Play interactive tourEdit tour

Windows Analysis Report
https://us-west-2.protection.sophos.com/?d=intuit.com&u=aHR0cDovL2xpbmtzLm5vdGlmaWNhdGlvbi5pbnR1aXQuY29tL2xzL2NsaWNrP3Vwbj11MDAxLkh1OW5Ub0pMeHNKU1FSOFpIV244SWI3SmlrWUY2UE5YdjVWSy0yQkFmZVNwVkhQUk55LTJCRkR0Si0yQmhOVWZLWFR2ZXJvZnJLanZYVktINGJhNUtiVFgtMkJTNFhpZGQwY2hlRzhMd2JTdEVOU291TEdWSGRaTURZN0hlck0y

Overview

General Information

Sample URL:	https://us-west-2.protection.sophos.com/?d=intuit.com&u=aHR0cDovL2xpbmtzLm5vdGlmaWNhdGlvbi5pbnR1aXQuY29tL2xzL2NsaWNrP3Vwbj11MDAxLkh1OW5Ub0pMeHNKU1FSOFpIV244SWI3SmlrWUY2UE5YdjVWSy0yQkFmZVNwVkhQUk55LTJC
Analysis ID:	1409123
Infos:

Detection

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Found HTTP page in a blob

Phishing site detected (based on OCR NLP Model)

Found iframes

HTML body contains low number of good links

HTML body contains password input but no form action

HTML page contains hidden URLs or javascript code

HTML title does not match URL

Stores files to the Windows start menu directory

Classification

×

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

Found HTTP page in a blob

Source: blob:https://connect.intuit.com/15e687c4-5247-412d-a879-68089cd99de0	DOM page: Blob-based
Source: blob:https://connect.intuit.com/a12412f6-4261-4ca2-b3c8-5b627538a4d1	DOM page: Blob-based

Phishing site detected (based on OCR NLP Model)

Source: Chrome DOM

ML Model on OCR Text: Matched 92.0% probability on "#ickbooks Sign in The Alliance of Community Service PAYMENT AMOUNT Providers $250.00 Edit amount Invoice 2035 Due date June 30, 2023 Pay with bank transfer $250.00 Invoice amount Account type Total $250.00 Personal checking Routing number View invoice O Sorry, this field can 't be b , lank. Account Confirm account number Merchant details Email : cherie@thealliancecsp.org O Sorry, this field can 't be b /ank. O Sorry, this field can 't be blank. Account holder's namg e TRUSTe O Sorry, this field can 't be b/ank. Informetion is protected ane kept confidentiel Save e payment meth for fester future peyments. Sign in or creeta account By selecting Pay, you eccept the Terms of Service Our Globel Privacy Statement will apply to any personal information you provide us. You also allow Intuitto charge S250.OO to your beak account on March 14, 2024. a Pay $250.00 2024 Intuit Inc. All rights reserved. "

Found iframes

Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da

HTTP Parser: Iframe src: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdi

HTML body contains low number of good links

Source: https://qfp.intuit.com/NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: Number of links: 0
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: Number of links: 0
Source: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: Number of links: 0
Source: https://qfp.intuit.com/PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: Number of links: 0

HTML body contains password input but no form action

Source: https://qfp.intuit.com/NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: <input type="password" .../> found but no <form action="...
Source: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: <input type="password" .../> found but no <form action="...
Source: https://qfp.intuit.com/PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: <input type="password" .../> found but no <form action="...

HTML page contains hidden URLs or javascript code

Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da

HTTP Parser: Base64 decoded: deleted and remove any styles that are not needed\n@backgroundColor: #eceef1;\n@baseURL: 'https://lib.intuitcdn.net/fonts/AvenirNext/1.0/en/';\n\n.fontFaceProperties(@fontFace, @fontWeight) {\n font-family: 'AvenirNext';\n src: url('@{baseURL}@{fontFace...

HTML title does not match URL

Source: https://qfp.intuit.com/NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: Title: empty does not match URL
Source: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: Title: empty does not match URL
Source: https://qfp.intuit.com/PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: Title: empty does not match URL

HTML body contains password input

Source: https://qfp.intuit.com/NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: <input type="password" .../> found
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: <input type="password" .../> found
Source: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: <input type="password" .../> found
Source: https://qfp.intuit.com/PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: <input type="password" .../> found

HTML page is missing a favicon

Source: https://connect.intuit.com/t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: https://connect.intuit.com/t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: https://connect.intuit.com/t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: https://connect.intuit.com/t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: https://connect.intuit.com/t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: https://connect.intuit.com/t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: blob:https://connect.intuit.com/a12412f6-4261-4ca2-b3c8-5b627538a4d1	HTTP Parser: No favicon
Source: blob:https://connect.intuit.com/a12412f6-4261-4ca2-b3c8-5b627538a4d1	HTTP Parser: No favicon
Source: https://qfp.intuit.com/1WLv4nnDcSccVbE_?129191b8965c606d=olcJ5E_a24u-JgjqZRDgPc4JXFM5Issg6FFTlZioXrwmCvNiKW1jno_7EB8srsjvk2M9GDXfND_HqJ9UfIRurycSNVZoYxbArBYV0pqz179C1jAN8KVAgXBzSFLaPyNcOQRUuiolwuDaYMRLaw_iVWvIhOZIb_8VMSxk2gCUXEONYT5y4876TqSgV28Cn0dHOXZqW45CYCuGxcNDFgBPpQ40RZQ	HTTP Parser: No favicon
Source: https://h.online-metrix.net/tUeqv_5YBdNwdwmX?7013671c7a901d3a=U41ZL4cXj2FBu2uleJ-TSpvJUnfrQZUWyum6Dji3hkZioIiRI4dky7HM_DWWgPARewMKZaeulbw6wwqoh4Km7PdST_zVSPzhbQy7mHiATq33N6SKh3IkSCoWuSRuS3Sy8pT2OW_J1Ols3kjxrxiVnQ5k3qCBK6GbvfXW4V3gvkTTn6ZsSDTnnwzijrtcC3Dc0n-H06S8XMsMsci0iCIUumbKcc4	HTTP Parser: No favicon
Source: https://qfp.intuit.com/z6176tBjva3_Eklk?1eb46022e2233b5e=kX-9IxBJiz9Pw58-yvi1J2l2xsoCkDN6ZHuvZSrsB6nYYmjxAhVYFdd1ArQkhweV6UmCCXAHqzovwFp5Y0GTpHhCuH8MLbC5yngeMECB9FteZPiGulhe_-PkSwRaCd0panuvlssY3hXpe6H9roLS82jc-gZg6WIYTpShB7HTNNd3pyOHuMQ9gC5OvV1Ri93s6Y5TRqTTOFuSvMTnxaeNyg8yYQ	HTTP Parser: No favicon
Source: https://qfp.intuit.com/NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: No favicon
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: No favicon
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: No favicon
Source: https://qfp.intuit.com/jOUzFNgP84HlkHTh?9728248ee6feb5e0=xTzT69jJ_fJ9lVixrTgidFf7FDu0JjSqrG1rzNbnpGgtipxSwtE2n4FgDB_P0j2zKFbE79fEEjzWQtjfFp_hnVXR7CaFgNqjB7tRDFPfhU3bzPXoU1EVXQC1dv-7u8RTyMpBqHXM6wmcA84sYBRfjV4vdMtWA0Pb_NPNNdDDjByYgqEiyp32QBN29gXpQfe1eYobI4Ths51T0xujxxh41iAc8Ik	HTTP Parser: No favicon
Source: https://h.online-metrix.net/a_kynqEjqPeygz6B?5222cbbeb58ed236=FHteCApC460rSoxuS8O3q4IbX-eunvH9-5yyNDQzQYVpxAk-4kkiFmnto9iJlCgZpOVW9_NMv19hTVUgQ285b1R6YByBGvJZ6YObv4UtQW-GMT-y19CoGJBXt6OP6zRuaQQl0T2pGIJ9hlD3M_Da40p7eYIxffyc1uRN2O2D3Yvw239REgCvR-ROd5JOf3tWHT_9Ag_ZNBSMHJggRIZjHtPyq-g	HTTP Parser: No favicon
Source: https://qfp.intuit.com/q1sga_NSYz7FMCF5?bf577014541b5809=XgWkn7gAFGPd0n72UyiqdH1vLJlIAiDDBFXKK-ymrcIZlrXm082phdLLIx5OFhJFwxFrPogyBT2XKnXjK9u23d-JwnIPXGRqWlssCQ0e6ueU9AT1uIZiKBDZCG0SaHsSLzm5H7w2WxynzCixVQDEHtMCNXKZ40TWUHAt_BwdGuuMVSI81pRJ84yXVT0-DJdmcgUcWNazPA1hOP3lNfoXxyQpUw	HTTP Parser: No favicon
Source: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: No favicon
Source: blob:https://connect.intuit.com/15e687c4-5247-412d-a879-68089cd99de0	HTTP Parser: No favicon
Source: blob:https://connect.intuit.com/15e687c4-5247-412d-a879-68089cd99de0	HTTP Parser: No favicon
Source: https://qfp.intuit.com/w7zMnx4ZYbanrBNn?b2fd407fe813ebf8=wzTSmyPrHpfC3ufYC3nZvn9G0LjTvWD2ODYlhsbplw2DpBj0Rcr7n7BMh14kaYydG8idrW6XVPsFxIcgf7zyMDE9cQno-BiaOoAAt1VXiNtxigDMT-zLpgvfEQGrzEzjke0PoZtBDvWbvpfVCI-wdyqXx-yoIeaLcWe5PEayO5QwLS2DjP0WYv6TBO-5zzmqPx8EUERRt_c2aBwhhdWx8o4rv7A	HTTP Parser: No favicon
Source: https://h.online-metrix.net/02bOr5tWLVTD4d9w?8e26d9e426594d4c=p_dHOeVEkvTc_rTHaU7VpMjVVsVsU3B92J59k1ivZcxu1xRXOl2kOlNkYsL_7-p7sRIkvKyXb_qtzjpGmW5i_695HKRDhQ0J_iYTHq-xfMDgHbTD_61b7Nwn-JA49gAA8HM4TmLROxOW6vTKdtXo-FXcbpCKfsGNdKB_cIKUyBay8e2LMivGthb11LGS8RtRW50PEZA_4LpzKSPBASx6DcOYHAs	HTTP Parser: No favicon
Source: https://qfp.intuit.com/PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: No favicon
Source: https://qfp.intuit.com/6Mxh143-sqmNMwaU?c4305afae9eca5f0=Tr10cODhGkaV7-LOuR9vt-RZb_LYMezf05GTw5DV3QF8jEyma2H33DRwSAY1SzJ66tgf902I0C3AOwYYyVkez1U6RRc8xMY-zIkIctXCwn7UOMrjTknYzB7c0Eb4DGIYkRjjzevIJkwUP_PFzagp8nSSXfO71hjdpRSzh39YEZ0YZnYTVcMC0bcrqa1q1E4mgLCJePmW48-4dC_Brm0pCxiaNw	HTTP Parser: No favicon

META author tag missing

Source: https://qfp.intuit.com/NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac	HTTP Parser: No <meta name="author".. found
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: No <meta name="author".. found
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: No <meta name="author".. found
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: No <meta name="author".. found
Source: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac	HTTP Parser: No <meta name="author".. found
Source: https://qfp.intuit.com/PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac	HTTP Parser: No <meta name="author".. found

META copyright tag missing

Source: https://qfp.intuit.com/NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: No <meta name="copyright".. found
Source: https://accounts.intuit.com/app/sign-in?app_group=InvoicingAndSales&asset_alias=Intuit.sales.customerexp.cpclient&redirect_uri=https%3A%2F%2Fconnect.intuit.com%2Ft%2Fscs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da	HTTP Parser: No <meta name="copyright".. found
Source: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: No <meta name="copyright".. found
Source: https://qfp.intuit.com/PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: No <meta name="copyright".. found

Compliance

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.16:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.16:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:49820 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:49880 version: TLS 1.2

Networking

Connects to IPs without corresponding DNS lookups

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.200
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 23.51.58.94
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.114.59.183
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108

Downloads files from webservers via HTTP

Source: global traffic	HTTP traffic detected: GET /?d=intuit.com&u=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&i=NThlN2NjYzYyOTljZjkxNGY4YmM0ZGE3&t=OCt3THdBT25HS2pyeUdoSk9NY25hRU02SlFET3BwSlBrOE9kUEdQVHJDRT0=&h=b4724174b03f4ea39adcca6ec84dc529&s=AVNPUEhUT0NFTkNSWVBUSVanjoOam2PSWZZXYcKt7aVlTK6quiW7kY6waH-p5Ism96qrAu1mvXL4EDhOrRyQF9jrk6MY03SMFoQ6gMGeti7dWBks3Q0GDvEDbSaPc7xwzg HTTP/1.1Host: us-west-2.protection.sophos.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/app/CommerceNetwork/view/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_US HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_US HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=kiM9cjnHcyD1eDECV0Pp9tGoCCbgsmCHIFfhH8JCWZ1c5DGueyevVDj8dyqxRDXsWzoTf7/TxI7OEfaQh6g/HDorA7W5/47PXiGTrYLvzILDlXeS3JjpbNDr2CDt; AWSALBCORS=kiM9cjnHcyD1eDECV0Pp9tGoCCbgsmCHIFfhH8JCWZ1c5DGueyevVDj8dyqxRDXsWzoTf7/TxI7OEfaQh6g/HDorA7W5/47PXiGTrYLvzILDlXeS3JjpbNDr2CDt
Source: global traffic	HTTP traffic detected: GET /truste.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/9835.59c20536643b9726.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/7868.851b65ef7fa1a422.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/1193.3dd404b7ea3c36c8.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/1962.9dd337ed07722414.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /fonts/AvenirNext-forINTUIT-Web-Fonts/AvenirNext+forINTUIT+W05+Rg_web.woff2 HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://connect.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/webpack-a24b9ca5b56162b8.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /fonts/AvenirNext-forINTUIT-Web-Fonts/AvenirNext+forINTUIT+W05+Demi_web.woff2 HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://connect.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/AvenirNext-forINTUIT-Web-Fonts/AvenirNext+forINTUIT+W05+Mediu_web.woff2 HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://connect.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analytics.js/v1/xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy/analytics.min.js HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/framework-560765ab0625ba27.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /truste.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/main-593e743601aca717.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/_app-587246fdc24981f1.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6859-0e318ca24b4b6137.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/5520-16545b48a5a487ca.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/3161-b6c7af2fa32e0145.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/3946-0dca6fc003a80429.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/5669-14d85219dc7865c6.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/1233-3a28dd69fd0044b6.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/5462-711f8f87cdea9843.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6195-0cfd0e69709e4026.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /v1/projects/xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy/settings HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://connect.intuit.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/2697-c14c2dc3a0e7ca33.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6019-bfca47d78d35eb34.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/4442-2d500e5432328016.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/payable-4c71aebd2ae148e2.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/1.19.6-release_1.19.6-d4efe44/_buildManifest.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/1.19.6-release_1.19.6-d4efe44/_ssgManifest.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/1727.deb24d7e20de4357.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/8482.b28cf868ec59260b.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6422-bdc0fea61f906695.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /v1/projects/xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy/settings HTTP/1.1Host: cdn.segment.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analytics-next/bundles/ajs-destination.bundle.13362ca512563a10e34d.js HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripts/04e01638/04e01638.js HTTP/1.1Host: bcdn-god.we-stats.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/rest/pdf/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da/invoice.pdf HTTP/1.1Host: connect.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0intuit-realmid: 193514575421034Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJkYXRhIjp7InRva2VuIjoic2NzLXYxLTA3MzZiOGVhZjUzMzRiOGI5MTU5ZDUyMDVhZjZkODcxODc3YjZjZGM0Yzk4NGI0NmE2OTRhOGNhNGVhMzk5ODk0ZDNmNTM4MjkxNWM0NmQxYWM2ZDFjMDVmMTU3NzZkYSIsInJlYWxtSWQiOiIxOTM1MTQ1NzU0MjEwMzQifSwiaWF0IjoxNzEwNDM1ODIyLCJleHAiOjE3MTA0NjQ2MjJ9.Gx49WQQRsKSZTwroF1OyoJZFLyowpQ2UWpcvyfxds9IUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36intuit_tid: cp-c58ee-bd9e-4eb1-b5d1-ce61f9527f41Accept: application/pdfbaggage: sentry-environment=production,sentry-release=1.19.6-release_1.19.6-d4efe44,sentry-transaction=%2Fpayable,sentry-public_key=ebe3b2c7c21247ebaee17c5bf4ca67c3,sentry-trace_id=e76ba931efdc4bf0887917281966031c,sentry-replay_id=0f3d623ee2784e488309c41dd2a5969bsentry-trace: e76ba931efdc4bf0887917281966031c-94b67bcfdd8c88dc-0sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_USAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=1HrmJ1AAqqTRRxRQ6OWMFizZYGTVoq5K3EAzaaimgXbdQavvjVgxWjUJuqC9ZU1Ip2XEQi6WojqHHfUOyyKQ/3J551deZgsGDxsav95q0MwsTudt3gL6iolA4+kJ; AWSALBCORS=1HrmJ1AAqqTRRxRQ6OWMFizZYGTVoq5K3EAzaaimgXbdQavvjVgxWjUJuqC9ZU1Ip2XEQi6WojqHHfUOyyKQ/3J551deZgsGDxsav95q0MwsTudt3gL6iolA4+kJ; ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD
Source: global traffic	HTTP traffic detected: GET /2qs7hypfhvun7oeh.js?t6i0qiegik3r8y8e=v60nf4oj&ib2xh689t73013cy=0AF14128D9E0417FA2D394A5E3CC37DD HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD
Source: global traffic	HTTP traffic detected: GET /analytics-next/bundles/schemaFilter.bundle.f63551a29dc1697f71b6.js HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /next-integrations/integrations/google-adwords-new/1.3.0/google-adwords-new.dynamic.js.gz HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD
Source: global traffic	HTTP traffic detected: GET /portal/rest/reporting/prometheus/view HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; AWSALB=L2u50+Terco3CnCHesY//tjx51OKV368mmo5AaEM5M10iRs3P4oxw1CVD4+7JLJJodBYfs7PRT3rnLI8JkJd1XPpGTVXq5L3Otqjw3kIRch/j0gl5LydQufU/OsW; AWSALBCORS=L2u50+Terco3CnCHesY//tjx51OKV368mmo5AaEM5M10iRs3P4oxw1CVD4+7JLJJodBYfs7PRT3rnLI8JkJd1XPpGTVXq5L3Otqjw3kIRch/j0gl5LydQufU/OsW
Source: global traffic	HTTP traffic detected: GET /portal/rest/invoice/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da/view HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; AWSALB=jHWEYoWlcExp/AR0PiHn9McJ7z832cF0COz2Y3PnG7w+L4FT2dt1AlJN5XQ5iIh8ijVHB1kVohBB8Lm9Ser9FBS1H3yXQmsIwcI5QTlFMXtDT/k5HxwEPKfDa8Fo; AWSALBCORS=jHWEYoWlcExp/AR0PiHn9McJ7z832cF0COz2Y3PnG7w+L4FT2dt1AlJN5XQ5iIh8ijVHB1kVohBB8Lm9Ser9FBS1H3yXQmsIwcI5QTlFMXtDT/k5HxwEPKfDa8Fo
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD
Source: global traffic	HTTP traffic detected: GET /next-integrations/integrations/vendor/commons.c42222c4cb2f8913500f.js.gz HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/rest/pdf/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da/invoice.pdf HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; AWSALB=JKjk9Q7AT0HRyyetV9l3X1XknwOgmlEWjERltEQP/Rex+Rw94JSZ5ch9l7OFlxwSR274cLmM50zWObJyYyhLosuWd6KfpWD7REnJBouxqJ5X2VVfz9OgZ0cK3CR6; AWSALBCORS=JKjk9Q7AT0HRyyetV9l3X1XknwOgmlEWjERltEQP/Rex+Rw94JSZ5ch9l7OFlxwSR274cLmM50zWObJyYyhLosuWd6KfpWD7REnJBouxqJ5X2VVfz9OgZ0cK3CR6
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /4MQJUPDZMl_pPQlT?dbfedacd7b055c79=HxmH2fP0Cyn1_MVyhivF9xWLrtu5Obeo4c60jCfShzsM5_YrvKv3lzVLO6HsUgvMQgXJwFti6vcFtrNkmeBK_RRXeHBizYM3UvKawKXpe_On4bT3Tfi88JMq3A0466VB74SisdGSV49whAErq4KCQBPxse80NkugG6xbxPBVKcxtix0YL85HWZACfWukUUXY6jHBeo_niZYadk_eUogRaYc&jb=353924266a736d7d3d5f696e646f75712668736d3557696e646d7571273030313026687362753f4b687a6f6d65266871623f436a7a6f6d65253032333335 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /dIFmq6hDXRSIc3fB?0fec851fe3e617a1=iyUNhY8xiJtnifqsAv-TBMmR4KG5Qxdbn46Pvhp9M15jIgOhFqVwYHPMu1EwsYrgPCYcl0bU9OvIcYeFLNDzL-lxSHpf19OFKR7TEWiPuPKDBssyyFOjtNznOe8MRKM-dJ0v7aCFgynkTnvZlIadQ2UfrCKGLwpZFHMQ1e1zWwlnLw HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /Amm9fS7QFpFHlX-E?2cdb99f897354cae=wMFdSB4X1txJRScabQU3hJDRKtnSaI3MA5POCbjn3yMjir3EymeTL1RK0z9ec13u65pjRKRGCv6smuDQCpNJbDgJm6AfcZvQtkOeClLrBzTmyNsBqOGXEJ9KZPSTJ2TqblTDFusggy9zaViwEYmD9Xm_Gco-T4r5aNYkwR79ZL00gA HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dIFmq6hDXRSIc3fB?0fec851fe3e617a1=iyUNhY8xiJtnifqsAv-TBMmR4KG5Qxdbn46Pvhp9M15jIgOhFqVwYHPMu1EwsYrgPCYcl0bU9OvIcYeFLNDzL-lxSHpf19OFKR7TEWiPuPKDBssyyFOjtNznOe8MRKM-dJ0v7aCFgynkTnvZlIadQ2UfrCKGLwpZFHMQ1e1zWwlnLw HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /Amm9fS7QFpFHlX-E?2cdb99f897354cae=wMFdSB4X1txJRScabQU3hJDRKtnSaI3MA5POCbjn3yMjir3EymeTL1RK0z9ec13u65pjRKRGCv6smuDQCpNJbDgJm6AfcZvQtkOeClLrBzTmyNsBqOGXEJ9KZPSTJ2TqblTDFusggy9zaViwEYmD9Xm_Gco-T4r5aNYkwR79ZL00gA HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /portal/rest/reporting/prometheus/pageLoad HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AWSALB=TmB9S6FhOnP6s7EkxMqJ2kAz6/aB+MzoJjnSN3R9hXoF+3YAyf4sKrSjPdyD7lYlJLUv5w+mys4o472naoSBFWNaiYTR8gcs3rt4cbZPytsh0TcRdhPCq4Kpoiv4; AWSALBCORS=TmB9S6FhOnP6s7EkxMqJ2kAz6/aB+MzoJjnSN3R9hXoF+3YAyf4sKrSjPdyD7lYlJLUv5w+mys4o472naoSBFWNaiYTR8gcs3rt4cbZPytsh0TcRdhPCq4Kpoiv4
Source: global traffic	HTTP traffic detected: GET /NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*, v60nf4oj/7458014351beb2140af14128d9e0417fa2d394a5e3cc37ddsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://connect.intuit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /z6176tBjva3_Eklk?1eb46022e2233b5e=kX-9IxBJiz9Pw58-yvi1J2l2xsoCkDN6ZHuvZSrsB6nYYmjxAhVYFdd1ArQkhweV6UmCCXAHqzovwFp5Y0GTpHhCuH8MLbC5yngeMECB9FteZPiGulhe_-PkSwRaCd0panuvlssY3hXpe6H9roLS82jc-gZg6WIYTpShB7HTNNd3pyOHuMQ9gC5OvV1Ri93s6Y5TRqTTOFuSvMTnxaeNyg8yYQ HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /1WLv4nnDcSccVbE_?129191b8965c606d=olcJ5E_a24u-JgjqZRDgPc4JXFM5Issg6FFTlZioXrwmCvNiKW1jno_7EB8srsjvk2M9GDXfND_HqJ9UfIRurycSNVZoYxbArBYV0pqz179C1jAN8KVAgXBzSFLaPyNcOQRUuiolwuDaYMRLaw_iVWvIhOZIb_8VMSxk2gCUXEONYT5y4876TqSgV28Cn0dHOXZqW45CYCuGxcNDFgBPpQ40RZQ HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /TMehBclNkWsfSYb-?5e64aeab4345afd2=p6JjviTVn21_4-JCoY8f-VgdmCz5JTyYxihtK0_NFsYr1bmzcv1OurrvFK4IHNUXWo2hJXUKG9EJMYypXpOE1N8QITT9CLdabY7mYGSiP6CVTlB5LnjoTS10d6raARxmU56oY5I66cVnimcGFHlGILYndChnKFJUzg&jb=3336246c73613f3b30693432306433333932343631656362323263326760643030616135353236 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /pJaoTUclsdffU9tC?99cce8a0e15a0fea=MmnGflmlptidAXG9mzAyRq4yRkF55YsKaYwJHJzRT2xmmQEBoD5I5tSFcr3yZQqZe25bvdeE0Av-Qnc08HKw8T-3BAfQ_hc0wS2hw7aFvWzeWIa0v1eNplUqTsHyBOZgmRiwwBVnzB7MvugIrT3kAUG6SvPq HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /TMehBclNkWsfSYb-?5e64aeab4345afd2=p6JjviTVn21_4-JCoY8f-VgdmCz5JTyYxihtK0_NFsYr1bmzcv1OurrvFK4IHNUXWo2hJXUKG9EJMYypXpOE1N8QITT9CLdabY7mYGSiP6CVTlB5LnjoTS10d6raARxmU56oY5I66cVnimcGFHlGILYndChnKFJUzg&ja=32323134262661353638267a3d363224663f3130303078313030362463643d31323832783938362e7370793d307832246472723f392c313238322e333230342c31323a302c393a3c2c393238302c3b32372e313030302c3938362e322e32266d743d30376635336c3339343965366064323239603e366264333a3560326366336334246d6e3d302e736b643d3234246e683f68767c7073253343273044273246636f6c6e656376266966747569742c616f6f25304e742532467161712f74312d3037313662386769663d333334623a603933353b6c35323035636434663a3731383735623663666b346b3938346236346134393669386361346763313b3b38393464316635333a3a393935633436663361613666396330356633373535346461253344637461273b447e696577696c746f6b6367666f772532346e6d61636c65253346656e5f575b26786c3d3526726a3d6738323a646661353737333b316634656267383939316d623c613939323b326424686a35363339313b376336646436626237313665603a363c333238653b34653263323b266a736f3f556b6c666f777325303031302462736a3d4368726d6f65273232393137266a716d773f55696e646f7573266a716a75354368726f6f67266c68613534266e646f3f3a246c6d74703d3226747a6635457d726f7065273046587570616368266d63766a703f3430303366316332606d63383265366361373632303a3a616431353736323364643435383a313431663e656961323464613b346366606c3732333131333b34632664723d6a747470712d3349253246253044636d6e6c6d63742e696c76776b762e636f6d27324674273a467b63732d76332f303533346a386561663731313660386239313739643530383569663664383533383537603e63646334613b3a3660343661363b3461386169346d613339393a3b346633643d3338323933376136346431616334643163323d6639353737366663253146617c61253344746b67756b6e766f6961656e6f752d323e6c6f63616e6725314467665f555326723f726e7767696e5f646c61736a2d354d66616c736723706e7565616e5f77696c666d75715f6d65646b615f706e69796d7225354564636c716523786c7567696c5d63666d62655f6161726f62637c253d4566616c716721726c776f696e5f71776b616976696d6525374566616e7b6529706c75676b6c5f71686d6b6b7761766727374764616c736523706c7565616e577265616c726e617b65702d354566616e716723726c7567696c5f766c615770646179657227374564616e7b6521706c77656b6c5d646576616e767225374d66696c736521726e7565696c577376675f746b6775677225354564616c73672970647567696e5d68617461273d4566616c716724656e5f633d776762676c556d624f4c253230332c30273232204f70656e454e2730324553253232322e30273a304b68726f6d6b776d2b57676a474c253232454e514e25323045512532303326302d3230284f72676e454c273a304553253032454e514c2532304753253232392e38253230436a706f6f69776529576562496b765567624b697427323057676a4744414e474c475d696c7376696e6365645d63707063797325334025323047505457626c656e665d6d6b6e6f6978253342273032475a545f636f6e6f725f607d666e65725f68636e665d666e6761742533402730324758545f666e6f61745d6a6c6d6e64253340273232455a5c5f667261655d6667727468253340253230475054577368616467705f76657a7c7572655f6e6d662731422532304758545f766d787c7572655f616d6d7272677b73696f6e5d6072766125334225303045585657746d78747572675d636d6d727a657373696d6c5d7065746325334025323047505457746578747770655d666b647
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v1/assessment HTTP/1.1Host: risk-vendor-svc.api.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; ADRUM_BTa=R:27|g:56098a5c-c757-4839-97f7-2de4009c94b2|n:intuit-sbg-prod_87bcfab1-ad5a-4af1-95e0-7eed4f8a1800; SameSite=None; ADRUM_BT1=R:27|i:307331|e:1
Source: global traffic	HTTP traffic detected: GET /tUeqv_5YBdNwdwmX?7013671c7a901d3a=U41ZL4cXj2FBu2uleJ-TSpvJUnfrQZUWyum6Dji3hkZioIiRI4dky7HM_DWWgPARewMKZaeulbw6wwqoh4Km7PdST_zVSPzhbQy7mHiATq33N6SKh3IkSCoWuSRuS3Sy8pT2OW_J1Ols3kjxrxiVnQ5k3qCBK6GbvfXW4V3gvkTTn6ZsSDTnnwzijrtcC3Dc0n-H06S8XMsMsci0iCIUumbKcc4 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /zVCnW4PA8v8IhCfA?98824270ffbb9093=nIeC7cHpg4cvRlUvU1ePbNv0XfsH22KxhkJIieqNhKfX1mW8bqOEWH4kgvbk2lbdRd0U42pdVouppB8h23PDIP6ACbESHE2d9IDi2k6X4SQbwZ-AHo3Pshu4oAxqQPDw7y4bRVnK9g6jYeREKouH0Mp3ONO66L-Wg2Hip4-GV-s HTTP/1.1Host: v60nf4oji7pghu4ewjy2z7okztubqezkbnpgf5vy7458014351beb214sac.d.aa.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /Ptu0S39xwxzK4fBP?4417924b9ed50457=p0GztS9t_JRPCq_WOt0dphl9beqvjacwpooqXynWeHGJjzw8o_myyzKtlATyBaaaiv3Mx8ktZeQscoioe4IynhdCzYj6Gy52SCkH2Zt1y58U4l5duGtRAb-9NEGp1F4MPR7LSKhBWOSK1tZBPJX_8N0ePzcyhfCiqVQSIVs HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/s
Source: global traffic	HTTP traffic detected: GET /vztX7GbBnzpPVooQ?379b29d975c8b9d0=WM3fZaq_dal_qgRAvn3dc2TDH1twshvQwmIiJVT-TVBfUvxIxshjwkso2f9JdDDSjA_TY10VzHAxoIIJk6JwiPeU0NiiWQONiQctGX3_B9IqNZoGTtXezGxnOVZWmcJS_rkKLV-vyfgCm_nt_AlrQXF-xz2S65X5Oav70SsWV-082J1O0uJBM3-nbAXjsesXxLZ43JRYR75t2zNuPWQONl-XUg&jf=34313626736966577266643d7464705d5477304658446d33344c4c6d5143485726736b645f64637c6535313731303631353a323b2e7369645f767b72673f7765623a67636473632e7361645f6b657b3f3332353b3b3031333034323530633836343861653364323a30393036303830633834343a6b65336430313233323530333432323030343b3c356b61663631323b3261393739346662626760373635313837643a383031673b336c316538363563653764353c3833386563336064356637323531616434676d313a623430393236316763613f653934316631363363666334383b3861363631616e373161313436643139336b3132623360613636313366636230656561247b696c5f7369673f31303634323a32303262303166323b61633731363133613338356b34633363633766313637393665346461353233676163386160636535363e343d633530653660333b3934696465303230323664613236633061663333323b663a30613765373b343662643c6137383864363537633139393237366431643d3038373762353330626136316c31633038603724716b66723d30 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=353324266a616135312e7067655f777264637467352537422530303227303225334127374225303a766d722532322731413125354c253744 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /TMehBclNkWsfSYb-?5e64aeab4345afd2=p6JjviTVn21_4-JCoY8f-VgdmCz5JTyYxihtK0_NFsYr1bmzcv1OurrvFK4IHNUXWo2hJXUKG9EJMYypXpOE1N8QITT9CLdabY7mYGSiP6CVTlB5LnjoTS10d6raARxmU56oY5I66cVnimcGFHlGILYndChnKFJUzg&jac=1&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=+HlwbuwulofZeY7&MD=ztEvfot9 HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /zVCnW4PA8v8IhCfA?98824270ffbb9093=nIeC7cHpg4cvRlUvU1ePbNv0XfsH22KxhkJIieqNhKfX1mW8bqOEWH4kgvbk2lbdRd0U42pdVouppB8h23PDIP6ACbESHE2d9IDi2k6X4SQbwZ-AHo3Pshu4oAxqQPDw7y4bRVnK9g6jYeREKouH0Mp3ONO66L-Wg2Hip4-GV-s HTTP/1.1Host: v60nf4oji7pghu4ewjy2z7okztubqezkbnpgf5vy7458014351beb214sac.d.aa.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&jac=1&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /TMehBclNkWsfSYb-?5e64aeab4345afd2=p6JjviTVn21_4-JCoY8f-VgdmCz5JTyYxihtK0_NFsYr1bmzcv1OurrvFK4IHNUXWo2hJXUKG9EJMYypXpOE1N8QITT9CLdabY7mYGSiP6CVTlB5LnjoTS10d6raARxmU56oY5I66cVnimcGFHlGILYndChnKFJUzg&jac=1&je=3139242677656b353131312e39362c3032352e333134 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /p9XT4T5NNBwUjGB-?a2d7dc1c4480b3cb=NCPkMph7thHv8dSwaHsJOUeP-p-CePdbEdgHc4HLvynu66UJgDln49UZSfEHFPzoR828W8LPCYhvAlbwKZykTkE1RC51BsaaP7BiMhKc29lwtsU6OKhFLAkCzlAjnTUWjHXVivyxc-AfcjA9NMQO2zu6vxIvBHyMVmB5gbkvYMKg-6xYO4jtoMHg-8aWy2bI7yn32JceZ0rFR85J50BLOX5jug&jf=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://h.online-metrix.net/tUeqv_5YBdNwdwmX?7013671c7a901d3a=U41ZL4cXj2FBu2uleJ-TSpvJUnfrQZUWyum6Dji3hkZioIiRI4dky7HM_DWWgPARewMKZaeulbw6wwqoh4Km7PdST_zVSPzhbQy7mHiATq33N6SKh3IkSCoWuSRuS3Sy8pT2OW_J1Ols3kjxrxiVnQ5k3qCBK6GbvfXW4V3gvkTTn6ZsSDTnnwzijrtcC3Dc0n-H06S8XMsMsci0iCIUumbKcc4Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /MnAfrjiKe_jNdS5M?1f0639b16cbb1e90=o4gAePiTTE0yiqMsGCnLZdiuceKxYjb6U_TMvf6ILq5VD30vBOgU_VUyLqE_6_fQcZ670EMImBKOu7FS2n6RsNEMRvB_hoA3OiZob8sB_WKyf2HOJ3PYqPEs69KYzlfSdQ7C7UnvXdiJpEiRGH8zyHl2ziGoRCpLBg&jf=3336246c73623f3c646e626463633267666430363a37393937353a336030356333663536383563 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/z6176tBjva3_Eklk?1eb46022e2233b5e=kX-9IxBJiz9Pw58-yvi1J2l2xsoCkDN6ZHuvZSrsB6nYYmjxAhVYFdd1ArQkhweV6UmCCXAHqzovwFp5Y0GTpHhCuH8MLbC5yngeMECB9FteZPiGulhe_-PkSwRaCd0panuvlssY3hXpe6H9roLS82jc-gZg6WIYTpShB7HTNNd3pyOHuMQ9gC5OvV1Ri93s6Y5TRqTTOFuSvMTnxaeNyg8yYQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /oV8gLlSfak6ibu0O?2acab1928d6135b2=yMbMGXd1ZIFCM9p0Qo8v1mPpSdHPOaxzdaz_Q1m31u2Lz1PVMDg_SP9byKnEofSTtVcEokJtSY2x5RrDJWw3m2iidHoerEINvzefJiw-xG94yEi7H1bDqdSAC9jPWLGakuN3Q2nJLylWpbmZqddNv_VvToRh&fr HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/z6176tBjva3_Eklk?1eb46022e2233b5e=kX-9IxBJiz9Pw58-yvi1J2l2xsoCkDN6ZHuvZSrsB6nYYmjxAhVYFdd1ArQkhweV6UmCCXAHqzovwFp5Y0GTpHhCuH8MLbC5yngeMECB9FteZPiGulhe_-PkSwRaCd0panuvlssY3hXpe6H9roLS82jc-gZg6WIYTpShB7HTNNd3pyOHuMQ9gC5OvV1Ri93s6Y5TRqTTOFuSvMTnxaeNyg8yYQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /kWwSMT0aLuCKZo90?04deb874fa11d89c=ZK4PqiDqqMEkbI-S5-0hyWBVXZHh_8ZFi62jDuAgpXNTGybTZfSslUEbIa5ecnyiiwCU7f6sEmQaibVh-UWOhxUnPPY8LZGR4Q-r0mp8xKvHei45LMCSZeuv-ZE6w3OSS7DYY43o0j5jegEAx29DdhIufeTsD-0aZvxXT0OrnRcvyPJT2pJoPP68NK_L6Gr5V3ELIJWEdR3HIJ4HMip-qQ&sera_parametere=UUQIAABTB1IEAwFWUAsBAARXBllWVVVXUQZUUVRTBAJWUldaCAlRUgwFB0MRQQxdWURATEMUB3cQBiBAVXYUBgdeRl1cVFlWW0URQFF2FAN1BBAPdBQGA11eERERFwJwEgN3HQd1EldcDFcHUQsGBAVRBQsDBgAEBgIBBwdXCFEEBAAIVFRSVwxUBlNQC1BWA1UTVl9fV1YIBlZQWgIAAAQBBFpVUwYCARcIFl8CSVJWUgENBVcCB1FXUAcEVFAFUQRRCQBTBgMFU1RUBwFQVQAMUFsBBwIVVFhfVFoDCRJeXQgVARdEWggIW1xbChdcXAkTWg1yXEFaXAdDAEQMBQYDE1pfQglkXF8GChVBF1dVCUFcSm5XUlldAAQBWRdRQwkGCw%3D%3D&count=0&max=0 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/NNoReibyqqk2c0Cu?8a7dc2b1559a0e49=tVZ-iM-W51Nj6hfbHLj-QlNWdvBSYHE6SZkAkiB13wfa2DFCOD61hfdxp20kIjFxr4H1IiEyknPaWQnYcRGn4-4hfRUHco8w2QlnKN5RgsyWk0CW3Dtz0YW4Q5JLl8YGTtRbFQsZ273puSbbDt_Xgg&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/tran
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=313937262672677e3d3c392e36342e34342c30322436342e30322e34362c30302c36362e30302e3e342630302c36362c30322c343c2e30302c34362c32322c36342e32302c36362630382c36342e32322c34342c38302c36342c32322e34342e30302e36342e32382c3e342e30302e34342c30322436342e30322e34362c30302c36362e30302e3e342630302c36362c30322c343c2e30302c34362c32323a312e3032303030384a44574368726f6f673a4a5a3849523a53435d323841565f313a444f5f343937 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa3301791
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: sc
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=353131262672677e3d3c392e36342e34342c30322436342e30322e34362c30302c36362e30302e3e342630302c36362c30322c343c2e30302c34362c32322c36342e32302c36362630382c36342e32322c34342c38302c36342c32322e34342e30302e36342e32382c3e342e30302e34342c30322436342e30322e34362c30302c36362e30302e3e342630302c36362c30322c343c2e30302c34362c32323a302e39323437362e382e31303030302e322e3a39363f342c302e3a3a3a3a3b2c302e383a3233352e382e30373530302e322e3a36343e372c302e3a373533362c302e38363631352e382e30333333332e322e3a313a39382c302e3b323232322c302e383a3838392e382e30373530302e332e32303238302c312e32323232322c312e30323030302e392e38303030302e332e32303238302c312e32323232322c312e3032303030384a44574368726f6f673a4a5a373a2e3335362e302c3532332c31352c3637342e3b31263934392c31362e3231362433302e37343b2e31332e3135332e31362e363f342433312e3237322c352e3b31342c33312c31363a2e37312e3936322c323226363e312c33322c3737312c343a2e3131322e31312c3735372c32322e38373524333f2e3435332e372e33383b2433322e3334302e31362e393635384152302c3830383a455a2d3338544731385b435f363a41565d30303a444d5f3a3936 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=3131353226266869633531266d6f7771656f763f2d3742253230746770273232253343332532412d323a7374617276273230253149313731303631373a303932323627324325303a6566642532322731413035333a302532432730307161726f6c6c273232253149302d324325323066697174636663652532302731433736362e3631253243273a3261646c6525303025314131392532432530322730306d6f757367253232273b412d3742253230776e666564616e65642530302731432537422530324c43273a322d3341322530412530324f4b2532322531433227304325323250432532302d3349302532432730324d50273a3225334164636e71672532432530325459524d253a3225334127303251504346253232253546273546253744266f73743d273f422d3232766570273230253149332532432730306f665f6d696e2732322531493139322e383927304327323065645f61766527303027334131383a2e3838273a432d32326d645d6f617a25303a2533413235302c37362532432530326d765d656966253232253143302732412d32326d765d637465273232253343302e30332d324b2532326d745d6d6378273a32253341322c32312732432532306d695f6f616e2d323225334333253043273a326d695f63746527303225334133253243273a3265695f6d617a273230253149312532432730306f615f6d696e273232253149312630322532412732306d6157617667253030273143312e303827324325303a6d6b5f6d6178273032273343392e313925304127303077645f6d6b6e2532302d33493025324327303275645d6976672532302731433225324325303277645d656170253232253143302732412d323277725d6f6b6c273232253343302532412d323a77725f617465253032273b413025324127303075725f6d617a253232273b413825324325303062665f6f616e2532322731433027324325323062645f637e672d323225334337302c35273a4325323260665d6f6378253232273341393b2d324b25323262615d4c2732302d33413225304127303062635f4d273232253149302d324325323060635d52273a322533413227304127323264746b253232273b413d36362e363127324125303a617679253030273143302e303227324325303a647c7325323227314137353526383425324127303061747525323025334132263930343525324127323074766125323225314330373332302532412532327169702d3232253343322e3232273a4325323263607027303225334133393437373a253a432532326a6f652732302d334130253041273030686d7325303225334338253a432532326a63652732302d334130253041273030686e6525303225334338253a43253232666c692732302d334131253041273030646e7325303225334339253a432532326f6c6f2732302d3341302530412730306d746f25303225334338253a432532326f716f2732302d3341382530412730306d6d6325303225334339302d32432532306f6d6f25303a25334135322c3b3b2732432532306d736d273a322d3341302e3230253043273a3276736d273030273141302e3036253243273a327e616d253230273343302c3831253744 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetc
Source: global traffic	HTTP traffic detected: GET /v2/segment/sbseg-qbo-clickstream/m HTTP/1.1Host: eventbus.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSe
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=31323b3626266869633531266d6f7771656f763f2d3742253230746770273232253343332532412d323a7374617276273230253149313731303631373a303932323627324325303a6566642532322731413131333a392532432730307161726f6c6c273232253149302d32432532306669717463666365253230273143303036302e34372532412d323a69646c652730322733433b312532432730322730326d6f7571652532302d3349253742253030756c64676e696e65642730302731412537422732324c412d323a25334133273043273230454325323227314332273243253230524325303a253b41302532412732304f522d323225334364636e7165253243273232545b58452d32322533432732305352494e2532322735462730432532326363636f7766745c797065253030253141273f422532324e412730302533413227324325303a4d4b253232253143302732412d32325243273030273141302532412532324d58253a3225334164636c7165273a43253232565b5247273232253343253232716d6c6d63742d6f6c67253032273f44253744273546246f73743d2535422532307e657a253232253143332732412d32326d645d6f6b6c2732322533433131322c30392d32432532306f645d61746f2532322531433633302e31332530432532306564576d61782530302531413b30332e31322730412730326d765f6f696e25303a253b41302532412732306d7457617667253030273143302e303127324325303a6d7e5f6d6178273032273343382e30342530412730306d695f6d6b6e2532302d3349312532432730326f695d697667253230273143332e382532412532326f615f65617825323027334334273a432532326f615d6f6b6e253232273341312c38322d32432532306f635d61746f253232253143332c30372532432732326d61576d6978253232273141332e3b3025324325303075665d6d696e25303225334338253a4325323275665f6376652d32322533433227304125323277665f6d617a2d323a253341302730432732307f725f6d696c273030273341302530432532307f7257617667253030253141322d324325323075705d6f6178253230253341322d324b25323262665d6d6b6e273a322533413027304127323262645d617667273a322d334137322c3a253043273a3262645f6f637a27303225334133313525304b253a3262635f4e2732302531493525324327303060615f4d253230253341322d324b25323262615d522732302d3341302530412730306474692530322533433a303e302e3637273043273230697679253230273143322e30322530432532306c747b2532322531433535322c3133253243273030617675253232273341302c3a3730253243253030747669273a32253341313333303b2532432530327361722d323a253341302c32372732412d3232616270273030273341343935333634273a432d3232686d67273230253149302532432730306a6f7325323227334130273a432d3232686167273230253149302532432730306a6c6525323227334130273a432d3232646e6b27323025314931253243273030666c7325323227334131273a432d32326d6e6d273230253149302532432730306f766f25323227334130273a432d32326d736d27323025314931372532412730306f6d632532302533413039253a432532326f6f6d2732302d334134372c3b362730432532326f736d25303a253b41302e303527324125303a76736d253030273143302e323227324325303a76696d2532322731413225354c HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=393324266a616135312e7067655f777264637467352537422530303327303225334127374225303a616b636f756e7656797265273a3225334127374076707565253241253232716d6c6d63742d6f6c67253032273a4330253546273546273744 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwkSIdd_-5nk2kaG?ed46ef013e481db6=GWgXgjaNxMXJLZyo3GTDE7CujAmjw3GQV1Y5J9YkYXiuOsqjlGNq0A4H4Z-ajrWbbSAdmYMv_efC7gUM3irJdS5Z2auMCHbqmEl8JExoaBg9iADwxlGen4DO2WXy4qP9NZUT9Hi3diCBrvUlqQJwIK2MyzLR85H3Ki25nogICVJ9gfJrkp8iqAyl7g4t8EzclziqP_OglfVG6qbjL0Kj-ba_yA&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=+HlwbuwulofZeY7&MD=ztEvfot9 HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /polyfill/polyfill.min.js?features=default,Number.isInteger,Number.isNaN,String.prototype.repeat,String.prototype.endsWith,String.prototype.includes,Symbol,Symbol.iterator,String.prototype.startsWith,Array.prototype.find,Promise,Promise.prototype.finally,Object.assign,Object.keys,Object.values,Array.prototype.includes,Array.prototype.findIndex,Map,fetch,Set,Array.prototype.flat,Array.prototype.flatMap&flags=gated HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /requirejs/2.3.6/require.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /react/17.0.2/react.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /react-dom/17.0.2/react-dom.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@design-systems/theme/3.13.1/dist/appfabric/theme.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@ids/context/21.9.0/ids.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@appfabric/web-shell-core/9.47.2/PluginRegistryService.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /prop-types/15.8.1/prop-types.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@appfabric/pubsub/3.1.1/pubsub.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@appfabric/ui-profiler/3.3.2/ui-profiler.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@appfabric/intuit-analytics/0.0.14/intuit-analytics.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /@appfabric/web-shell-core/9.47.2/BaseWidget.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; ius_session=0AF14128D9E0417FA2D394A5E3CC37DD; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; _abck=107144C7539EE2E2EC4197208858AF5E~-1~YAAQ1joiFzEdFi6OAQAAGk3sPQsn4Fz3ZQ0akivjD+SJyfZvw/IfaCtbfIdAOOTibYD/vWuABXbKQxJBJS6nl5yfQgSiBNMoo/N3W4xA+rBiBRjLJOpJjUA7EpeQh+sEQepRB3pMlcMXDA5NUJ6TVlFjmSqjBwkG/5dETu5WN76j4p//yk0upk8uvebw+3qnEZDwHJNDWkrl/0qCeBfPtWdGaug0ws3v/D6YbHr2NklIhdMcbqOkqW5ehKqEcxfXYGoRO0xht9b9oQmiqLrgIohLunAZTZ+CGqwLrgGnm572vOKinFX+aBOt/Y6nKBQbDha1tgnWqvzPZF27BTVB+qKu2G+3V8C/G0fQsE+2Euvt6cKCl0lpYivlfV8=~-1~-1~-1; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361
Source: global traffic	HTTP traffic detected: GET /components/design-systems/tokens/main/11.15.2/css/intuit.css HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://accounts.intuit.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /redux-saga/1.1.3/redux-saga-effects.umd.min.js HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://accounts.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /components/design-systems/tokens/main/11.15.2/css/intuit.css HTTP/1.1Host: uxfabric.intuitcdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /7gi9gr0yvioahm7f.js?7tbo0g7fctsvl7e9=v60nf4oj&3djhsdrowz91vb3e=D53EBABA3C1447C8C5A1D35DBA8BC086 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; tmx_guid=AAzSke31ZpPtRvqwsN3Rc1U8o0f_A6LL8M7hLBYJCKw7tDSfKYIwN5jEFVQFSOsduO7V6S0NfLMSgI1OqaTycbgDo9nRow; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086
Source: global traffic	HTTP traffic detected: GET /v2/log/message HTTP/1.1Host: logging.api.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086
Source: global traffic	HTTP traffic detected: GET /v2/log/message HTTP/1.1Host: logging.api.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086
Source: global traffic	HTTP traffic detected: GET /v2/log/message HTTP/1.1Host: logging.api.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237
Source: global traffic	HTTP traffic detected: GET /v1/?ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6 HTTP/1.1Host: intuitvisitorid.api.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/jsonsec-ch-ua-mobile: ?0Authorization: Intuit_APIKey intuit_apikey=prdakyreswUFDpkOPDkky63TSWvxZbtemfYVms81, intuit_apikey_version=1.0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://accounts.intuit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$/app/sign-in$accounts.intuit.com$iip|identity|identity||/app/sign-in$
Source: global traffic	HTTP traffic detected: GET /v1/projects/GZ0egpAqK8XnaELNYlqttzjcaS4seAYX/settings HTTP/1.1Host: segment.intuitcdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://accounts.intuit.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /WH6sxarIkoMmw8kc?37d58ee1548717c7=cvdg3OQDl6p7BIokkcZbhvCROH5oOf-nGPYV-O2yz81BFDLU6rp-Usw3r7YEQQNeKO7M6csVWd9E9pmtkwIOsnp3vPx2EIsZxNDLu5D2UtJWo0DTt6Q4dj26t0Wi5KwmzujAmaHHt-PcBzTh_94ymkmhMDiBJc5amj30BO56Ft7r-u_Up0VnN_W7JcU-V0qqZvulZbRYlasY8kxPNx0f_hc&jb=3539242668736d753f55696e646d757b246a736f3d55696e666f7f71273238333026687360753f436a706f6d6524687b603d4368726d6d65273238333337 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$
Source: global traffic	HTTP traffic detected: GET /B-Slw62OPVesCQMv?7442e8fcc21c6545=2dt40BFune0z8VoxceOuYAgK_QTt8S0dyXHi3kb8GoYJTgnB0eBARoUYoQLoEN1R5Rjmvy0-0SBx8_V8MQKxnxaru_hX802o6xXqV2MgmXkoywZccoDCUfGvRLqdXOuPNhg5kMyIFMjn3uRb9g_nuKCfI0LVUX8fuZ-RjNI2fydVnA HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$
Source: global traffic	HTTP traffic detected: GET /Tn4Eo_9_s-0CHMCx?1834525856e5717b=KORqCzxd1-62LWLj1JDLm0QmKUs5NXykRhFTpoy7ZMoQiGcxUsz0BS9fP_Nq-0u2eBNQDKmDz5RAeN4anDoyDa8BnJWOx-fPGAD9valwKmWdJ9TnG1ihzqzhqAi-ImR7UE6NQOudmQq6SY1sabYHfQkvRpGAdTvMqf15z6M6dhCIBA HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$
Source: global traffic	HTTP traffic detected: GET /v1/?ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6 HTTP/1.1Host: intuitvisitorid.api.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$
Source: global traffic	HTTP traffic detected: GET /v1/projects/GZ0egpAqK8XnaELNYlqttzjcaS4seAYX/settings HTTP/1.1Host: segment.intuitcdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /B-Slw62OPVesCQMv?7442e8fcc21c6545=2dt40BFune0z8VoxceOuYAgK_QTt8S0dyXHi3kb8GoYJTgnB0eBARoUYoQLoEN1R5Rjmvy0-0SBx8_V8MQKxnxaru_hX802o6xXqV2MgmXkoywZccoDCUfGvRLqdXOuPNhg5kMyIFMjn3uRb9g_nuKCfI0LVUX8fuZ-RjNI2fydVnA HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /Tn4Eo_9_s-0CHMCx?1834525856e5717b=KORqCzxd1-62LWLj1JDLm0QmKUs5NXykRhFTpoy7ZMoQiGcxUsz0BS9fP_Nq-0u2eBNQDKmDz5RAeN4anDoyDa8BnJWOx-fPGAD9valwKmWdJ9TnG1ihzqzhqAi-ImR7UE6NQOudmQq6SY1sabYHfQkvRpGAdTvMqf15z6M6dhCIBA HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*, v60nf4oj/aef5996b3f5b5361d53ebaba3c1447c8c5a1d35dba8bc086sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://accounts.intuit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: d445cf489cfd43ba84e6a01e51ff48c6If-Modified-Since: Thu, 14 Mar 2024 17:03:50 GMT
Source: global traffic	HTTP traffic detected: GET /q1sga_NSYz7FMCF5?bf577014541b5809=XgWkn7gAFGPd0n72UyiqdH1vLJlIAiDDBFXKK-ymrcIZlrXm082phdLLIx5OFhJFwxFrPogyBT2XKnXjK9u23d-JwnIPXGRqWlssCQ0e6ueU9AT1uIZiKBDZCG0SaHsSLzm5H7w2WxynzCixVQDEHtMCNXKZ40TWUHAt_BwdGuuMVSI81pRJ84yXVT0-DJdmcgUcWNazPA1hOP3lNfoXxyQpUw HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /jOUzFNgP84HlkHTh?9728248ee6feb5e0=xTzT69jJ_fJ9lVixrTgidFf7FDu0JjSqrG1rzNbnpGgtipxSwtE2n4FgDB_P0j2zKFbE79fEEjzWQtjfFp_hnVXR7CaFgNqjB7tRDFPfhU3bzPXoU1EVXQC1dv-7u8RTyMpBqHXM6wmcA84sYBRfjV4vdMtWA0Pb_NPNNdDDjByYgqEiyp32QBN29gXpQfe1eYobI4Ths51T0xujxxh41iAc8Ik HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /cBMnNkZGiEtbTbZg?2186ae033012bb10=9bLTgx60WUMZwm3prH9GCYEhA10Gtje_aGU-6fawPqnMwoz_2pRkJx4EZOLiEaGevZmC3ix01uw3kyqTxoeMT8_xXDxu8mX_7xg2id2UYxeHZ3oBjRqhvfLAppPASTV9RLeJFMiPhDouPaWOWRMhytm-OsRUkfilKA&jb=3336246c71613f39613732613836633a363835346561306163333d3064346b3333643635603037 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /6u22XUUxpwh-VcCy?e33b63eb73482b1d=L6tEzXDIhXbpGV3x5jdxZO9Qo-4CMj2CalwxSMYg9ZiuNe8YAq9DhwGswoT1bJ7M7df0pnE8Cq3A01friNVO4q7MeSI_PPYcellwj-yQ2sN6TPwHn7yJPUmcj0zlGbqPcAR65cSzxoaBalilLKwCjn_Nd46M HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /cBMnNkZGiEtbTbZg?2186ae033012bb10=9bLTgx60WUMZwm3prH9GCYEhA10Gtje_aGU-6fawPqnMwoz_2pRkJx4EZOLiEaGevZmC3ix01uw3kyqTxoeMT8_xXDxu8mX_7xg2id2UYxeHZ3oBjRqhvfLAppPASTV9RLeJFMiPhDouPaWOWRMhytm-OsRUkfilKA&ja=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
Source: global traffic	HTTP traffic detected: GET /a_kynqEjqPeygz6B?5222cbbeb58ed236=FHteCApC460rSoxuS8O3q4IbX-eunvH9-5yyNDQzQYVpxAk-4kkiFmnto9iJlCgZpOVW9_NMv19hTVUgQ285b1R6YByBGvJZ6YObv4UtQW-GMT-y19CoGJBXt6OP6zRuaQQl0T2pGIJ9hlD3M_Da40p7eYIxffyc1uRN2O2D3Yvw239REgCvR-ROd5JOf3tWHT_9Ag_ZNBSMHJggRIZjHtPyq-g HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bf10EMTqRUhAcvro?55cd3fb47bc6a983=560P1n5ZNNx2bmySfoXAhaNj-85EcqX3xsHJS11Ls9BSXCEUFvBEi4ZQGPF-FrcpWLWaUzy4KZtGj-gd1o9bzIP_lvOCMr1Wi-mfiS1hoTzAPruRB5UXPJXyX3IlVXVUVs4uRtQfWz7xufLk0KojOYC7sDzkNfkPSt7JJ5anK18 HTTP/1.1Host: v60nf4oj5wfpj4rxhoq3rh2ziuh73uao3ixxzdscaef5996b3f5b5361sac.d.aa.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6If-None-Match: 6bc39831d0a143d9829084483c1a080dIf-Modified-Since: Thu, 14 Mar 2024 17:03:51 GMT
Source: global traffic	HTTP traffic detected: GET /Cc7qsfit3d8jgroO?3d5216dd007caca6=_T41Uco3RzVkPSDA_fCbnlHBiH3_PcQjHZv9-zTWCbJXYvOQsK5S2oxIK-FgeWqDv_8UdXf6bLyv-PnULTakNeaaCc2nSD2vaF7MIzH_rGwRjMmYOgB1UWmtSEL8yZaSVgw-DMjFQY11yc_HSGwLkZG59i9nT16gbD4sIH0 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/s
Source: global traffic	HTTP traffic detected: GET /wQcuYzpRdwSTsEvw?d337f391dd569549=N1XUPxO_cMOpS29N7ZUxAbKF1gB-9M3ktiApw10TM7x-Jt48UGUKvGAhawYkQQQcZ7GWP14MQMRrDMHYO-qs4u9a_vudi78B4D65zdooL_susbzQgaLOfFCMtffdpL781F4LdwmrbVWxxXBxytmoK-CSZc1OdFg1CMVnGdqzTot0xsgSDL72ewPe_pTm5AeYSjsWZihaFoLJXU8JL95sKXiwMA&jf=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5
Source: global traffic	HTTP traffic detected: GET /y7uVgQlLYPEG3gfU?d12e340cbd5378b9=Jqrwao94fqxsx4cyRwPfakUdecPgyH48i_csxFqoLmWhbmAnXut5ypYE94-JmgLhG2V_ZnfrdvZL_-CgwgqXShSTrsp9jPC3tp_SQCnvbJEwa6Z9jahGQhbbMcBEMMBtG_wSAglPdYs3v8ZjZfjom1TDYJDds1DcwME0XUSMKPg5mpt21MWyi0AY619KntfD0Dyh7Cdd2A42QZTIjG2M6OLSJA&je=353324266861613d33247067655d7778666174653d27374227323a3227323a273341273740253032746772253230273b4333253744273744 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /y7uVgQlLYPEG3gfU?d12e340cbd5378b9=Jqrwao94fqxsx4cyRwPfakUdecPgyH48i_csxFqoLmWhbmAnXut5ypYE94-JmgLhG2V_ZnfrdvZL_-CgwgqXShSTrsp9jPC3tp_SQCnvbJEwa6Z9jahGQhbbMcBEMMBtG_wSAglPdYs3v8ZjZfjom1TDYJDds1DcwME0XUSMKPg5mpt21MWyi0AY619KntfD0Dyh7Cdd2A42QZTIjG2M6OLSJA&je=3130333624266861613f31266d6d777b676d763d2535422530327e6770253a302533433327324125303073746170762d303225334133373132343b373a3938343935273241253032676c64253230273b433530392530432530327b61706f646e25323025314132253041253232666b7b76616e6365273232273349313a2e3a3a2532412530326b646e6725323227314933253243253030253032656d77736d273232273343253542273544253746246571743d253740253230766d7027323a273341312530432732306f645f6d6b6c2d303225334131382e30382d3041253a306d645d617467273230273341333a2c3a3a2532432530326d665f65637a253a30253343333a2e30382730432532306f7e5d6d696e253032253141382730432d30326d745f637665253030253341322c38362532432530326d745f65637a253a30253343302c303a2530412532326f6b576f696e253230253343302d3041253a306d695d6174672732302733413027304b2732326d695d6d617a253a30273349322532412530326f635d6f696e2530302d3141302532412532306d6b5d63766f273232273343302732412732326d615d65637825323227334132253a4127323a75645f6f696c253032273141302530412d303277645f63766727323a2731413827324327323077665f6f6378253230273b43302532432732327572576f6b6e2d30322531413225304327303277725d637e652532322531413027324b2730327f705f6d637827323025314330253241273a3062645f6d6b6e2530322d3143302d304325303260645d6174652532322731493225324325303262665f65637a253a302533433027324125303062635f4e273a302533413027324327323a60615f452732322733433027324127323262615d5a273232253343302530432d3030647c6b25323025314131382c3038253241273a30617679253032253141382c32382d3043253032667471253030253341313a26303825324327323261747d2730322d314131273241253032767669253230273b433531302530432530327b6372253a30253343302c303a25304125323263607a273232253343302530432d3030686567253230253141322530412532326a6f7b273232253343302530432d3030686967253230253141322530412532326a6c6d273232253343302530432d303064666b25323025314132253041253232666c7b273232253343302530432d30306d666d253230253141322530412532326f7667273232253343302530432d30306d7b6d253230253141322530412532326f6f6b273232253343302530432d30306d656f253230253141322530412532326f7165273232253343302e32382d3041253a3076736f2530322733433225324327303a74616d253230253343302d3546 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=34683379
Source: global traffic	HTTP traffic detected: GET /bf10EMTqRUhAcvro?55cd3fb47bc6a983=560P1n5ZNNx2bmySfoXAhaNj-85EcqX3xsHJS11Ls9BSXCEUFvBEi4ZQGPF-FrcpWLWaUzy4KZtGj-gd1o9bzIP_lvOCMr1Wi-mfiS1hoTzAPruRB5UXPJXyX3IlVXVUVs4uRtQfWz7xufLk0KojOYC7sDzkNfkPSt7JJ5anK18 HTTP/1.1Host: v60nf4oj5wfpj4rxhoq3rh2ziuh73uao3ixxzdscaef5996b3f5b5361sac.d.aa.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /y7uVgQlLYPEG3gfU?d12e340cbd5378b9=Jqrwao94fqxsx4cyRwPfakUdecPgyH48i_csxFqoLmWhbmAnXut5ypYE94-JmgLhG2V_ZnfrdvZL_-CgwgqXShSTrsp9jPC3tp_SQCnvbJEwa6Z9jahGQhbbMcBEMMBtG_wSAglPdYs3v8ZjZfjom1TDYJDds1DcwME0XUSMKPg5mpt21MWyi0AY619KntfD0Dyh7Cdd2A42QZTIjG2M6OLSJA&jac=1&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifi
Source: global traffic	HTTP traffic detected: GET /y7uVgQlLYPEG3gfU?d12e340cbd5378b9=Jqrwao94fqxsx4cyRwPfakUdecPgyH48i_csxFqoLmWhbmAnXut5ypYE94-JmgLhG2V_ZnfrdvZL_-CgwgqXShSTrsp9jPC3tp_SQCnvbJEwa6Z9jahGQhbbMcBEMMBtG_wSAglPdYs3v8ZjZfjom1TDYJDds1DcwME0XUSMKPg5mpt21MWyi0AY619KntfD0Dyh7Cdd2A42QZTIjG2M6OLSJA&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A
Source: global traffic	HTTP traffic detected: GET /VjznpkVn3M7MbfeX?3e65315d603ee373=Iq7FsK7sifomYZ2yzphlVImqjb34jOCqO8ZNWVpMZx3-GNLJVQ7eyy-cDazvcXn7D0iOnlDuTltECSHKicr0hjyiCkaLSasN_H1znwz5gUy0FOokeVWUjq7NNqN0LBEw9Xw9zrsnF1tP1sylyTerB7oKUrw-nsCouw&jf=3336246c71623f34666462646361326d64663034323539393537303360323d61336635363a3563 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/q1sga_NSYz7FMCF5?bf577014541b5809=XgWkn7gAFGPd0n72UyiqdH1vLJlIAiDDBFXKK-ymrcIZlrXm082phdLLIx5OFhJFwxFrPogyBT2XKnXjK9u23d-JwnIPXGRqWlssCQ0e6ueU9AT1uIZiKBDZCG0SaHsSLzm5H7w2WxynzCixVQDEHtMCNXKZ40TWUHAt_BwdGuuMVSI81pRJ84yXVT0-DJdmcgUcWNazPA1hOP3lNfoXxyQpUwAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /5wfhDMEw_1xeAyJ_?db997210036512b1=8v1v3kBRuLC5joif2tcyc4uePRSeXie-FnpKdu-xCBiik9PJJxDjm_vUwM-3N_v0nlDZf6wddEOTAxlDsCv3ibISr0kochbBYJDKU0fS-kUWuyzImSruLjjrKmkT6Pn3-aTtQWeorZbOO5D3wdu9TjldkMKR&data=AAzPwBcgCRt5cDuVlHpA_4tDl4Hb9BzybEEv0ltjitPG_2Nkf64NAmwu2asJj8UsJ_T1hMJSIM-OoHJn1Npbj3UUM4QYwA&fr HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/q1sga_NSYz7FMCF5?bf577014541b5809=XgWkn7gAFGPd0n72UyiqdH1vLJlIAiDDBFXKK-ymrcIZlrXm082phdLLIx5OFhJFwxFrPogyBT2XKnXjK9u23d-JwnIPXGRqWlssCQ0e6ueU9AT1uIZiKBDZCG0SaHsSLzm5H7w2WxynzCixVQDEHtMCNXKZ40TWUHAt_BwdGuuMVSI81pRJ84yXVT0-DJdmcgUcWNazPA1hOP3lNfoXxyQpUwAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /cBMnNkZGiEtbTbZg?2186ae033012bb10=9bLTgx60WUMZwm3prH9GCYEhA10Gtje_aGU-6fawPqnMwoz_2pRkJx4EZOLiEaGevZmC3ix01uw3kyqTxoeMT8_xXDxu8mX_7xg2id2UYxeHZ3oBjRqhvfLAppPASTV9RLeJFMiPhDouPaWOWRMhytm-OsRUkfilKA&jac=1&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://account
Source: global traffic	HTTP traffic detected: GET /7gmmMGuL3DuVo32y?ef44d2986135b9e1=6ZMvMZGrPyXqMFAwYx8PtYhaozzCicdz3KIb4Kf7_LybegpdtghbTACDklkGzUG8v2XxObQVZ0u4rhAiqlv13lIM2-bzkOZaCc_F3bGAqjvhvurLDHBtGuK_PJTRMip_PA5O1mUbndSLKiPJ0_GNBfYZmMLyhu9jNVzsCBekogKprv9KcOrMK1LXtogGNbmbHFIJASezVt1UNylUyt9-FYRg6Q&jf=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://h.online-metrix.net/a_kynqEjqPeygz6B?5222cbbeb58ed236=FHteCApC460rSoxuS8O3q4IbX-eunvH9-5yyNDQzQYVpxAk-4kkiFmnto9iJlCgZpOVW9_NMv19hTVUgQ285b1R6YByBGvJZ6YObv4UtQW-GMT-y19CoGJBXt6OP6zRuaQQl0T2pGIJ9hlD3M_Da40p7eYIxffyc1uRN2O2D3Yvw239REgCvR-ROd5JOf3tWHT_9Ag_ZNBSMHJggRIZjHtPyq-gAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cBMnNkZGiEtbTbZg?2186ae033012bb10=9bLTgx60WUMZwm3prH9GCYEhA10Gtje_aGU-6fawPqnMwoz_2pRkJx4EZOLiEaGevZmC3ix01uw3kyqTxoeMT8_xXDxu8mX_7xg2id2UYxeHZ3oBjRqhvfLAppPASTV9RLeJFMiPhDouPaWOWRMhytm-OsRUkfilKA&jac=1&je=3139242675656b3d333b312e39342c3a30372e313936 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /y7uVgQlLYPEG3gfU?d12e340cbd5378b9=Jqrwao94fqxsx4cyRwPfakUdecPgyH48i_csxFqoLmWhbmAnXut5ypYE94-JmgLhG2V_ZnfrdvZL_-CgwgqXShSTrsp9jPC3tp_SQCnvbJEwa6Z9jahGQhbbMcBEMMBtG_wSAglPdYs3v8ZjZfjom1TDYJDds1DcwME0XUSMKPg5mpt21MWyi0AY619KntfD0Dyh7Cdd2A42QZTIjG2M6OLSJA&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://accounts.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4
Source: global traffic	HTTP traffic detected: GET /t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_US HTTP/1.1Host: connect.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AWSALB=FJIvGiv3/9ic3rQFbNkBBGE4kuiHaGhcEgnrWYjEROOFKp4phOAk8dLKn7tzylSh3o71Koq+4V2BBspgKjbRSkCHPOWaTunqmzYjYLwFFoH5w/QwPIY71T7uO9Gh; AWSALBCORS=FJIvGiv3/9ic3rQFbNkBBGE4kuiHaGhcEgnrWYjEROOFKp4phOAk8dLKn7tzylSh3o71Koq+4V2BBspgKjbRSkCHPOWaTunqmzYjYLwFFoH5w/QwPIY71T7uO9Gh; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; ius_session=D53EBABA3C1447C8C5A1D35DBA8BC086; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6
Source: global traffic	HTTP traffic detected: GET /IXPekj4pY1P_JkH1?14b5ff5def45bddf=7ldt9OfUTusq2PI0_jP3mbnU7YI6zQjrZiiN1muUiuVSPXv9rjIz1mSjMntMVd3BV5caix0f8PKVSlCl_bD7cdcvwGfU5AdnEx8LPlx1K455rJA3_kZwGIaX_0cFj1-TgjSmcNtAxkyNJaAM4zmcLtj_ZD6AidHmy5JdTIyKEaLXHmQR8hR7XV9Ay4P8Jc5QqYlf72nql-JjfLXCgeYDZA&sera_parametere=BxVbBAgABQYKXldQVAEBBFEEBwFcXQQDAwNQA1dQAFVXUlQDCFwHUlYHVkRGQAtYDxUTQUocBSYWUXdHAncTA1EPFVBVXFsHXRJGRwZ3EwYjVUMCfRwEUlsJRhZGFgV1RFIkEA59EAZaWwAABgoBAVMAVgYKDgJVAFVWAFBWD1RSVVMFXVxQBgoDUVQHCldTVQRAW1ZXVQcOB1AEAAoPBwNWAABbDAVUAkBfEQgDTglVV19WDwwDBgtRBlYAAlBTAAZeAw8NBVAGXwNVAwNUAVNWVAMNCw5EUg8IUw0CDhcIDFsYCB9GCw5fDFsMCxBZClhAVwR6XhBcC1BEV0ULAFBSQFdWSgs1WghRDUJAEFIDWBJRQ2ZVA18KVwNWWBBUFVhVBQ%3D%3D&count=0&max=0 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/keokL-TF5E8HJ4Qw?be802d30a22934dd=L1xiwrbjBO6H3fOjWSYL1uzjaNUjtsAXzK5RtDxj-XhYP-u9pWso9RKwFaTnqNEf1LqJmoglN4-D8oF8wPKnqbw6G-PKLIjup94n5hKnJekn2IQKMHRnifA75mSVI9wHDHau4t_g0GenpXYC5opKHQ&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/tran
Source: global traffic	HTTP traffic detected: GET /portal/rest/pdf/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da/invoice.pdf HTTP/1.1Host: connect.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0intuit-realmid: 193514575421034Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJkYXRhIjp7InRva2VuIjoic2NzLXYxLTA3MzZiOGVhZjUzMzRiOGI5MTU5ZDUyMDVhZjZkODcxODc3YjZjZGM0Yzk4NGI0NmE2OTRhOGNhNGVhMzk5ODk0ZDNmNTM4MjkxNWM0NmQxYWM2ZDFjMDVmMTU3NzZkYSIsInJlYWxtSWQiOiIxOTM1MTQ1NzU0MjEwMzQifSwiaWF0IjoxNzEwNDM1ODk0LCJleHAiOjE3MTA0NjQ2OTR9.4TYM5eWKXc88cebOnVpFaarROy-QMrPVDqREpkvXisIUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36intuit_tid: cp-c07a5-59ed-4c06-aa97-40a631c09bb4Accept: application/pdfbaggage: sentry-environment=production,sentry-release=1.19.6-release_1.19.6-d4efe44,sentry-transaction=%2Fpayable,sentry-public_key=ebe3b2c7c21247ebaee17c5bf4ca67c3,sentry-trace_id=233ada55876a4c17aababec3abe1fc93,sentry-replay_id=0f3d623ee2784e488309c41dd2a5969bsentry-trace: 233ada55876a4c17aababec3abe1fc93-bfc01de8ca0e5178-1sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/t/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da?cta=viewinvoicenow&locale=en_USAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip
Source: global traffic	HTTP traffic detected: GET /d957gv6bwjq1mfg8.js?8udf59g8bystoc72=v60nf4oj&7w1ab9jv9kwsyx5o=C647F3E9EBDF4E78F0B5AF04E4596F49 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; cdContextId=2; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; tmx_guid=AAw57bwfxmE9pVSet5v04zZy2LYPig6D4hbU2ZVif1IBFRHtuWhzG1J0Ro9ETO-D3ctcb4t3Tk-1E58FqJY6p0UJwP64iQ; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4
Source: global traffic	HTTP traffic detected: GET /5McfXnEDXY1c-LWk?048898be6b9d96d9=CqtwwBp2mPD3pDyHY_M2zQFTpzVaM3VfzZ65cl_oI5rHFIzOiU2hdnq60Xvh5KGL53kF1rGs9dvebJWTsHMtPAuWhk4dvyTPkQHP1egbhwhpwyog_IAuzito_bMDXbCrjPGcjQcpupXkIodKKSRN27QXH57JQAzhL5OvuQk41676OQbCO4FDe6woVSJoTVbpjM8X-vrgjJp2GJdqAZybyX8&jb=373b262468716f7d3d55696c646f757b246a716f3d55696e646f777b2730303932246a7160773d4b68706f6f6526687b603d4168726d6d65253230393335 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ
Source: global traffic	HTTP traffic detected: GET /eHn1iFY9_HmmO3ro?7a51700ed96e4664=RrOLanB93Vj3KfklfcTfoZNWXsm1N30JgNu8J_VXHL0-T20PEsA7K1yn7pRf2Oygq80fy1xDJWq0rRGxIDnvzp2vELZrIXS3lG8tLH_mjdzHqHXY091TC3vHOd2dBTu9nwPf68OgqXHUpeGeOf79zk41ucmILeHrLlBq7sgJNYwU1g HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ
Source: global traffic	HTTP traffic detected: GET /portal/rest/reporting/prometheus/view HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; AWSALB=Sf3IrVqEGawZizdlE0JnzpJbsX3rMucScYI2vn8RUT00PO8v+voDeFpFQer15gi8CJbpNEq29RjCrv22FaxJux6J4EkSSCZPvhlf9/CBm7x9Zgq1cF20Q2GL3450; AWSALBCORS=Sf3IrVqEGawZizdlE0JnzpJbsX3rMucScYI2vn8RUT00PO8v+voDeFpFQer15gi8CJbpNEq29RjCrv22FaxJux6J4EkSSCZPvhlf9/CBm7x9Zgq1cF20Q2GL3450
Source: global traffic	HTTP traffic detected: GET /xIqUT9sGlTVf__0o?bf53a569fc8e224f=u9qim7fk4DRCpOyk61aPkAhIphkQuW9LOlqEtaJB69gNsf0cCBYZmKiOsMMdS2Zqu2iv0u-oLKG2uqEkLoJT6yv8EEJABTGgdCkZiUUeWRe7L_1-DB6Lb6Ue5ln_7qsOZucA-QHNVwwX1L8wDC_V2ZSlUKrbEz-ND8IwwgyEMGTqAA HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ
Source: global traffic	HTTP traffic detected: GET /portal/rest/invoice/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da/view HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; AWSALB=EN4PFC5WyZdJ846ajb9JpbTWkDMJPciAbaIjB15hEepIlLmV+w/Q27BiI79M+TjJqdInoOyYkBwjcNbFOcqsjvchR4LYIkGQSZ3Ll4m3d1gkil2fReYEjyvnJ1M7; AWSALBCORS=EN4PFC5WyZdJ846ajb9JpbTWkDMJPciAbaIjB15hEepIlLmV+w/Q27BiI79M+TjJqdInoOyYkBwjcNbFOcqsjvchR4LYIkGQSZ3Ll4m3d1gkil2fReYEjyvnJ1M7
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; cdSNum=1710435828047-sjc0000740-9682ffa6-a300-4e46-86d0-a073f55c0b03; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4
Source: global traffic	HTTP traffic detected: GET /portal/rest/pdf/scs-v1-0736b8eaf5334b8b9159d5205af6d871877b6cdc4c984b46a694a8ca4ea399894d3f5382915c46d1ac6d1c05f15776da/invoice.pdf HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; AWSALB=kkCx6ci1kHp6SiHgWITsXIx2Wd8uBYRxlPLbBsEhU7EFLLQFNtvPEWD818fN2xzImhqvAr6DlqZvCrYftTALWGVkSd8w3FkNse3GZgIQGU0EhZk2MMqN0knfrFTX; AWSALBCORS=kkCx6ci1kHp6SiHgWITsXIx2Wd8uBYRxlPLbBsEhU7EFLLQFNtvPEWD818fN2xzImhqvAr6DlqZvCrYftTALWGVkSd8w3FkNse3GZgIQGU0EhZk2MMqN0knfrFTX
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /eHn1iFY9_HmmO3ro?7a51700ed96e4664=RrOLanB93Vj3KfklfcTfoZNWXsm1N30JgNu8J_VXHL0-T20PEsA7K1yn7pRf2Oygq80fy1xDJWq0rRGxIDnvzp2vELZrIXS3lG8tLH_mjdzHqHXY091TC3vHOd2dBTu9nwPf68OgqXHUpeGeOf79zk41ucmILeHrLlBq7sgJNYwU1g HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f
Source: global traffic	HTTP traffic detected: GET /xIqUT9sGlTVf__0o?bf53a569fc8e224f=u9qim7fk4DRCpOyk61aPkAhIphkQuW9LOlqEtaJB69gNsf0cCBYZmKiOsMMdS2Zqu2iv0u-oLKG2uqEkLoJT6yv8EEJABTGgdCkZiUUeWRe7L_1-DB6Lb6Ue5ln_7qsOZucA-QHNVwwX1L8wDC_V2ZSlUKrbEz-ND8IwwgyEMGTqAA HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f
Source: global traffic	HTTP traffic detected: GET /portal/rest/reporting/prometheus/pageLoad HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; AWSALB=gCWa9+rImU84TodyJdQ1Y+HjjiiCBmwtvbkYxWORSyQ89zOfh3fXsaZ+2cERNveebMFgYHWrQyGOgUM3cjrc4yulFQ4HrbkTqkA1BH2BhvnOucaLg4UQi3/sL9FC; AWSALBCORS=gCWa9+rImU84TodyJdQ1Y+HjjiiCBmwtvbkYxWORSyQ89zOfh3fXsaZ+2cERNveebMFgYHWrQyGOgUM3cjrc4yulFQ4HrbkTqkA1BH2BhvnOucaLg4UQi3/sL9FC
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*, v60nf4oj/9bf1869a7f240189c647f3e9ebdf4e78f0b5af04e4596f49sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://connect.intuit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9If-None-Match: d445cf489cfd43ba84e6a01e51ff48c6If-Modified-Since: Thu, 14 Mar 2024 17:03:50 GMT
Source: global traffic	HTTP traffic detected: GET /PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.
Source: global traffic	HTTP traffic detected: GET /6Mxh143-sqmNMwaU?c4305afae9eca5f0=Tr10cODhGkaV7-LOuR9vt-RZb_LYMezf05GTw5DV3QF8jEyma2H33DRwSAY1SzJ66tgf902I0C3AOwYYyVkez1U6RRc8xMY-zIkIctXCwn7UOMrjTknYzB7c0Eb4DGIYkRjjzevIJkwUP_PFzagp8nSSXfO71hjdpRSzh39YEZ0YZnYTVcMC0bcrqa1q1E4mgLCJePmW48-4dC_Brm0pCxiaNw HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /02bOr5tWLVTD4d9w?8e26d9e426594d4c=p_dHOeVEkvTc_rTHaU7VpMjVVsVsU3B92J59k1ivZcxu1xRXOl2kOlNkYsL_7-p7sRIkvKyXb_qtzjpGmW5i_695HKRDhQ0J_iYTHq-xfMDgHbTD_61b7Nwn-JA49gAA8HM4TmLROxOW6vTKdtXo-FXcbpCKfsGNdKB_cIKUyBay8e2LMivGthb11LGS8RtRW50PEZA_4LpzKSPBASx6DcOYHAs HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w7zMnx4ZYbanrBNn?b2fd407fe813ebf8=wzTSmyPrHpfC3ufYC3nZvn9G0LjTvWD2ODYlhsbplw2DpBj0Rcr7n7BMh14kaYydG8idrW6XVPsFxIcgf7zyMDE9cQno-BiaOoAAt1VXiNtxigDMT-zLpgvfEQGrzEzjke0PoZtBDvWbvpfVCI-wdyqXx-yoIeaLcWe5PEayO5QwLS2DjP0WYv6TBO-5zzmqPx8EUERRt_c2aBwhhdWx8o4rv7A HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /CjMOJ5kmWuNzeHBj?7306aaf6e9ce9b09=ytI7DUPB5kFUJkPdlVTXzzdbvc7Nf-knKUKLLT7s0YvqO27jtA4Eew4yh191jazoEuFIg1qKfahtM3IcrTQsf5xTLvonZ_eEf1BM9xTrJSPqkFtdHGJGiEMgoUSPxN8eAYNkrep14p96a5IIeODgA_g7IXX70UYjFA&jb=3134266e71633d3b30633430306433393b30363439676362323061386760643832636337373034 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /2HWhftboR_IfnrAV?ccdb6339c74f9099=dVDts9zlJxFNM4ca-DBI0aMgRSt45-1mWT-V9cFACx07R-q7rpvfXIk6K6CVur7tsPHgG5qfuHyU0rv-XL7wQxkybZBdOePHyfV4SrY9EeC-nIu_wu_fD2_K743HncbZtTgjduHgObVNJ39UV7ZRnmkQzdXw&data=AAwXS42Idq0k0B55XTrkVIAvOU4m9ZW7j2EuRwlLrajsKncUd6pBtLZjSXXHjYmVsNoR1Yuzrthxvp1E7P0tJFYfAVHzSw HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /CjMOJ5kmWuNzeHBj?7306aaf6e9ce9b09=ytI7DUPB5kFUJkPdlVTXzzdbvc7Nf-knKUKLLT7s0YvqO27jtA4Eew4yh191jazoEuFIg1qKfahtM3IcrTQsf5xTLvonZ_eEf1BM9xTrJSPqkFtdHGJGiEMgoUSPxN8eAYNkrep14p96a5IIeODgA_g7IXX70UYjFA&ja=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
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /WdE5FgGwDUzdjMkZ?66d539ba4b9dfa96=FY7zYxkp5ZFlX4SkCqm31Qt62i4w-kY22i7ZohVFbSE0NB5lfe8k2yNYaBxqrpZ0LUdXYZbhXNaUi63wdsfyWdqXoxI-8NvAKi32_wqGv5eQV3lWkFJn93Emc200yBST6XWZ6e1LBnfafSYcEVvA6feLZsVUSupnQBFJs4snNcE HTTP/1.1Host: v60nf4ojqw4tthwy7kvpi22ibopdekqoiiwo2y3y9bf1869a7f240189sac.d.aa.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1If-None-Match: 6bc39831d0a143d9829084483c1a080dIf-Modified-Since: Thu, 14 Mar 2024 17:03:51 GMT
Source: global traffic	HTTP traffic detected: GET /Xri2ix8A5XuEGZtv?e59766f9e3b4fcf6=HgoaGj52UKz5pxAt55cMXlBoZiPAYAsXZCZNAWJJK3yhLdXDErDL5-X0sSMvyhKACLyGbCJuRAMofYIBCeUWC7M5nhRyOlmzHBQhHR-vjGqM3DV7E2SIGP790NBzYEzVXU8QYdRH2V46N5W9kcqHjpzIF8N7TvOi8l4LhQo HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/s
Source: global traffic	HTTP traffic detected: GET /cZZAt4QfuEAfWmsX?7a388d1c0219ee2d=huITqmWFa8RO_p-ReTuKtwxof5bp7xxsewfLo-wCyehoWA0vOTX4SsDQBKmJvZG-IcJk6qWYTYWJ5phEs7oPBc4uENrVJ9By04E3lCusR7vGvD8f3d3XAvxklPdY79Ow7KO1EQ2SyD1UNEixaC2rx_qSMBA2BxweSfmcqes9mRw1QZMqnpceEpg6k_J3kDzV6U5EnGc51nv0X10D_LdGIj0qnA&jf=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|iden
Source: global traffic	HTTP traffic detected: GET /yQk3YWV5nAZFpDLc?7e62da0af39b4509=je6JbsF6926ADKiUCOq7eKLXGDudEj2sW4P2nnnvuPYVJAiQo-IrsVving8sKhjXbl2vlFusgz70VtaU7fdSOwYybd5iTliei0HCBv_meFhUzMLJbQrRagm16ssWnCWOi9rUg5imDNOJ0VPAz_MaPp8ZbET_Lj1sVwryazWPf6tlsDzvyuqvOjz6xzQUZvz9bQljq759dXL8Yk7iSynhDgiP-Q&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~
Source: global traffic	HTTP traffic detected: GET /yQk3YWV5nAZFpDLc?7e62da0af39b4509=je6JbsF6926ADKiUCOq7eKLXGDudEj2sW4P2nnnvuPYVJAiQo-IrsVving8sKhjXbl2vlFusgz70VtaU7fdSOwYybd5iTliei0HCBv_meFhUzMLJbQrRagm16ssWnCWOi9rUg5imDNOJ0VPAz_MaPp8ZbET_Lj1sVwryazWPf6tlsDzvyuqvOjz6xzQUZvz9bQljq759dXL8Yk7iSynhDgiP-Q&je=373126246863633531247065655f7778666176653d273742253232382730322d314325354027323a766772273232273b4333273744273744 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /CjMOJ5kmWuNzeHBj?7306aaf6e9ce9b09=ytI7DUPB5kFUJkPdlVTXzzdbvc7Nf-knKUKLLT7s0YvqO27jtA4Eew4yh191jazoEuFIg1qKfahtM3IcrTQsf5xTLvonZ_eEf1BM9xTrJSPqkFtdHGJGiEMgoUSPxN8eAYNkrep14p96a5IIeODgA_g7IXX70UYjFA&jac=1&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect
Source: global traffic	HTTP traffic detected: GET /WdE5FgGwDUzdjMkZ?66d539ba4b9dfa96=FY7zYxkp5ZFlX4SkCqm31Qt62i4w-kY22i7ZohVFbSE0NB5lfe8k2yNYaBxqrpZ0LUdXYZbhXNaUi63wdsfyWdqXoxI-8NvAKi32_wqGv5eQV3lWkFJn93Emc200yBST6XWZ6e1LBnfafSYcEVvA6feLZsVUSupnQBFJs4snNcE HTTP/1.1Host: v60nf4ojqw4tthwy7kvpi22ibopdekqoiiwo2y3y9bf1869a7f240189sac.d.aa.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /yQk3YWV5nAZFpDLc?7e62da0af39b4509=je6JbsF6926ADKiUCOq7eKLXGDudEj2sW4P2nnnvuPYVJAiQo-IrsVving8sKhjXbl2vlFusgz70VtaU7fdSOwYybd5iTliei0HCBv_meFhUzMLJbQrRagm16ssWnCWOi9rUg5imDNOJ0VPAz_MaPp8ZbET_Lj1sVwryazWPf6tlsDzvyuqvOjz6xzQUZvz9bQljq759dXL8Yk7iSynhDgiP-Q&jac=1&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2N
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /aystLbuamw3Snwqr?a8c7dfe94d4cfbbc=o8TPd-oYgPoBi0Ttcl1srYZAUL1IS9R2nMhPdgWfd2RfVLrzK_MK1SAn2NsYZWbu-2sSFearzgm_8snbCyDaAi_1wv6ek5aEqdXkMo0c7_EufrnboRdiFKHntx3nHRKIudHUqBl1PAxOPLKv6IRtVrc-ujNnjj3Lk66Fuf4KC4RiazkN2_e4yOGpAtAstvvT8cZ53aNNMHhARMBzq7LlYpB27w&jf=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://h.online-metrix.net/02bOr5tWLVTD4d9w?8e26d9e426594d4c=p_dHOeVEkvTc_rTHaU7VpMjVVsVsU3B92J59k1ivZcxu1xRXOl2kOlNkYsL_7-p7sRIkvKyXb_qtzjpGmW5i_695HKRDhQ0J_iYTHq-xfMDgHbTD_61b7Nwn-JA49gAA8HM4TmLROxOW6vTKdtXo-FXcbpCKfsGNdKB_cIKUyBay8e2LMivGthb11LGS8RtRW50PEZA_4LpzKSPBASx6DcOYHAsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /yQk3YWV5nAZFpDLc?7e62da0af39b4509=je6JbsF6926ADKiUCOq7eKLXGDudEj2sW4P2nnnvuPYVJAiQo-IrsVving8sKhjXbl2vlFusgz70VtaU7fdSOwYybd5iTliei0HCBv_meFhUzMLJbQrRagm16ssWnCWOi9rUg5imDNOJ0VPAz_MaPp8ZbET_Lj1sVwryazWPf6tlsDzvyuqvOjz6xzQUZvz9bQljq759dXL8Yk7iSynhDgiP-Q&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81
Source: global traffic	HTTP traffic detected: GET /M4Y3p2kJc9B8_7Sr?aeb9e45986c20ebf=arJl9i4ho5UyM5ImHljvCZEY3AzDO014u06K3oA6GAi5romPqntds9dJpXi770OjQ7B62wgDXir685RqtZBQbZxYuejCeT_oU-I54WBAb0WhWOmwX0vH1ukZ5tN_4mlVNOpAPF8jD4qD5wVRy1N5TyDkYfz0d00New&jf=3134266e71603d3c646462666363326d6466323432353939373738396030356b316437343a3761 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/6Mxh143-sqmNMwaU?c4305afae9eca5f0=Tr10cODhGkaV7-LOuR9vt-RZb_LYMezf05GTw5DV3QF8jEyma2H33DRwSAY1SzJ66tgf902I0C3AOwYYyVkez1U6RRc8xMY-zIkIctXCwn7UOMrjTknYzB7c0Eb4DGIYkRjjzevIJkwUP_PFzagp8nSSXfO71hjdpRSzh39YEZ0YZnYTVcMC0bcrqa1q1E4mgLCJePmW48-4dC_Brm0pCxiaNwAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /OB3AXDfYbWPazsE2?088f9c895d584525=NM5HOFYXEZvgTKjqW_UAY3vxpKn_sJPBFQdxviaefjmpCcY681Lfk8FjguD-icLKSjXZ5AxDbkky2ZYqZ_WvNWjR2kRSiXqkbrrY_7ioLDEL9j-uo4BGPU7Fevkuspg0HVEipMtR8zUSk20RgUzlyHXkjxw8&data=AAwgwsO8VjNzDNr8uVv8O9Bf8iRl9VulkHwzqN37B5NNS3y-PHNIn_GiGVh8qIxtghbXe9kl5NLYuvnrDOC5zalbN8myIg&fr HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/6Mxh143-sqmNMwaU?c4305afae9eca5f0=Tr10cODhGkaV7-LOuR9vt-RZb_LYMezf05GTw5DV3QF8jEyma2H33DRwSAY1SzJ66tgf902I0C3AOwYYyVkez1U6RRc8xMY-zIkIctXCwn7UOMrjTknYzB7c0Eb4DGIYkRjjzevIJkwUP_PFzagp8nSSXfO71hjdpRSzh39YEZ0YZnYTVcMC0bcrqa1q1E4mgLCJePmW48-4dC_Brm0pCxiaNwAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /v1/assessment HTTP/1.1Host: risk-vendor-svc.api.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1; ADRUM_BTa=R:27|g:d6e139ec-67ab-4a88-8148-1ef99c300caf|n:intuit-sbg-prod_87bcfab1-ad5a-4af1-95e0-7eed4f8a1800; SameSite=None; ADRUM_BT1=R:27|i:307331|e:1
Source: global traffic	HTTP traffic detected: GET /CjMOJ5kmWuNzeHBj?7306aaf6e9ce9b09=ytI7DUPB5kFUJkPdlVTXzzdbvc7Nf-knKUKLLT7s0YvqO27jtA4Eew4yh191jazoEuFIg1qKfahtM3IcrTQsf5xTLvonZ_eEf1BM9xTrJSPqkFtdHGJGiEMgoUSPxN8eAYNkrep14p96a5IIeODgA_g7IXX70UYjFA&jac=1&je=333b262475676935313b312c39362c3a30372c313936 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; tmx_guid=AAw4h9v8-K6H1SGYkyuavTalv_e7TaIT85XnNbGmD5S_fCD2JiKEnu_barG_8tLkpNPnWvWPha25mUEmiRbWEYl2Nd5hTQ; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /yQk3YWV5nAZFpDLc?7e62da0af39b4509=je6JbsF6926ADKiUCOq7eKLXGDudEj2sW4P2nnnvuPYVJAiQo-IrsVving8sKhjXbl2vlFusgz70VtaU7fdSOwYybd5iTliei0HCBv_meFhUzMLJbQrRagm16ssWnCWOi9rUg5imDNOJ0VPAz_MaPp8ZbET_Lj1sVwryazWPf6tlsDzvyuqvOjz6xzQUZvz9bQljq759dXL8Yk7iSynhDgiP-Q&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Acce
Source: global traffic	HTTP traffic detected: GET /yQk3YWV5nAZFpDLc?7e62da0af39b4509=je6JbsF6926ADKiUCOq7eKLXGDudEj2sW4P2nnnvuPYVJAiQo-IrsVving8sKhjXbl2vlFusgz70VtaU7fdSOwYybd5iTliei0HCBv_meFhUzMLJbQrRagm16ssWnCWOi9rUg5imDNOJ0VPAz_MaPp8ZbET_Lj1sVwryazWPf6tlsDzvyuqvOjz6xzQUZvz9bQljq759dXL8Yk7iSynhDgiP-Q&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intui
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /Ap7fDEIqU4N0eJSC?378877d5bb1a2e90=zLNojUSn081sT3gC69xi9RWpkaGjqHWq5lrvxkKk8Fm6Shou1ANxW-H24FNxPcK6lSzVN0mRkKO03cFjHFxK2amvV4od82y5To_agV9ET419vtBOpW9cZxd8Ti52VuCX-XfIA4GjERRFNA6lGI46EUrHKTRwHHzBcP3GVhrqvmV1W1lGR4L2jSmd7XxEnb5CIGSL3ad-1c4QXWh2d7rqCA&sera_parametere=XxJbUAFTXFIDB1YMAgEAWlxbAgINVwEEUVdQUAMCAQ8IBgNVC1RbWAAEABJDQgVQVxITRUsTCiUSUXARB3UdCwkIFVRUU1QEWRJBEQN1HQ57UkMGfBMLUV8JQUBDFAt9HFUkFA9yHwVeWwdWAwgPCQsHVgILAQ1WBFVRVlVUAVwKUlMBXFNfBQ4DVgICCFlbDQNAX1dYWgQKX1BSAQkOAFhVAAMMBghZDkBYRw0BQAsIUFJXWQcAAwUHCldWUlsACwZXBwsECAMEUwoFBgVdWgFVAFcJVwFHVg8PBQgAAB9QC1scCRBJCApfCw0JCR5RUl9AUwV1URNYC1cSUkcFCAhVQFNXRQQ2XghWW0dCHlpbXxJVQmlaAFsKUFVTWh5cTV9SAA%3D%3D&count=0&max=0 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/PcE_x7O4-1GPTloG?4426432162e3a627=J9CgLy7IC24mTZzAJBEgVaAY-7n2uo_9T_-HhSooCmAn7DTCpQ7NtuN1x0-jCJOxDgtB0tCFilcUskZO46JJKcittBLYS6AZZVJ9CwMAPViLEDJftM3kHdzQAFxFFzNuOymVO6YiIu71AStBgTiZzA&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/tran
Source: global traffic	HTTP traffic detected: GET /yQk3YWV5nAZFpDLc?7e62da0af39b4509=je6JbsF6926ADKiUCOq7eKLXGDudEj2sW4P2nnnvuPYVJAiQo-IrsVving8sKhjXbl2vlFusgz70VtaU7fdSOwYybd5iTliei0HCBv_meFhUzMLJbQrRagm16ssWnCWOi9rUg5imDNOJ0VPAz_MaPp8ZbET_Lj1sVwryazWPf6tlsDzvyuqvOjz6xzQUZvz9bQljq759dXL8Yk7iSynhDgiP-Q&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; aj
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; ajs_anonymous_id=045d2fb2-5655-4c2c-8012-d9d642fe34d2; ius_session=C647F3E9EBDF4E78F0B5AF04E4596F49; cdContextId=4; cdSNum=1710435897938-sjc0000382-8dea0d71-b625-49b2-88d2-f3a72a72b04f; akid=gip127.0.0.1_gsip23.34.58.209_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /yQk3YWV5nAZFpDLc?7e62da0af39b4509=je6JbsF6926ADKiUCOq7eKLXGDudEj2sW4P2nnnvuPYVJAiQo-IrsVving8sKhjXbl2vlFusgz70VtaU7fdSOwYybd5iTliei0HCBv_meFhUzMLJbQrRagm16ssWnCWOi9rUg5imDNOJ0VPAz_MaPp8ZbET_Lj1sVwryazWPf6tlsDzvyuqvOjz6xzQUZvz9bQljq759dXL8Yk7iSynhDgiP-Q&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=d88833a5-296d-4e5b-8cbe-8aaaec81a3f6; thx_guid=5e78c0b0aa33017913ab8b84e5369715; bmuid=1710435825283-81AA90AA-4C96-4373-80A2-D3A4E81130C5; priorityCode=3468337910; AKES_GEO=US~NY; _gcl_au=1.1.468449755.1710435828; AKA_A2=A; bm_sz=7AD0B5D548A06D18A319EFD2031BAD31~YAAQ1joiFzIdFi6OAQAAGk3sPRfOXr38532g/tx+kVnpMzKamIqvUdzkpASCylosoH4cPKnDFpBeJDIPWq9FvzTecNxJvPU/q+LtUdL1ByZc/UrkPmBWPQQQ2Wz5NgrlhEmLBFbgWrPE86/f+1YnW9FXsT+XScrdRDVS7pkNAPo4t82XCwg6bVBvZjdYQRIZPl/gIBUHi0L21oQfdlVProj5Sd+/BpKCURYsnoj5YUg0qRiqZd5pQMGyCGDDf8LATGIHpFAvIAAhWTWMtBQNhhdNt9vht293oABtLK1oXyo+IY7y/mo5rWA2A+hnL3yJgpZSe3ctKTN5lUP7TcnwGpu+mQ4V30ul6bHRBda+eQ==~4276793~3159361; _abck=107144C7539EE2E2EC4197208858AF5E~0~YAAQyDoiF6Kk7TWOAQAAyVfsPQusULoACugnkakmdU/YzWmXA+ZGQZ9MdixyWzvopHYZeWzjx2qPbFXBqy0LpDHmFh4tRG8PAB9Nn7PMsk9uQdHZ9tUC+/IFAOPbkGtByIcqLfIjoFA1kPNwoSjpHoBMrb+OVnFxWVx3jIZreBOoT++pRZCMMhnelZ4l6udCWWaZXDoypePhxgYAGdHrCl6zIAYFSz88Sz43TVhUstszhRd3b3QRVLoIcMpnM2lBlpKEMRJFe4PrTwjbKa6JhDyDtOcoZKXUDq9cxd7xHBEyhC6sjM8l+9CVekCM3eWcZccX5yh84Qb7IgR8kDHMyhZIwlSRcN9lrYkvtTmDHC7jMtQuCmfOIQgKXqqXn+VkxpJP4tvtErOcHCDrrCUNDxtnNOBL7pX1~-1~-1~-1; qbn.loginWorkflowTraceId=c6c1c5c8-4753-4c31-eadc-5bb3b091f149; __Secure-kdid=9f3bbbe4-2ae4-4a5d-8461-4c7a0667a237; pageProperties=$accounts.intuit.com/app/sign-in$identifier_screen$accounts.intuit.com$iip|identity|identity|account_sign_in|identifier_screen$; aj
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4Xidd0cheG8LwbStENSouLGVHdZMDY7HerM2jjUCoFeI6gm7Kdtf4VLGeKSEGD-2BLtC9DJRNw6pEMjSNLwLV6f-2B-2FNDqeTtwZntCoJUv2kjly9lxbcesgCaYBS4xTR4vrXo-2BHToGJsqCiA1c3W3QdCYSQaIk8A8xjl6epWoHjDfO7q2-2BljmcH-2B0vhwp3LblmwMlg-3D-3DjLk6_4mgKLREGQr1xmX0pgCQQnU2iwqZmYOiXt7uJFJpuC544g-2BrW-2Fs5f07WnApYEmrG-2B4omNUkU8RiFBuz-2Bptr8SgQ2biQw6c6xs4048rsD7-2BuenjNbFmrcgZQkw5n-2BE0BuYmwILETvN9TUBRoRvQAmHefvFAqlTEn8jSqJFqm7pr5A9ig0fhOBqOwIJhGxCWtXwFdUhqspLoK0AcSheeb1BL0DTKnjrPRsirs-2BL8F5Jlay5PzH72Ywahlverx9vO6z6mWj-2BTDxBR3sNagPSE6aWzvaSAml1MdsRh3XxhKcRqLLN7sPArLEm-2BH-2BD9yKR4XZ88qz4JD0tcaBOTiLHD0lgHN6hPqyQaaGEXFBjlau4aUrEwNFPQdb8AL-2BcQ36vJkgZuLgBCAtAwv4rl9RCvJbF4ILl15sIpSPVRX7lrvkVcPcvLIKQvv2OnTOghgMVDnYkNeaRiQND7ezqw3nQ2Z4vByhceQPplx1XSLqM75GEagqT6rNdsNnlgbUFIlVPlQgyf2eiMvN6XyHYl5o4qXTgPwizZPc28n17rAdXvbT1c6tJGCtftcpN6oj-2FldLCMQaaMcb-2BaqGIqfUKszwDoMrpm7Gerlfq2OmkdPBw21Eo0RH022pUeDrlF53CNXKuKNpXcf-2FJKixPve700hpZajnCTQk073NOtBaqv30a2mg2ayJLQxrhUWWR3O4VIpcdOrZrTHVif3RWlAQh6f2CQCECsbu8b-2BF7FX4ocQoUMa3mmvf5XwYaHYM31hM3V4VNFda2 HTTP/1.1Host: links.notification.intuit.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Found strings which match to known social media urls

Source: chromecache_398.1.dr

String found in binary or memory: return b}vD.D="internal.enableAutoEventOnTimer";var xc=da(["data-gtm-yt-inspected-"]),wD=["www.youtube.com","www.youtube-nocookie.com"],xD,yD=!1; equals www.youtube.com (Youtube)

Performs DNS lookups

Source: unknown

DNS traffic detected: queries for: us-west-2.protection.sophos.com

Posts data to webserver

Source: unknown

HTTP traffic detected: POST /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveContent-Length: 480sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plain;charset=UTF-8Accept: */*Origin: https://connect.intuit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Tries to download or post to a non-existing HTTP route (HTTP/1.1 404 Not Found / 503 Service Unavailable / 403 Forbidden)

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:03:46 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:03:46 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:03:51 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:03:57 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:04 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:11 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:17 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:23 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:29 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:35 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:41 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:48 GMTContent-Type: text/plainContent-Length: 0Connection: closex-envoy-upstream-service-time: 0strict-transport-security: max-age=31536000intuit_tid: 1-65f32e30-1e301964691ec1320c6a51ecx-request-id: 1-65f32e30-1e301964691ec1320c6a51ecserver: istio-envoy
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:48 GMTContent-Type: text/plainContent-Length: 0Connection: closex-envoy-upstream-service-time: 0strict-transport-security: max-age=31536000intuit_tid: 1-65f32e30-5de5fafb14edad671591fdd0x-request-id: 1-65f32e30-5de5fafb14edad671591fdd0server: istio-envoy
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:49 GMTContent-Type: text/plainContent-Length: 0Connection: closex-envoy-upstream-service-time: 0strict-transport-security: max-age=31536000intuit_tid: 1-65f32e31-46d078267b9e76cb18b00d62x-request-id: 1-65f32e31-46d078267b9e76cb18b00d62server: istio-envoy
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:58 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:04:58 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:05:03 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:05:04 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 14 Mar 2024 17:05:08 GMTContent-Type: application/jsonContent-Length: 22Connection: closeServer: nginx

URLs found in memory or binary data

Source: chromecache_310.1.dr	String found in binary or memory: http://about.intuit.com/contact/
Source: chromecache_306.1.dr	String found in binary or memory: http://fb.me/use-check-prop-types
Source: chromecache_310.1.dr	String found in binary or memory: http://schema.org
Source: chromecache_310.1.dr	String found in binary or memory: http://www.intuit.com/company/contact/
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-help.lc.intuit.com/questions/1582580-creating-an-account
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/community
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/community/signup
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/turbotaxadvantage
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/turbotaxadvantage/account-recovery
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/turbotaxadvantage/signup
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/turbotaxdesktop
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/turbotaxdesktop/account-recovery
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/turbotaxdesktop/signup
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/turbotaxonline
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/turbotaxonline/account-recovery
Source: chromecache_310.1.dr	String found in binary or memory: https://accounts-tax.intuit.com/app/turbotaxonline/signup
Source: chromecache_304.1.dr	String found in binary or memory: https://accounts.intuit.com/account-recovery
Source: chromecache_304.1.dr	String found in binary or memory: https://accounts.intuit.com/index
Source: chromecache_304.1.dr	String found in binary or memory: https://accounts.intuit.com/signin
Source: chromecache_304.1.dr	String found in binary or memory: https://accounts.intuit.com/signup
Source: chromecache_398.1.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk
Source: chromecache_398.1.dr	String found in binary or memory: https://adservice.googlesyndication.com/pagead/regclk
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-100-it.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-100-it.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-100.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-100.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-400-it.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-400-it.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-400.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-400.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-500-it.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-500-it.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-500.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-500.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-600-it.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-600-it.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-600.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-600.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-700-it.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-700-it.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-700.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-700.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-900-it.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-900-it.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-900.woff
Source: chromecache_250.1.dr	String found in binary or memory: https://assets.intuitcdn.net/fonts/avenir-900.woff2
Source: chromecache_398.1.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_256.1.dr	String found in binary or memory: https://glam.app.intuit.com/app/guesttos?glocale=en_US
Source: chromecache_398.1.dr	String found in binary or memory: https://google.com
Source: chromecache_398.1.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_398.1.dr	String found in binary or memory: https://googlesyndication.com
Source: chromecache_398.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_398.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_310.1.dr	String found in binary or memory: https://plugin.intuitcdn.net/tax-advisor-ui/terms-of-service.html
Source: chromecache_256.1.dr	String found in binary or memory: https://public-consumer-chat.app.intuit.com/app/ccs/consumer?experienceId=sbsegUsDtCorePos
Source: chromecache_256.1.dr	String found in binary or memory: https://qbo.intuit.com/qbo1/login?pagereq=paymentsactivation%3Fofferid%3DQBOH_24_0_1_5DF_N-56140-777
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/learn-support/en-us
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/learn-support/en-us/
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/learn-support/en-us/help-article/chargebacks/sign-payments-dispute-pro
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/learn-support/en-us/help-article/product-system-requirements/system-re
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/money/see-plans/
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/offers/5apy/
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/oidam/intuit/sbseg/en_us/shared/icon-feature/track-invoices-icon-featu
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/payments/desktop/#easy-payments
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/payments/invoicing/
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/payments/legal/
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/payments/legal/qbmoneycard/toc92020/greendot/
Source: chromecache_256.1.dr	String found in binary or memory: https://quickbooks.intuit.com/payments/legal/toc102017/greendot/?elqTrackId=abf7d8c40f3f48e0b939dfe3
Source: chromecache_362.1.dr	String found in binary or memory: https://reactjs.org/docs/error-boundaries.html
Source: chromecache_288.1.dr, chromecache_307.1.dr	String found in binary or memory: https://reactjs.org/docs/error-decoder.html?invariant=
Source: chromecache_307.1.dr	String found in binary or memory: https://reactjs.org/link/react-polyfills
Source: chromecache_310.1.dr	String found in binary or memory: https://shop.turbotax.intuit.com/advantage/create-account_ius.jsp
Source: chromecache_310.1.dr	String found in binary or memory: https://shop.turbotax.intuit.com/commerce/account/secure/account.jsp
Source: chromecache_365.1.dr, chromecache_335.1.dr	String found in binary or memory: https://sketchapp.com
Source: chromecache_310.1.dr	String found in binary or memory: https://support.turbotax.intuit.com/account-recovery
Source: chromecache_310.1.dr	String found in binary or memory: https://support.turbotax.intuit.com/contact
Source: chromecache_310.1.dr	String found in binary or memory: https://support.turbotax.intuit.com/loginHelp.html
Source: chromecache_310.1.dr	String found in binary or memory: https://support.turbotax.intuit.com/redirect/eidproof
Source: chromecache_310.1.dr	String found in binary or memory: https://support.turbotax.intuit.com/redirect/why-didnt-code-work
Source: chromecache_398.1.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_310.1.dr	String found in binary or memory: https://ttlc.intuit.com/session/acs?locale=en
Source: chromecache_310.1.dr	String found in binary or memory: https://ttlc.intuit.com/turbotax-support/en-us/help-article/account-management/difference-intuit-acc
Source: chromecache_310.1.dr	String found in binary or memory: https://turbotax-community-e2e.intuit.com/
Source: chromecache_310.1.dr	String found in binary or memory: https://turbotax.com/support/go/GEN88403
Source: chromecache_310.1.dr	String found in binary or memory: https://turbotax.intuit.com/corp/license/desktop.jsp
Source: chromecache_310.1.dr	String found in binary or memory: https://turbotax.intuit.com/corp/license/online.jsp
Source: chromecache_250.1.dr	String found in binary or memory: https://uxfabric.intuitcdn.net/fonts/avenir-next-intuit/AvenirNextforINTUITVarW05-It.woff2
Source: chromecache_250.1.dr	String found in binary or memory: https://uxfabric.intuitcdn.net/fonts/avenir-next-intuit/AvenirNextforINTUITVarW05.woff2
Source: chromecache_310.1.dr	String found in binary or memory: https://ww1.2022.ca.turbotaxonline.intuit.com/signin
Source: chromecache_398.1.dr	String found in binary or memory: https://www.google.com
Source: chromecache_398.1.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_398.1.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_256.1.dr	String found in binary or memory: https://www.intuit.com/legal/licenses/payment-licenses/
Source: chromecache_256.1.dr	String found in binary or memory: https://www.intuit.com/legal/licenses/payment-licenses/.

Uses HTTPS

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50176 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 50166 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50132 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 50174 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50094 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 50186 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50162 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 50150 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50164 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50129 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50184 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50152 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50070 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50092 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50140 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50175
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50174
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50177
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50176
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50179
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50178
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50180
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50182
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50181
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50184
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50186
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50185
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50091 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50187
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 50159 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50147 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50172 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50086
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50092
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50091
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 50136 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 50170 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50138
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50149 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50131
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50130
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50133
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50132
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50135
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50134
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50016
Source: unknown	Network traffic detected: HTTP traffic on port 50078 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50136
Source: unknown	Network traffic detected: HTTP traffic on port 50161 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50140
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50149
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50141
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50144
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50146
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50145
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50148
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50147
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50151
Source: unknown	Network traffic detected: HTTP traffic on port 50138 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50150
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50103 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50153
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50152
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.16:49782 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.51.58.94:443 -> 192.168.2.16:49792 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:49820 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.114.59.183:443 -> 192.168.2.16:49880 version: TLS 1.2

System Summary

Classification label

Source: classification engine

Classification label: mal48.phis.win@28/340@137/31

Creates files inside the user directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Spawns processes

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument https://us-west-2.protection.sophos.com/?d=intuit.com&u=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&i=NThlN2NjYzYyOTljZjkxNGY4YmM0ZGE3&t=OCt3THdBT25HS2pyeUdoSk9NY25hRU02SlFET3BwSlBrOE9kUEdQVHJDRT0=&h=b4724174b03f4ea39adcca6ec84dc529&s=AVNPUEhUT0NFTkNSWVBUSVanjoOam2PSWZZXYcKt7aVlTK6quiW7kY6waH-p5Ism96qrAu1mvXL4EDhOrRyQF9jrk6MY03SMFoQ6gMGeti7dWBks3Q0GDvEDbSaPc7xwzg
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1956,i,5433054103107749602,6583110671494093231,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4808 --field-trial-handle=1956,i,5433054103107749602,6583110671494093231,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5884 --field-trial-handle=1956,i,5433054103107749602,6583110671494093231,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1956,i,5433054103107749602,6583110671494093231,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4808 --field-trial-handle=1956,i,5433054103107749602,6583110671494093231,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5884 --field-trial-handle=1956,i,5433054103107749602,6583110671494093231,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Windows shortcut file (LNK) contains relative path

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Found graphical window changes (likely an installer)

Source: Window Recorder

Window detected: More than 3 window changes detected

Boot Survival

Stores files to the Windows start menu directory

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk			Jump to behavior