("fsl",c?"nv.mwt":"mwt",0),g;g=c?MC("fsl","nv.ids",[]):MC("fsl","ids",[]);if(!g.length)return!0;var k=RC(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);Q(121);if(m==="https://www.facebook.com/tr/")return Q(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!zB(k,BB(b, equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: sheingivesback.com
Source: global traffic	DNS traffic detected: DNS query: domaincntrol.com
Source: global traffic	DNS traffic detected: DNS query: ww1.sheingivesback.com
Source: global traffic	DNS traffic detected: DNS query: euob.seaskydvd.com
Source: global traffic	DNS traffic detected: DNS query: d38psrni17bvxu.cloudfront.net
Source: global traffic	DNS traffic detected: DNS query: obseu.seaskydvd.com
Source: global traffic	DNS traffic detected: DNS query: syndicatedsearch.goog
Source: global traffic	DNS traffic detected: DNS query: afs.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: dentalimplants-aesthetic-center.com
Source: global traffic	DNS traffic detected: DNS query: stcdn.leadconnectorhq.com
Source: global traffic	DNS traffic detected: DNS query: images.leadconnectorhq.com
Source: global traffic	DNS traffic detected: DNS query: static.elfsight.com
Source: global traffic	DNS traffic detected: DNS query: static.cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: core.service.elfsight.com
Source: global traffic	DNS traffic detected: DNS query: service-reviews-ultimate.elfsight.com
Source: global traffic	DNS traffic detected: DNS query: storage.elfsight.com
Source: global traffic	DNS traffic detected: DNS query: universe-static.elfsightcdn.com
Source: global traffic	DNS traffic detected: DNS query: backend.leadconnectorhq.com
Source: global traffic	DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic	DNS traffic detected: DNS query: cdn-st.adsmurai.com
Source: global traffic	DNS traffic detected: DNS query: capi.implant-info.com
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: lh3.googleusercontent.com
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: google.com

Source: unknown

HTTP traffic detected: POST /mon HTTP/1.1Host: obseu.seaskydvd.comConnection: keep-aliveContent-Length: 4216sec-ch-ua-platform: "Windows"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36sec-ch-ua: "Chromium";v="134", "Not:A-Brand";v="24", "Google Chrome";v="134"Content-Type: application/x-www-form-urlencodedsec-ch-ua-mobile: ?0Accept: */*Origin: https://ww1.sheingivesback.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptySec-Fetch-Storage-Access: activeReferer: https://ww1.sheingivesback.com/Accept-Encoding: gzip, deflate, br, zstdAccept-Language: en-US,en;q=0.9Cookie: cg_uuid=a215f7a57d7ece3c8efe0ce065c397d1

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenAccess-Control-Allow-Origin: *Alt-Svc: h3=":50944"; ma=2592000Content-Length: 0Content-Type: text/html; charset=UTF-8Date: Sat, 15 Mar 2025 00:53:23 GMTServer: CaddyServer: nginxStatus: 403 ForbiddenX-Invalid-Click: trueConnection: close
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Sat, 15 Mar 2025 00:53:44 GMTContent-Type: application/json; charset=utf-8Content-Length: 19Connection: closex-powered-by: Expressaccess-control-allow-origin: *x-content-type-options: nosniffetag: W/"13-g+AX3+aFamjNj0HKxq2i4//hBF8"x-envoy-upstream-service-time: 1strict-transport-security: max-age=31536000cf-cache-status: DYNAMICServer: cloudflareCF-RAY: 92080915bb218cdd-EWR
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not Foundaccess-control-allow-origin: *content-security-policy: default-src 'none'x-content-type-options: nosniffcontent-type: text/html; charset=utf-8X-Cloud-Trace-Context: d26ab53b5246bbfc7ca2413f41c93e34Date: Sat, 15 Mar 2025 00:53:46 GMTServer: Google FrontendContent-Length: 150Connection: close

Source: chromecache_241.1.dr, chromecache_150.1.dr	String found in binary or memory: http://ww1.sheingivesback.com
Source: chromecache_148.1.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_295.1.dr	String found in binary or memory: https://assets.cdn.filesafe.space/knES3eSWYIsc5YSZ3YLl/media/62beef4f9f43b0c53e585a8f.jpeg
Source: chromecache_189.1.dr	String found in binary or memory: https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f8cd77ac849a6995f5d24.webp
Source: chromecache_265.1.dr, chromecache_278.1.dr, chromecache_148.1.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://cloud.google.com/recaptcha/docs/troubleshoot-recaptcha-issues#automated-query-error
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://cloud.google.com/recaptcha/docs/troubleshoot-recaptcha-issues#localhost-error
Source: chromecache_166.1.dr	String found in binary or memory: https://connect.facebook.net/
Source: chromecache_166.1.dr	String found in binary or memory: https://connect.facebook.net/log/fbevents_telemetry/
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_253.1.dr, chromecache_214.1.dr, chromecache_186.1.dr	String found in binary or memory: https://domaincntrol.com/?orighost=
Source: chromecache_285.1.dr	String found in binary or memory: https://euob.seaskydvd.com/sxp/i/224f85302aa2b6ec30aac9a85da2cbf9.js
Source: chromecache_280.1.dr	String found in binary or memory: https://euob.seaskydvd.com/sxp/i/55e67f29c9eb36517f5d1b5907116250.js
Source: chromecache_308.1.dr	String found in binary or memory: https://ev.st.adsmurai.com/v1.0/events
Source: chromecache_295.1.dr	String found in binary or memory: https://fonts.bunny.net/css
Source: chromecache_295.1.dr	String found in binary or memory: https://fonts.googleapis.com/css
Source: chromecache_231.1.dr, chromecache_193.1.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=
Source: chromecache_189.1.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Lato:400
Source: chromecache_189.1.dr	String found in binary or memory: https://fonts.gstatic.com/
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/averagesans/v16/1Ptpg8fLXP2dlAXR-HlJJNJ_AtCb.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/averagesans/v16/1Ptpg8fLXP2dlAXR-HlJJNJ_DNCb_Vo.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u-w4BMUTPHjxsIPx-mPCLQ7A.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u-w4BMUTPHjxsIPx-oPCI.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u8w4BMUTPHh30AUi-qJCY.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u8w4BMUTPHh30AXC-q.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u8w4BMUTPHjxsAUi-qJCY.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u8w4BMUTPHjxsAXC-q.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwaPGR_p.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwaPGR_p.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwaPGR_p.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u_w4BMUTPHjxsI3wi_FQft1dw.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u_w4BMUTPHjxsI3wi_Gwft.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u_w4BMUTPHjxsI5wq_FQft1dw.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u_w4BMUTPHjxsI5wq_Gwft.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u_w4BMUTPHjxsI9w2_FQft1dw.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6u_w4BMUTPHjxsI9w2_Gwft.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjxAwXjeu.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUQjIg1_i6t8kCHKm459WxRxC7mw9c.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUQjIg1_i6t8kCHKm459WxRxi7mw9c.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUQjIg1_i6t8kCHKm459WxRxy7mw9c.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2)
Source: chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUQjIg1_i6t8kCHKm459WxRzS7mw9c.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459WRhyzbi.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459WZhyzbi.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wdhyzbi.woff2)
Source: chromecache_238.1.dr, chromecache_212.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/montserrat/v29/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofIMeaBXso.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofIO-aBXso.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofIOOaBXso.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofIOuaBXso.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8u
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWSw
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWT4
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV0
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV4
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV8
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVA
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVI
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVM
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVQ
Source: chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVw
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2)
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff2)
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSCmu1aB.woff2)
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2)
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSKmu1aB.woff2)
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSOmu1aB.woff2)
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2)
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSymu1aB.woff2)
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2)
Source: chromecache_238.1.dr, chromecache_250.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTVOmu1aB.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLBT5Z1JlFc-K.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLBT5Z1xlFQ.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLDD4Z1JlFc-K.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLGT9Z1JlFc-K.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJfecg.woff2)
Source: chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v22/pxiEyp8kv8JHgFVrJJnecmNE.woff2)
Source: chromecache_279.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkAnkaWzU.woff2)
Source: chromecache_279.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBXkaWzU.woff2)
Source: chromecache_279.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkBnka.woff2)
Source: chromecache_279.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkC3kaWzU.woff2)
Source: chromecache_279.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkCHkaWzU.woff2)
Source: chromecache_279.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkCXkaWzU.woff2)
Source: chromecache_279.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkCnkaWzU.woff2)
Source: chromecache_279.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkaHkaWzU.woff2)
Source: chromecache_279.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO5CnqEu92Fr1Mu53ZEC9_Vu3r1gIhOszmkenkaWzU.woff2)
Source: chromecache_279.1.dr, chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3-UBGEe.woff2)
Source: chromecache_279.1.dr, chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3CUBGEe.woff2)
Source: chromecache_279.1.dr, chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3GUBGEe.woff2)
Source: chromecache_279.1.dr, chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3KUBGEe.woff2)
Source: chromecache_279.1.dr, chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3OUBGEe.woff2)
Source: chromecache_279.1.dr, chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3iUBGEe.woff2)
Source: chromecache_279.1.dr, chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2)
Source: chromecache_279.1.dr, chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2)
Source: chromecache_279.1.dr, chromecache_238.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2)
Source: chromecache_207.1.dr, chromecache_151.1.dr	String found in binary or memory: https://github.com/google/safevalues/issues
Source: chromecache_152.1.dr	String found in binary or memory: https://github.com/jackocnr/intl-tel-input.git
Source: chromecache_306.1.dr	String found in binary or memory: https://github.com/krux/prescribe/
Source: chromecache_148.1.dr	String found in binary or memory: https://google.com
Source: chromecache_148.1.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_166.1.dr	String found in binary or memory: https://gw.conversionsapigateway.com
Source: chromecache_163.1.dr	String found in binary or memory: https://handlebarsjs.com/api-reference/runtime-options.html#options-to-control-prototype-access
Source: chromecache_189.1.dr	String found in binary or memory: https://images.leadconnectorhq.com/image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/nJ2G
Source: chromecache_189.1.dr	String found in binary or memory: https://images.leadconnectorhq.com/image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4
Source: chromecache_189.1.dr	String found in binary or memory: https://images.leadconnectorhq.com/image/f_webp/q_80/r_320/u_https://assets.cdn.filesafe.space/rVQ4M
Source: chromecache_189.1.dr	String found in binary or memory: https://images.leadconnectorhq.com/image/f_webp/q_80/r_480/u_https://assets.cdn.filesafe.space/nJ2GB
Source: chromecache_189.1.dr	String found in binary or memory: https://images.leadconnectorhq.com/image/f_webp/q_80/r_480/u_https://assets.cdn.filesafe.space/rVQ4M
Source: chromecache_189.1.dr	String found in binary or memory: https://images.leadconnectorhq.com/image/f_webp/q_80/r_640/u_https://assets.cdn.filesafe.space/rVQ4M
Source: chromecache_189.1.dr	String found in binary or memory: https://images.leadconnectorhq.com/image/f_webp/q_80/r_768/u_https://assets.cdn.filesafe.space/nJ2GB
Source: chromecache_189.1.dr	String found in binary or memory: https://images.leadconnectorhq.com/image/f_webp/q_80/r_768/u_https://assets.cdn.filesafe.space/rVQ4M
Source: chromecache_189.1.dr	String found in binary or memory: https://images.leadconnectorhq.com/image/f_webp/q_80/r_900/u_https://assets.cdn.filesafe.space/rVQ4M
Source: chromecache_228.1.dr	String found in binary or memory: https://js.stripe.com/v3
Source: chromecache_306.1.dr	String found in binary or memory: https://krux.github.io/postscribe
Source: chromecache_253.1.dr, chromecache_214.1.dr, chromecache_186.1.dr	String found in binary or memory: https://nojs.domaincntrol.com
Source: chromecache_148.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_265.1.dr, chromecache_231.1.dr, chromecache_193.1.dr, chromecache_278.1.dr, chromecache_148.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_231.1.dr, chromecache_193.1.dr	String found in binary or memory: https://partner.googleadservices.com/gampad/cookie.js
Source: chromecache_227.1.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_265.1.dr, chromecache_148.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_265.1.dr, chromecache_148.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect?v=2&
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/Button.12cbc488.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/CustomCodeRenderer.ccbb7827.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/FunnelServices.07826a45.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/HLConst.b017eec0.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/HLImage.050efcef.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/HLImage.vue.6ee36179.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/HtmlPreview.a5cd6a98.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/HtmlPreview.vue.18dc50d5.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/MoonLoader.e04a6804.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/MoonLoader.vue.4ac0e4b1.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/TextRenderer.939260ff.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/am_helper.3e8b5c2f.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/client-only.b7bb1942.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/components.f7f419c6.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/constants.91d064ff.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/currency_helper.ed08bd45.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/entry.4f9516d1.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/funnel_event_helper.8a17a5b0.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/index.66e00f1d.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/index.decbbc93.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/orderform_helpers.47c81b73.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/page.d9fd05d0.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/payment-warning.00adaf28.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/payment-warning.dd3003de.svg
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/pure.9cabf600.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/_preview/useRedirectAction.38206ea7.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-brands-400.eot);src:url(https://stc
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-brands-400.svg#fontawesome)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-brands-400.ttf)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-brands-400.woff)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-brands-400.woff2)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-regular-400.eot);src:url(https://st
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-regular-400.svg#fontawesome)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-regular-400.ttf)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-regular-400.woff)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-regular-400.woff2)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-solid-900.eot);src:url(https://stcd
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-solid-900.svg#fontawesome)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-solid-900.ttf)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-solid-900.woff)
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-solid-900.woff2)
Source: chromecache_272.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/icon/favicon.ico
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/arrow-right.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/check.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/close.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/default-product-image.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/edit-01.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/empty-cart.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/empty-list.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/minus.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/payment-warning.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/plus.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/ticket-02.svg
Source: chromecache_295.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/funnel/store/video-placeholder.png
Source: chromecache_179.1.dr, chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/intl-tel-input/17.0.12/css/intlTelInput.min.css
Source: chromecache_179.1.dr, chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/intl-tel-input/17.0.12/js/utils.min.js
Source: chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/intl-tel-input/intlTelInput.min.js
Source: chromecache_179.1.dr, chromecache_189.1.dr	String found in binary or memory: https://stcdn.leadconnectorhq.com/libphonenumber/1.10.60/libphonenumber-js.min.js
Source: chromecache_295.1.dr	String found in binary or memory: https://storage.googleapis.com/builder-preview/iframe/iframeResizer.contentWindow.min.js
Source: chromecache_295.1.dr	String found in binary or memory: https://storage.googleapis.com/builder-preview/iframe/pixel.js
Source: chromecache_189.1.dr	String found in binary or memory: https://storage.googleapis.com/msgsndr/rVQ4MAZ2xjK7dyF9BQAK/media/669fca76b0b3284299277e04.webp
Source: chromecache_227.1.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_231.1.dr, chromecache_193.1.dr	String found in binary or memory: https://syndicatedsearch.goog
Source: chromecache_210.1.dr	String found in binary or memory: https://syndicatedsearch.goog/
Source: chromecache_265.1.dr, chromecache_278.1.dr, chromecache_148.1.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_148.1.dr	String found in binary or memory: https://www.google.com
Source: chromecache_231.1.dr, chromecache_193.1.dr	String found in binary or memory: https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5
Source: chromecache_299.1.dr, chromecache_216.1.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/16644413673/?random
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_157.1.dr	String found in binary or memory: https://www.google.com/recaptcha/enterprise/
Source: chromecache_148.1.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_151.1.dr	String found in binary or memory: https://www.googleadservices.com/ga/phone
Source: chromecache_231.1.dr, chromecache_193.1.dr	String found in binary or memory: https://www.googleadservices.com/pagead/aclk
Source: chromecache_151.1.dr	String found in binary or memory: https://www.googleadservices.com/pagead/conversion/
Source: chromecache_231.1.dr, chromecache_193.1.dr	String found in binary or memory: https://www.googleadservices.com/pagead/conversion/16521530460/?gad_source=1&adview_type=3
Source: chromecache_148.1.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_265.1.dr, chromecache_278.1.dr, chromecache_148.1.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_265.1.dr, chromecache_278.1.dr, chromecache_148.1.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_162.1.dr, chromecache_227.1.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__.
Source: chromecache_157.1.dr, chromecache_176.1.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__en.js
Source: chromecache_265.1.dr, chromecache_148.1.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_265.1.dr, chromecache_148.1.dr	String found in binary or memory: https://www.youtube.com/iframe_api

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49692 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49701
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49671 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49695 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49699
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49698
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49697
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49696
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49695
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49692
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49691
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49690
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49688
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49687
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49686
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49696 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49686 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49697 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49699 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49719 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49698 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49687 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49935 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49946 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49688 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49677 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49700
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49691 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49935
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49931
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49960 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49690 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 49937 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49716 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: unknown	HTTPS traffic detected: 142.250.185.68:443 -> 192.168.2.7:49686 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 64.225.91.73:443 -> 192.168.2.7:49687 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 64.225.91.73:443 -> 192.168.2.7:49688 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.26.45:443 -> 192.168.2.7:49690 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 64.225.91.73:443 -> 192.168.2.7:49691 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.27.45:443 -> 192.168.2.7:49692 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.148.254:443 -> 192.168.2.7:49695 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 108.138.26.49:443 -> 192.168.2.7:49697 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 76.223.26.96:443 -> 192.168.2.7:49700 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.68:443 -> 192.168.2.7:49701 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.66.121.138:443 -> 192.168.2.7:49698 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.75.69.192:443 -> 192.168.2.7:49703 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 18.66.121.69:443 -> 192.168.2.7:49704 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.206:443 -> 192.168.2.7:49705 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 54.75.69.192:443 -> 192.168.2.7:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.74.193:443 -> 192.168.2.7:49721 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.74.193:443 -> 192.168.2.7:49722 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.248.148.254:443 -> 192.168.2.7:49738 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.186.132:443 -> 192.168.2.7:49753 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.68:443 -> 192.168.2.7:49762 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 162.159.140.166:443 -> 192.168.2.7:49777 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49783 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49789 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49794 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49791 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.16.79.73:443 -> 192.168.2.7:49797 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.68.95:443 -> 192.168.2.7:49796 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49795 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49793 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.153.218:443 -> 192.168.2.7:49802 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.68.95:443 -> 192.168.2.7:49804 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.68.95:443 -> 192.168.2.7:49808 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.69.95:443 -> 192.168.2.7:49807 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.22.83:443 -> 192.168.2.7:49806 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.22.83:443 -> 192.168.2.7:49832 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.71.102:443 -> 192.168.2.7:49836 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.22.83:443 -> 192.168.2.7:49837 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.153.218:443 -> 192.168.2.7:49841 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.64.153.218:443 -> 192.168.2.7:49845 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.239.233:443 -> 192.168.2.7:49863 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.22.68.95:443 -> 192.168.2.7:49865 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.186.132:443 -> 192.168.2.7:49853 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.251.9:443 -> 192.168.2.7:49862 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.18.34.38:443 -> 192.168.2.7:49867 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 172.67.22.83:443 -> 192.168.2.7:49869 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.147:443 -> 192.168.2.7:49868 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49882 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49881 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49879 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49880 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49883 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.225:443 -> 192.168.2.7:49884 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.252.35:443 -> 192.168.2.7:49886 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.252.35:443 -> 192.168.2.7:49887 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.184.243:443 -> 192.168.2.7:49889 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49893 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49894 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49895 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49896 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49897 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 216.58.206.33:443 -> 192.168.2.7:49898 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.0.35:443 -> 192.168.2.7:49900 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 157.240.0.35:443 -> 192.168.2.7:49901 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 142.250.185.196:443 -> 192.168.2.7:49937 version: TLS 1.2

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Windows\SystemTemp\scoped_dir2732_1158674109

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File deleted: C:\Windows\SystemTemp\scoped_dir2732_1158674109

Jump to behavior

Source: classification engine

Classification label: mal60.win@31/300@98/33

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2056,i,11606197318203324033,6967171693360018938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2116 /prefetch:3
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://sheingivesback.com"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-pre-read-main-dll --field-trial-handle=2056,i,11606197318203324033,6967171693360018938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5876 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2056,i,11606197318203324033,6967171693360018938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5668 /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2056,i,11606197318203324033,6967171693360018938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=2116 /prefetch:3	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-pre-read-main-dll --field-trial-handle=2056,i,11606197318203324033,6967171693360018938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5876 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-pre-read-main-dll --field-trial-handle=2056,i,11606197318203324033,6967171693360018938,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction --variations-seed-version=20250306-183004.429000 --mojo-platform-channel-handle=5668 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	Windows Management Instrumentation	1 Browser Extensions	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	4 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	1 File Deletion	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	5 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	3 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
https://sheingivesback.com	100%	Avira URL Cloud	malware

Source	Detection	Scanner	Label
https://nojs.domaincntrol.com	0%	Avira URL Cloud	safe
https://dentalimplants-aesthetic-center.com/cdn-cgi/rum?	0%	Avira URL Cloud	safe
https://ww1.sheingivesback.com/munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D	100%	Avira URL Cloud	malware
https://ww1.sheingivesback.com/munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D	100%	Avira URL Cloud	malware
http://ww1.sheingivesback.com	100%	Avira URL Cloud	malware
https://capi.implant-info.com/v1.0/events	0%	Avira URL Cloud	safe
https://ww1.sheingivesback.com/munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D	100%	Avira URL Cloud	malware
https://ww1.sheingivesback.com/munin/a/ls?t=67d4cf71&token=03431f44e37b70c9175e1b959296721b694ea8fa	100%	Avira URL Cloud	malware
https://ww1.sheingivesback.com/munin/a/ls?t=67d4cf83&token=19fe8fb83187a140d59b022cd60290330bfcf0ba	100%	Avira URL Cloud	malware
https://obseu.seaskydvd.com/mon	0%	Avira URL Cloud	safe
https://ww1.sheingivesback.com/munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D	100%	Avira URL Cloud	malware

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
euob.seaskydvd.com	108.138.26.49	true	false	high
static.cloudflareinsights.com	104.16.79.73	true	false	high
obseu.seaskydvd.com	54.75.69.192	true	false	high
scontent.xx.fbcdn.net	157.240.251.9	true	false	high
cdn-st.adsmurai.com	35.244.239.233	true	false	high
static.elfsight.com	104.22.68.95	true	false	high
service-reviews-ultimate.elfsight.com	104.22.68.95	true	false	high
www.google.com	142.250.185.68	true	false	high
images.leadconnectorhq.com	104.18.34.38	true	false	high
d38psrni17bvxu.cloudfront.net	18.66.121.138	true	false	high
core.service.elfsight.com	172.67.22.83	true	false	high
star-mini.c10r.facebook.com	157.240.252.35	true	false	high
backend.leadconnectorhq.com	172.64.153.218	true	false	high
storage.elfsight.com	104.22.69.95	true	false	high
universe-static.elfsightcdn.com	172.67.71.102	true	false	high
google.com	216.58.206.46	true	false	high
syndicatedsearch.goog	142.250.185.206	true	false	high
stcdn.leadconnectorhq.com	104.18.34.38	true	false	high
347875.parkingcrew.net	13.248.148.254	true	false	unknown
dentalimplants-aesthetic-center.com	162.159.140.166	true	false	unknown
googleads.g.doubleclick.net	216.58.206.66	true	false	high
sheingivesback.com	64.225.91.73	true	false	unknown
td.doubleclick.net	216.58.206.66	true	false	high
googlehosted.l.googleusercontent.com	216.58.206.65	true	false	high
ghs.googlehosted.com	142.250.185.147	true	false	high
domaincntrol.com	104.18.26.45	true	false	high
ww1.sheingivesback.com	unknown	unknown	false	unknown
lh3.googleusercontent.com	unknown	unknown	false	high
www.facebook.com	unknown	unknown	false	high
afs.googleusercontent.com	unknown	unknown	false	high
capi.implant-info.com	unknown	unknown	false	unknown
connect.facebook.net	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://www.google.com/adsense/domains/caf.js?abp=1&adsdeli=true	false		high
https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	false		high
https://static.elfsight.com/platform/platform.js	false		high
https://stcdn.leadconnectorhq.com/_preview/form_payment_helper.76bbd8c0.js	false		high
https://stcdn.leadconnectorhq.com/_preview/FooterSwitcher.0fcb69a0.js	false		high
https://ww1.sheingivesback.com/munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D	false	Avira URL Cloud: malware	unknown
https://dentalimplants-aesthetic-center.com/cdn-cgi/rum?	false	Avira URL Cloud: safe	unknown
https://www.google.com/images/afs/snowman.png	false		high
https://sheingivesback.com/	true		unknown
https://connect.facebook.net/signals/config/786023096743692?v=2.9.187&r=stable&domain=dentalimplants-aesthetic-center.com&hme=9d6c2cc137748d003f279fac8d52b2defc993e1177ef802e0d5b230c72882031&ex_m=71%2C123%2C108%2C112%2C62%2C4%2C101%2C70%2C16%2C98%2C90%2C51%2C55%2C177%2C180%2C192%2C188%2C189%2C191%2C29%2C102%2C53%2C78%2C190%2C172%2C175%2C185%2C186%2C193%2C134%2C41%2C198%2C195%2C196%2C34%2C147%2C15%2C50%2C202%2C201%2C136%2C18%2C40%2C1%2C43%2C66%2C67%2C68%2C72%2C94%2C17%2C14%2C97%2C93%2C92%2C109%2C52%2C111%2C39%2C110%2C30%2C95%2C26%2C173%2C176%2C144%2C87%2C57%2C85%2C33%2C74%2C0%2C96%2C32%2C28%2C83%2C84%2C89%2C47%2C46%2C88%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C58%2C63%2C65%2C76%2C54%2C103%2C27%2C77%2C9%2C8%2C81%2C48%2C21%2C105%2C104%2C106%2C99%2C10%2C20%2C3%2C38%2C75%2C19%2C5%2C91%2C82%2C44%2C35%2C86%2C2%2C36%2C64%2C42%2C107%2C45%2C80%2C69%2C113%2C61%2C60%2C31%2C100%2C59%2C56%2C49%2C79%2C73%2C24%2C114	false		high
https://stcdn.leadconnectorhq.com/_preview/FooterSwitcher.60afea31.css	false		high
https://stcdn.leadconnectorhq.com/intl-tel-input/17.0.12/css/intlTelInput.min.css	false		high
https://stcdn.leadconnectorhq.com/_preview/Button.12cbc488.js	false		high
https://stcdn.leadconnectorhq.com/_preview/pure.9cabf600.js	false		high
https://obseu.seaskydvd.com/mon	false	Avira URL Cloud: safe	unknown
https://ww1.sheingivesback.com/munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MTk5OTk4NC45OTM0Ojc0MzgzYmY4ODVlNTk1M2FhMTY0YjE0YWQzYTk4ZWNmYWNiOTAzMzg3MzI1ZjA1NDMyYzViNGNjNjA3OTcwMDI6NjdkNGNmNzBmMjg4ZQ%3D%3D	false	Avira URL Cloud: malware	unknown
https://stcdn.leadconnectorhq.com/_preview/FunnelServices.07826a45.js	false		high
https://www.google.com/recaptcha/enterprise.js?render=6LeDBFwpAAAAAJe8ux9-imrqZ2ueRsEtdiWoDDpX	false		high
https://stcdn.leadconnectorhq.com/_preview/app.5efdd9e1.css	false		high
https://stcdn.leadconnectorhq.com/_preview/payment-warning.00adaf28.js	false		high
https://lh3.googleusercontent.com/a/ACg8ocILgAevKT5QCLUq8eVJ5Xukb0O0_MZWWulG1lUDgQ9rxyZ_9L0=s120-c-rp-mo-br100	false		high
https://stcdn.leadconnectorhq.com/_preview/i18n.config.45aa417d.js	false		high
https://stcdn.leadconnectorhq.com/_preview/postscribe.f561ec8a.js	false		high
https://core.service.elfsight.com/p/boot/?page=https%3A%2F%2Fdentalimplants-aesthetic-center.com%2Ffull-arch%3Futm_source%3Dadwords%26utm_campaign%3DTIE%2520-%2520Pmax%2520-%2520HQ%2520Leads%2520-%2520122324%26gad_source%3D5%26gclid%3DEAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE&w=e3c994c6-d260-406c-a6cc-f159763708d2	false		high
https://stcdn.leadconnectorhq.com/_preview/RadioOptionElement.801ff641.css	false		high
https://images.leadconnectorhq.com/image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f8ba2b2284338344c9b74.webp	false		high
https://stcdn.leadconnectorhq.com/_preview/constants.91d064ff.js	false		high
https://capi.implant-info.com/v1.0/events	false	Avira URL Cloud: safe	unknown
https://stcdn.leadconnectorhq.com/_preview/page.d9fd05d0.js	false		high
https://dentalimplants-aesthetic-center.com/full-arch?utm_source=adwords&utm_campaign=TIE+-+Pmax+-+HQ+Leads+-+122324&gad_source=5&gclid=EAIaIQobChMI_crx2--KjAMVVpKDBx3R1g3xEAAYASAAEgIytfD_BwE	false		unknown
https://stcdn.leadconnectorhq.com/_preview/useRedirectAction.38206ea7.js	false		high
https://stcdn.leadconnectorhq.com/_preview/client-only.b7bb1942.js	false		high
https://stcdn.leadconnectorhq.com/_preview/HLImage.vue.6ee36179.js	false		high
https://stcdn.leadconnectorhq.com/_preview/MoonLoader.vue.4ac0e4b1.js	false		high
https://afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff	false		high
https://stcdn.leadconnectorhq.com/intl-tel-input/17.0.12/js/utils.min.js	false		high
https://images.leadconnectorhq.com/image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/669f8cd77ac849a6995f5d24.webp	false		high
https://stcdn.leadconnectorhq.com/_preview/ShortLabel.a1437810.js	false		high
https://stcdn.leadconnectorhq.com/_preview/HtmlInput.vue.2d74b3c4.js	false		high
https://www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=J79K9xgfxwT6Syzx-UyWdD89	false		high
https://images.leadconnectorhq.com/image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/679929285d06f453fec255cd.png	false		high
https://stcdn.leadconnectorhq.com/_preview/CustomCodeRenderer.ccbb7827.js	false		high
https://backend.leadconnectorhq.com/funnels/funnel/geo-location/	false		high
https://stcdn.leadconnectorhq.com/_preview/surveyComponent.0437f737.css	false		high
https://ww1.sheingivesback.com/munin/a/tr/answercheck/yes?domain=sheingivesback.com&caf=1&toggle=answercheck&answer=yes&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D	false	Avira URL Cloud: malware	unknown
https://stcdn.leadconnectorhq.com/_preview/check-circle.db3b9a64.js	false		high
https://backend.leadconnectorhq.com/forms/form-survey-event	false		high
https://ww1.sheingivesback.com/munin/a/ls?t=67d4cf71&token=03431f44e37b70c9175e1b959296721b694ea8fa	false	Avira URL Cloud: malware	unknown
https://ww1.sheingivesback.com/?ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTEsYnVja2V0MDg4LGJ1Y2tldDA4OSxidWNrZXQwNzd8fHx8fHw2N2Q0Y2Y3MGYyODRifHx8MTc0MTk5OTk4NS4wMjcyfGQ5MTNjMTdmZDE1NGVmYjFmNGFiNTAyZTgxYTQ1ZTc0YmEyMmQ1NzB8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwMzQzMWY0NGUzN2I3MGM5MTc1ZTFiOTU5Mjk2NzIxYjY5NGVhOGZhfDB8ZHAtdGVhbWludGVybmV0MDlfM3BofDB8MHx8fHx8&query=Shine+Dental&afdToken=ChMIpdbo0--KjAMVN4H9Bx1ZohMwEmoBlLqpjwdF5cbZT6gq_r3AGrYcJT3P7arfFBORI2LOrXZiTJLg40LDR1j6s3SThBoUjFvs448r0fwj1NsnXYgm-5MnghtAktpnTLYnPLw1LkGh5idyOlIlr-t22rJHh2TtsCd8f7zYkwLeIAE&pcsa=false&nb=0&nm=4&nx=255&ny=68&is=530x498&clkt=10	false		unknown
https://afs.googleusercontent.com/svg/right_chevron_icon.svg?c=%23ffffff	false		high
https://images.leadconnectorhq.com/image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4MAZ2xjK7dyF9BQAK/media/67992928fcaefa51c698ccb6.png	false		high
https://ww1.sheingivesback.com/munin/a/ls?t=67d4cf83&token=19fe8fb83187a140d59b022cd60290330bfcf0ba	false	Avira URL Cloud: malware	unknown
https://stcdn.leadconnectorhq.com/_preview/Survey.0428aefd.js	false		high
https://ww1.sheingivesback.com/munin/a/tr/browserjs?domain=sheingivesback.com&toggle=browserjs&uid=MTc0MjAwMDAwMy41OTc3OmYzMTQyNjY4ODkzYzVmMzQ4NWE3ZjAwMzM2MzMxMjZmMWZkNDViNmRiY2Y5ODFlYzA1ZTYzNjE1MDhmYTE4Yzc6NjdkNGNmODM5MWU5Yw%3D%3D	false	Avira URL Cloud: malware	unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://stats.g.doubleclick.net/g/collect	chromecache_265.1.dr, chromecache_148.1.dr	false		high
https://nojs.domaincntrol.com	chromecache_253.1.dr, chromecache_214.1.dr, chromecache_186.1.dr	false	Avira URL Cloud: safe	unknown
https://syndicatedsearch.goog	chromecache_231.1.dr, chromecache_193.1.dr	false		high
https://cloud.google.com/recaptcha/docs/troubleshoot-recaptcha-issues#automated-query-error	chromecache_162.1.dr, chromecache_227.1.dr	false		high
https://domaincntrol.com/?orighost=	chromecache_253.1.dr, chromecache_214.1.dr, chromecache_186.1.dr	false		high
https://stcdn.leadconnectorhq.com/_preview/HLImage.050efcef.js	chromecache_189.1.dr	false		high
https://support.google.com/recaptcha/#6175971	chromecache_162.1.dr, chromecache_227.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-regular-400.eot);src:url(https://st	chromecache_189.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-brands-400.svg#fontawesome)	chromecache_189.1.dr	false		high
https://ev.st.adsmurai.com/v1.0/events	chromecache_308.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/store/video-placeholder.png	chromecache_295.1.dr	false		high
https://support.google.com/recaptcha	chromecache_227.1.dr	false		high
https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5	chromecache_231.1.dr, chromecache_193.1.dr	false		high
https://images.leadconnectorhq.com/image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/nJ2G	chromecache_189.1.dr	false		high
https://images.leadconnectorhq.com/image/f_webp/q_80/r_768/u_https://assets.cdn.filesafe.space/rVQ4M	chromecache_189.1.dr	false		high
https://krux.github.io/postscribe	chromecache_306.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-brands-400.ttf)	chromecache_189.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/store/arrow-right.svg	chromecache_295.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-brands-400.woff)	chromecache_189.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/store/empty-list.svg	chromecache_295.1.dr	false		high
https://connect.facebook.net/	chromecache_166.1.dr	false		high
https://stats.g.doubleclick.net/g/collect?v=2&	chromecache_265.1.dr, chromecache_148.1.dr	false		high
https://github.com/krux/prescribe/	chromecache_306.1.dr	false		high
https://images.leadconnectorhq.com/image/f_webp/q_80/r_1200/u_https://assets.cdn.filesafe.space/rVQ4	chromecache_189.1.dr	false		high
https://images.leadconnectorhq.com/image/f_webp/q_80/r_480/u_https://assets.cdn.filesafe.space/rVQ4M	chromecache_189.1.dr	false		high
http://ww1.sheingivesback.com	chromecache_241.1.dr, chromecache_150.1.dr	false	Avira URL Cloud: malware	unknown
https://stcdn.leadconnectorhq.com/funnel/store/ticket-02.svg	chromecache_295.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-solid-900.svg#fontawesome)	chromecache_189.1.dr	false		high
https://github.com/google/safevalues/issues	chromecache_207.1.dr, chromecache_151.1.dr	false		high
https://cloud.google.com/contact	chromecache_162.1.dr, chromecache_227.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/fontawesome/webfonts/fa-solid-900.ttf)	chromecache_189.1.dr	false		high
https://www.google.com/recaptcha/api2/	chromecache_162.1.dr, chromecache_227.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/store/default-product-image.svg	chromecache_295.1.dr	false		high
https://cloud.google.com/recaptcha-enterprise/billing-information	chromecache_162.1.dr, chromecache_227.1.dr	false		high
https://googleads.g.doubleclick.net	chromecache_148.1.dr	false		high
https://gw.conversionsapigateway.com	chromecache_166.1.dr	false		high
https://stcdn.leadconnectorhq.com/_preview/MoonLoader.e04a6804.js	chromecache_189.1.dr	false		high
https://www.gstatic.c..?/recaptcha/releases/J79K9xgfxwT6Syzx-UyWdD89/recaptcha__.	chromecache_162.1.dr, chromecache_227.1.dr	false		high
https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca	chromecache_162.1.dr, chromecache_227.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/store/minus.svg	chromecache_295.1.dr	false		high
https://images.leadconnectorhq.com/image/f_webp/q_80/r_768/u_https://assets.cdn.filesafe.space/nJ2GB	chromecache_189.1.dr	false		high
https://td.doubleclick.net	chromecache_265.1.dr, chromecache_278.1.dr, chromecache_148.1.dr	false		high
https://github.com/jackocnr/intl-tel-input.git	chromecache_152.1.dr	false		high
https://stcdn.leadconnectorhq.com/funnel/store/empty-cart.svg	chromecache_295.1.dr	false		high
https://google.com	chromecache_148.1.dr	false		high
https://adservice.google.com/pagead/regclk?	chromecache_148.1.dr	false		high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
18.66.121.138	d38psrni17bvxu.cloudfront.net	United States	3	MIT-GATEWAYSUS	false
172.64.153.218	backend.leadconnectorhq.com	United States	13335	CLOUDFLARENETUS	false
142.250.185.147	ghs.googlehosted.com	United States	15169	GOOGLEUS	false
104.18.34.38	images.leadconnectorhq.com	United States	13335	CLOUDFLARENETUS	false
35.244.239.233	cdn-st.adsmurai.com	United States	15169	GOOGLEUS	false
142.250.184.225	unknown	United States	15169	GOOGLEUS	false
54.75.69.192	obseu.seaskydvd.com	United States	16509	AMAZON-02US	false
13.248.148.254	347875.parkingcrew.net	United States	16509	AMAZON-02US	false
142.250.185.68	www.google.com	United States	15169	GOOGLEUS	false
157.240.0.35	unknown	United States	32934	FACEBOOKUS	false
142.250.185.196	unknown	United States	15169	GOOGLEUS	false
142.250.185.206	syndicatedsearch.goog	United States	15169	GOOGLEUS	false
216.58.206.33	unknown	United States	15169	GOOGLEUS	false
172.67.22.83	core.service.elfsight.com	United States	13335	CLOUDFLARENETUS	false
104.22.69.95	storage.elfsight.com	United States	13335	CLOUDFLARENETUS	false
64.225.91.73	sheingivesback.com	United States	14061	DIGITALOCEAN-ASNUS	false
76.223.26.96	unknown	United States	16509	AMAZON-02US	false
18.66.121.69	unknown	United States	3	MIT-GATEWAYSUS	false
104.18.26.45	domaincntrol.com	United States	13335	CLOUDFLARENETUS	false
142.250.74.193	unknown	United States	15169	GOOGLEUS	false
142.250.186.132	unknown	United States	15169	GOOGLEUS	false
104.16.79.73	static.cloudflareinsights.com	United States	13335	CLOUDFLARENETUS	false
157.240.252.35	star-mini.c10r.facebook.com	United States	32934	FACEBOOKUS	false
142.250.184.243	unknown	United States	15169	GOOGLEUS	false
108.138.26.49	euob.seaskydvd.com	United States	16509	AMAZON-02US	false
172.67.71.102	universe-static.elfsightcdn.com	United States	13335	CLOUDFLARENETUS	false
162.159.140.166	dentalimplants-aesthetic-center.com	United States	13335	CLOUDFLARENETUS	false
104.22.68.95	static.elfsight.com	United States	13335	CLOUDFLARENETUS	false
216.58.206.68	unknown	United States	15169	GOOGLEUS	false
157.240.251.9	scontent.xx.fbcdn.net	United States	32934	FACEBOOKUS	false
104.18.27.45	unknown	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.7
192.168.2.23

General Information

Joe Sandbox version:	42.0.0 Malachite
Analysis ID:	1639107
Start date and time:	2025-03-15 01:52:05 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 34s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://sheingivesback.com
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	16
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal60.win@31/300@98/33
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): sppsvc.exe, SIHClient.exe, SgrmBroker.exe, TextInputHost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.184.238, 172.217.18.3, 216.58.206.78, 74.125.133.84, 142.250.185.110, 142.250.185.142, 142.250.186.142, 216.58.206.46, 142.250.185.194, 199.232.210.172, 142.250.184.206, 142.250.185.238, 142.250.186.161, 142.250.184.194, 216.58.206.66, 142.250.185.227, 142.250.186.138, 142.250.181.238, 142.250.184.251, 142.250.184.219, 172.217.18.27, 142.250.185.91, 142.250.185.251, 142.250.185.219, 142.250.181.251, 142.250.186.155, 142.250.185.187, 142.250.185.155, 216.58.206.59, 142.250.185.123, 172.217.16.155, 216.58.206.91, 142.250.186.187, 142.250.186.123, 216.58.212.155, 142.250.74.219, 172.217.16.219, 172.217.23.123, 142.250.186.40, 142.250.184.195, 142.250.186.168, 216.58.212.130, 142.250.185.78, 142.250.184.226, 142.250.184.202, 142.250.181.234, 142.250.186.170, 216.58.212.170, 142.250.74.202, 142.250.186.42, 216.58.206.42, 142.250.184.234, 172.217.16.202, 142.250.185.170, 142.250.186.106, 216.58.206.74, 172.217.16.138, 142.250.185.234, 142.250.185.202, 142.250.185.16
Excluded domains from analysis (whitelisted): fonts.googleapis.com, fs.microsoft.com, www.googleadservices.com, accounts.google.com, storage.googleapis.com, content-autofill.googleapis.com, slscr.update.microsoft.com, fonts.gstatic.com, partner.googleadservices.com, ctldl.windowsupdate.com, clientservices.googleapis.com, dns.msftncsi.com, fe3cr.delivery.mp.microsoft.com, clients2.google.com, redirector.gvt1.com, edgedl.me.gvt1.com, www.googletagmanager.com, tpc.googlesyndication.com, update.googleapis.com, clients.l.google.com, www.gstatic.com, c.pki.goog, www.google-analytics.com
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size getting too big, too many NtCreateFile calls found.
Report size getting too big, too many NtOpenFile calls found.
Report size getting too big, too many NtSetInformationFile calls found.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: https://sheingivesback.com

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	3279
Entropy (8bit):	7.905813661509354
Encrypted:	false
SSDEEP:	48:m5uIa7JDwEdAndb2vnCb8JxcHeamduvpYD0pBdadUZclYf+5o0YQAdX8NrsFKaSG:4Edox2vnCXRmdSaDoMxlYfMRASGKM6mb
MD5:	90BA7D5CE3EC85EC6F27BFAA6BD2BD97
SHA1:	F0958EBAABFBB65CA872D850B97206D51FB78A45
SHA-256:	B83729075355BD6BA382D860E69BD94627974B4B2A5DB2E7DAD9D94BD81D1D1B
SHA-512:	7F1EFA6051FB70516D0EF7C95080C881C8BB776FBF339ED79B8E2AEBDA3B82675F4FC9783436D055CA27EC5DD74E2E2B68E92B7090D60CF58A697B2D72E24A84
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR...x...x.....9d6.....sBIT....\|.d.....bKGD.].@.7......tIDATx...ip........o..%..\..L...6...PR.24.I.C._hg:..........0.S.A...IZL9..........-..V.j.....<vb[..V6...v..=...........zm.IG.3.d..T7....RE8..J(.F.B.B. ..@..\F.2....y.Jq..a...e.q...%S}.d.G..)...R).. ..[.2..9L..v.~.I.]&.8Q....'...........b.)-..U..Rg.v....V.&R.r..a..T.m_8.5....@....[.B..&..!....n.[.<s....z......!........kZ..=....R/w.B..O.N._.......9...T1...-..k....Y.;K)F...>......Y.......-....f.-rgAi.......v<.}C....\e1m..S..j..\.....tu{}O.c.Sr._...jU..M.O.....=.....^<34./.g....../.......B.....R......./.&...5fY.6........v.]....y...>..~.Is.R.%y.-.].mM.....a9>....y...R...r.7.z.....w.TR....J....[....T.m...`.ZU..;.5V.I....e6.f7.o..G.2.\|.....4.n.}U.+zR.z.KY.fz?:?...._.........ho{..._.a.I.\|...&..;......Te.qG{.a.B.Qm..F.!.R..I%..d...6Ql......./....@...`.f.G...R.Ur.MU...\.<..V.{rI..;.?\....R....e......H..b.!....d.u}{.b...sG{....Z..*X.Q.....T($....@M.........E....^....zRS/f].xf.v..

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://sheingivesback.com

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 144

Chrome Cache Entry: 145

Chrome Cache Entry: 146

Chrome Cache Entry: 147

Chrome Cache Entry: 148

Chrome Cache Entry: 149

Chrome Cache Entry: 150

Chrome Cache Entry: 151

Chrome Cache Entry: 152

Chrome Cache Entry: 153

Chrome Cache Entry: 154

Chrome Cache Entry: 155

Chrome Cache Entry: 156

Chrome Cache Entry: 157

Chrome Cache Entry: 158

Chrome Cache Entry: 159

Chrome Cache Entry: 160

Chrome Cache Entry: 161

Chrome Cache Entry: 162

Chrome Cache Entry: 163

Chrome Cache Entry: 164

Chrome Cache Entry: 165

Chrome Cache Entry: 166

Chrome Cache Entry: 167

Chrome Cache Entry: 168

Chrome Cache Entry: 169

Chrome Cache Entry: 170

Chrome Cache Entry: 171

Windows Analysis Report
https://sheingivesback.com