Edit tour

Windows Analysis Report
http://links.notification.intuit.com/ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4aEATQ-2BdvHNjDcf3OmBO8OltXq6TPtCFVmMtf59VCEIhWP8mKN6H4HEXLgTiVOzMGungkdodFG1U68jQcrrNridBgnLDNNcks2Eu-2FQvYhEtX4HXrZ9v6fUa-2BRIi5AQ-2BwD5vS6MnLYVP87GGyb

Overview

General Information

Sample URL:	http://links.notification.intuit.com/ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4aEATQ-2BdvHNjDcf3OmBO8OltXq6TPtCFVmMtf59VCEIhWP8mKN6
Analysis ID:	1499395
Infos:

Detection

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Blob-based file download detected

Found HTTP page in a blob

HTML page contains suspicious base64 encoded javascript

Very long command line found

Detected non-DNS traffic on DNS port

Found iframes

HTML body contains low number of good links

HTML body contains password input but no form action

HTML page contains hidden javascript code

HTML title does not match URL

Classification

Process Tree

System is w10x64

chrome.exe (PID: 5580 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 5672 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2280 --field-trial-handle=1968,i,4710161793563401793,7235233090458664314,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6380 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4792 --field-trial-handle=1968,i,4710161793563401793,7235233090458664314,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6392 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4144 --field-trial-handle=1968,i,4710161793563401793,7235233090458664314,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6504 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://links.notification.intuit.com/ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4aEATQ-2BdvHNjDcf3OmBO8OltXq6TPtCFVmMtf59VCEIhWP8mKN6H4HEXLgTiVOzMGungkdodFG1U68jQcrrNridBgnLDNNcks2Eu-2FQvYhEtX4HXrZ9v6fUa-2BRIi5AQ-2BwD5vS6MnLYVP87GGyb6HmNhdfD3KwSAS20G-2BeW0Vh1-2FR9QTUfmy33TQB0xSkInGL4OQ-3D-3Dd5bU_cr2hXK7H46C0VNrk0q72l8t-2Fz9mnxEHSfh1GAbJeNzpnKYe8FQIo-2FWBJuMOaTn-2FP5GR8Qt943ZZfuRkH6un4oUU3aXnLVtIgXrne8J6mRLgoHmZ4dSlnz9HKSTZpIEdqIMntBhHh48IoiPlkBcx5WCYGFvdqaseKMS4hqG-2Fqm3CXUvsLf-2FBUuq3N23Dp1e1ITq1YXJsD4Tc2Hp3umT37TOgYKV2wDoA502-2BmC98ur8ZXp7uaVp3-2BG6QDUeQpqKPWQHCWKl5kSR-2Bnb3SQu1evjJ2gpbcqd9JMAV6jWZMA3B8hmOtBKozI5eRDrBvzQb6tnM0dHr34e27qWboGpujmnGVOSZQqF0jwsNgVGly00WoLu0CZsW-2BcjGQpD7k9ALTpkcWliNGdFdbMxHMZXiA1J7lh2-2BsF5qgo9tGTfAjLJ4RsuC3oX6KaIwkulFtivIYSjHdA3X27kGlUzFrUHua-2BTgD5ohPM7evV83d7kPNItYEGvVPIJVZUk-2FxIBj3YPP-2Fsbtk7I0WbaGlb1bmDsgl2SUXcvBs603yDvLQMeC1aUJsiH8N2BZogAbJvS7FD1tk4BYTDW2Xwf7gosyLjUOkHNuS9r2LGmeREVOdjavhZFRuoyZt9K3oAqbd0ilkQ8cIP0szyeADWc0-2BNQ23CH7qE-2FjWIbg0HcwXFXFyjdQDi7qf1pgUXI-2Fv9Yy6AG5bUs2m1HxAWHaL7fW5CVQZ4F6B1Ju1sw59F7SUz23yhvwNObJmUVbVfEGV-2BZA-2F98pDH2pt7LJtKgI3mewrJbs-2F-2FTdOmrI6HG3-2FbXaeouJzCyvXqTCN6rAXz7G1EV-2BxmzweuxfbkDjekOwsb9FAt19H2h8p-2BacLMfFKRpKADWoVXepjHI41l8Ezr5z4P9kXhgjPrsLF1E0d878Uey8KsSHy4zMEwC2hysqB10YFJ8NqqDGiqvuO1ptzehCo0stoHlQSz6NXbxfVqYRRpI0bWjiE3mmH8tYFqTzyq0aLMLc8mRWBu2lYy5fk6tVB7RDFYmaMv4XG4unkmzRlYW1UlIFaFQRZg6nUUfTxlTFqd6Fq3MIy-2FutJstaaMOfOE3RGI-2FjMRYS6gGPZ-2FXFUNYyEqTQgau-2FHg-2BIPIfL6v25iFKH7BpfNrtW6dPZL-2FY5foy3wuJIqTA2g64-2BLwCF-2B1AnLxVb-2FbYm-2F7RNgq095K8jbC-2BKEkU2Ay2cSCNX52GHO974WSNSYh1dyvEWu2H4Nmtn6AV74Z-2FcJwN3dF1ce0-2BWuzqG0B6WkJDQyH0gEgA5jIpX031SHychMJHIjzt50P3dD4oGn86BCtFVqK4XCvQAFGl182mqUeuIP9aQ-2FdHf-2BtrB5hlbOp6NQ-2FjRIMw4bWzn-2BhXPIKipkXbuS-2BsK49do0iu8L0vdijcSBVk9hOju6vh1btfQb5l8PqUG19kVW1fkedtm6l0tKLclh-2FlVLBAj4SAZwbdk2PSlc88UMuZ0KZcDPiQWEpcPPmfr2Gl1LDI4f3zzDS6s9nsw-3D-3D" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

Acrobat.exe (PID: 4128 cmdline: "C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\Downloads\downloaded.pdf" MD5: 24EAD1C46A47022347DC0F05F6EFBB8C)

AcroCEF.exe (PID: 6064 cmdline: "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE)

AcroCEF.exe (PID: 6052 cmdline: "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0" --lang=en-US --user-data-dir="C:\Users\user\AppData\Local\CEF\User Data" --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log" --mojo-platform-channel-handle=2108 --field-trial-handle=1684,i,15438552520617086001,7945836129112852067,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker /prefetch:8 MD5: 9B38E8E8B6DD9622D24B53E095C5D9BE)

cleanup

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Phishing

Found HTTP page in a blob

Source: blob:https://connect.intuit.com/f000e683-5ca1-44d9-acc9-761f7cc9692b

DOM page: Blob-based

HTML page contains suspicious base64 encoded javascript

Source: https://trustarc.com/consumer-information/privacy-feedback-button/

HTTP Parser: Base64 decoded: <script>

Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: Iframe src: blob:https://connect.intuit.com/f000e683-5ca1-44d9-acc9-761f7cc9692b
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: Iframe src: blob:https://connect.intuit.com/f000e683-5ca1-44d9-acc9-761f7cc9692b
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: Iframe src: https://qfp.intuit.com/LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdi
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: Iframe src: blob:https://connect.intuit.com/f000e683-5ca1-44d9-acc9-761f7cc9692b
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: Iframe src: https://qfp.intuit.com/LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdi

Source: https://qfp.intuit.com/LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...

HTTP Parser: Number of links: 0

HTTP Parser: <input type="password" .../> found but no <form action="...

Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US

HTTP Parser: Base64 decoded: {"alg":"HS256","typ":"JWT"}

HTTP Parser: Title: empty does not match URL

Source: https://qfp.intuit.com/LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: <input type="password" .../> found
Source: https://feedback.qbo.intuit.com/forums/920104	HTTP Parser: <input type="password" .../> found

Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No favicon
Source: blob:https://connect.intuit.com/f000e683-5ca1-44d9-acc9-761f7cc9692b	HTTP Parser: No favicon
Source: file:///C:/Users/user/Downloads/downloaded.pdf	HTTP Parser: No favicon
Source: file:///C:/Users/user/Downloads/downloaded.pdf	HTTP Parser: No favicon
Source: https://qfp.intuit.com/dJnOxq9hpWSJXtE_?4f1c7c4090943f56=jsgHtZXRMQSECRDjuYKBd2YEeeIOBBZg-A4cYfMYBohLqFP3jVi1VpgHV1jDiYaIc2XkZubYQ_u5EaIoybyCAUZh4ed5COISozinKMMuWsFt2LpXhRI-zOE9_IV8AjfaGol5x69XQabw8zU2YMSO2zygOU6x7ahm3K0us4TUX-5NAxBvxPR2lPXLYAYBYTLdZ2cEJhH0iE3tLMQtuAUz0JhGWQ	HTTP Parser: No favicon
Source: https://qfp.intuit.com/CSd-69SKOr141mNk?d37935dd309fc821=INwr7NOSluR-nY6b-_f4pKWplTUlpyhfsiBCaVYXQ88j3xcoHnRTubsr2hnVOpoIyorsXhwZ14MUbm6oG3wUf-lYNgRWFcpcZeGZHVRwtRxZU_IFVMbAxMGhr78LBr1bjTJIZS6QKoCao3zp53x7U4CLJitueB1NUf6mNTU-dyYBFUt4AgrfKW1Fo44SLwebwy5PrgOfW1vPAGKkT22R8M95bdo	HTTP Parser: No favicon
Source: https://h.online-metrix.net/NtM3RtiNzhEt7KMo?16608eed347ef96d=ekmEv_G-bA7ZSfYH2VlLp29Wp2jSCYTOSvq0qNldh9KT9BEwuD4BLhRHURdiD-vmQpa70209VDeOn7djGhWOMJv8nWmfzfjLbKfEzUUZOTiVOYp8bE7FPc5iOR8UBTqK3VJ63KFKHGbXeLm_zeaiEQtzACGIERIghAUDZM1ztqFw75meOhlnTSCO7j4EK45q9pONenKtDH6fZ0xmLvQXmhWIpIg	HTTP Parser: No favicon
Source: https://qfp.intuit.com/LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: No favicon
Source: https://trustarc.com/consumer-information/privacy-feedback-button/	HTTP Parser: No favicon
Source: https://trustarc.com/consumer-information/privacy-feedback-button/	HTTP Parser: No favicon
Source: about:srcdoc	HTTP Parser: No favicon
Source: https://secure.livechatinc.com/customer/action/open_chat?license_id=6354551&group=391&embedded=1&widget_version=3&unique_groups=1	HTTP Parser: No favicon
Source: https://feedback.qbo.intuit.com/forums/920104	HTTP Parser: No favicon
Source: https://feedback.qbo.intuit.com/forums/920104	HTTP Parser: No favicon
Source: https://feedback-form.trustarc.com/watchdog/request	HTTP Parser: No favicon

Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No <meta name="author".. found
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No <meta name="author".. found
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No <meta name="author".. found
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No <meta name="author".. found
Source: https://qfp.intuit.com/LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac	HTTP Parser: No <meta name="author".. found
Source: https://feedback.qbo.intuit.com/forums/920104	HTTP Parser: No <meta name="author".. found

Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No <meta name="copyright".. found
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No <meta name="copyright".. found
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No <meta name="copyright".. found
Source: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US	HTTP Parser: No <meta name="copyright".. found
Source: https://qfp.intuit.com/LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transac...	HTTP Parser: No <meta name="copyright".. found
Source: https://feedback.qbo.intuit.com/forums/920104	HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2

Source: global traffic

TCP traffic: 192.168.2.4:51398 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /portal/app/CommerceNetwork/view/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=nSMHi36OiGoVoCWCA33fCie2HhsZ9UwyZzPIGoPpmw95vOGuIp/bMHWILKPuu01VB32pn50LXabr8hJeiAAIRlugz8Cu6tADdJI/UXxq52Dr8vYwfk1+sSFjn1BS; AWSALBCORS=nSMHi36OiGoVoCWCA33fCie2HhsZ9UwyZzPIGoPpmw95vOGuIp/bMHWILKPuu01VB32pn50LXabr8hJeiAAIRlugz8Cu6tADdJI/UXxq52Dr8vYwfk1+sSFjn1BS
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /flags/us.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /mastercard.bug.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /american-express.bug.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /discover.bug.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /visa.bug.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /truste.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /7463a610-f637-46e4-b099-b237efa0358e_template.png HTTP/1.1Host: ips-logos-cdn.ips.sbg.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /analytics.js/v1/xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy/analytics.min.js HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/9835.59c20536643b9726.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/7868.851b65ef7fa1a422.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /mastercard.bug.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/1193.3dd404b7ea3c36c8.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /american-express.bug.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/8948.2692353fb3048aa0.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /truste.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /flags/us.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /discover.bug.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/2378.40683c6fb386355f.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/webpack-9cf5d95b8a108cc1.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /visa.bug.svg HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /7463a610-f637-46e4-b099-b237efa0358e_template.png HTTP/1.1Host: ips-logos-cdn.ips.sbg.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /v1/projects/xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy/settings HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://connect.intuit.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analytics.js/v1/xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy/analytics.min.js HTTP/1.1Host: cdn.segment.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/framework-560765ab0625ba27.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/9835.59c20536643b9726.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/main-593e743601aca717.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/7868.851b65ef7fa1a422.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/1193.3dd404b7ea3c36c8.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/_app-7ffd0050aefebb07.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/webpack-9cf5d95b8a108cc1.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6859-0e318ca24b4b6137.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/7437-06ca1f4ba7151c25.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/8948.2692353fb3048aa0.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/2378.40683c6fb386355f.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /analytics-next/bundles/ajs-destination.bundle.ed53a26b6edc80c65d73.js HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/5439-f4c5699a82de3c8e.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /v1/projects/xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy/settings HTTP/1.1Host: cdn.segment.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/3161-0f8ddeab96413871.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/main-593e743601aca717.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/7465-1b3ac9cfccea5cb5.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6859-0e318ca24b4b6137.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /analytics-next/bundles/ajs-destination.bundle.ed53a26b6edc80c65d73.js HTTP/1.1Host: cdn.segment.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/8804-0df16ebd6cb32488.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/7437-06ca1f4ba7151c25.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/4556-3f9cdb9b7cf661e8.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/3953-b52fc72e328e008a.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/framework-560765ab0625ba27.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/_app-7ffd0050aefebb07.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6019-e50be65b8366e728.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/3161-0f8ddeab96413871.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/5439-f4c5699a82de3c8e.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/7465-1b3ac9cfccea5cb5.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /next-integrations/integrations/google-adwords-new/1.3.0/google-adwords-new.dynamic.js.gz HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6139-309dee1860ca094e.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/payable-8a6e7c86e06f5e82.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
Source: global traffic	HTTP traffic detected: GET /_next/static/1.28.0-release_1.28.0-e4436b0/_buildManifest.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /_next/static/1.28.0-release_1.28.0-e4436b0/_ssgManifest.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/8804-0df16ebd6cb32488.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/3953-b52fc72e328e008a.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6019-e50be65b8366e728.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js HTTP/1.1Host: cdn.segment.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/4556-3f9cdb9b7cf661e8.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/2766.b29c036bad593b19.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/8482.b28cf868ec59260b.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /_next/static/1.28.0-release_1.28.0-e4436b0/_buildManifest.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /_next/static/1.28.0-release_1.28.0-e4436b0/_ssgManifest.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /fonts/AvenirNext-forINTUIT-Web-Fonts/AvenirNext+forINTUIT+W05+Rg_web.woff2 HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://connect.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/AvenirNext-forINTUIT-Web-Fonts/AvenirNext+forINTUIT+W05+Demi_web.woff2 HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://connect.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/AvenirNext-forINTUIT-Web-Fonts/AvenirNext+forINTUIT+W05+Mediu_web.woff2 HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://connect.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6835-0f0b30fe7859a16d.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/pages/payable-8a6e7c86e06f5e82.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3
Source: global traffic	HTTP traffic detected: GET /portal/rest/pdf/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1/invoice.pdf HTTP/1.1Host: connect.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0intuit-realmid: 123145657949367Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJkYXRhIjp7InRva2VuIjoic2NzLXYxLTk2NjU3YTk5NWJhZDQ2ZDI5YTc1YmViNzVmYzVkMTc3ZTdmMmQxMmY4NzhkNDBjYzlmZTI5YTJmNWM0YmIxZWEyYWYyMDNkMTNmN2M0MGUxOWI2ZGJhZjIxOTU0NjliMSIsInJlYWxtSWQiOiIxMjMxNDU2NTc5NDkzNjcifSwiaWF0IjoxNzI0NzA5MTEwLCJleHAiOjE3MjQ3Mzc5MTB9.tNoGZjC026iEmo6zGsAdQ5-HGhIRq6JwwcpJWTqMNT0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36intuit_tid: cp-c28df-dd44-4a00-aef7-a953e675b903Accept: application/pdfsec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_USAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: AWSALB=nvIDlI5QEy3LoyPAct3oDQ17JO2RrfqFDRjdPJnQDYOiyAK+sDETnGbNOZU2IlknC8I3be7SuAnUPw2UFVaQKX7eMa99M5CO80sbJFkqn1LqI05Ed0Mhk0eKNls9; AWSALBCORS=nvIDlI5QEy3LoyPAct3oDQ17JO2RrfqFDRjdPJnQDYOiyAK+sDETnGbNOZU2IlknC8I3be7SuAnUPw2UFVaQKX7eMa99M5CO80sbJFkqn1LqI05Ed0Mhk0eKNls9; ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545
Source: global traffic	HTTP traffic detected: GET /nbb1tmor7ga3i535.js?iqxh0z34jnpxx64m=v60nf4oj&2ps8az1z7geoeboi=3B5B81F47A244B4B5E5308D420979545 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545
Source: global traffic	HTTP traffic detected: GET /scripts/04e01638/04e01638.js HTTP/1.1Host: bcdn-god.we-stats.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /next-integrations/integrations/vendor/commons.a61d7bea37d2de5d4b69.js.gz HTTP/1.1Host: cdn.segment.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6139-309dee1860ca094e.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/2766.b29c036bad593b19.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545
Source: global traffic	HTTP traffic detected: GET /next-integrations/integrations/google-adwords-new/1.3.0/google-adwords-new.dynamic.js.gz HTTP/1.1Host: cdn.segment.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/8482.b28cf868ec59260b.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545
Source: global traffic	HTTP traffic detected: GET /_next/static/chunks/6835-0f0b30fe7859a16d.js HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545
Source: global traffic	HTTP traffic detected: GET /nbb1tmor7ga3i535.js?iqxh0z34jnpxx64m=v60nf4oj&2ps8az1z7geoeboi=3B5B81F47A244B4B5E5308D420979545 HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; tmx_guid=AAydzMFYwpyfdfsCfXCYeyjsUQXpq7Hyl_0Rc_9328QbGaUjSUIhARsI17-0eSp9hhaeRODZ9pKUviwT9t0arp67JMmBow
Source: global traffic	HTTP traffic detected: GET /portal/rest/reporting/prometheus/view HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; AWSALB=T61oNPquLoaawtH8W1JROd1g87zI/sTwBEpT50knot47pmHHKHp2nbtHWqfB+K4v4+ZBspKREHtZvsmnhsXx/WeeFTs1HaTVFzxbNVRFLhbAhi1QIewsBz9RMK7e; AWSALBCORS=T61oNPquLoaawtH8W1JROd1g87zI/sTwBEpT50knot47pmHHKHp2nbtHWqfB+K4v4+ZBspKREHtZvsmnhsXx/WeeFTs1HaTVFzxbNVRFLhbAhi1QIewsBz9RMK7e
Source: global traffic	HTTP traffic detected: GET /portal/rest/invoice/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1/view HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; AWSALB=T61oNPquLoaawtH8W1JROd1g87zI/sTwBEpT50knot47pmHHKHp2nbtHWqfB+K4v4+ZBspKREHtZvsmnhsXx/WeeFTs1HaTVFzxbNVRFLhbAhi1QIewsBz9RMK7e; AWSALBCORS=T61oNPquLoaawtH8W1JROd1g87zI/sTwBEpT50knot47pmHHKHp2nbtHWqfB+K4v4+ZBspKREHtZvsmnhsXx/WeeFTs1HaTVFzxbNVRFLhbAhi1QIewsBz9RMK7e
Source: global traffic	HTTP traffic detected: GET /scripts/04e01638/04e01638.js HTTP/1.1Host: bcdn-god.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/rest/pdf/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1/invoice.pdf HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709125287-sjn0000300-10af3ac3-728f-4e4d-8611-e44355550471; AWSALB=Kqb7LRhQeWgHclw32Jrh45c/SV4EXbOAtHskaaDbxVG+kWilyTfHYk8zTPIWlK4suZiiWWxskeMpBVIIOFY8ZTI0UlHvVZUm3ArFub0Qq+CStsNE+Ezr5mjJECjR; AWSALBCORS=Kqb7LRhQeWgHclw32Jrh45c/SV4EXbOAtHskaaDbxVG+kWilyTfHYk8zTPIWlK4suZiiWWxskeMpBVIIOFY8ZTI0UlHvVZUm3ArFub0Qq+CStsNE+Ezr5mjJECjR
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /next-integrations/integrations/vendor/commons.a61d7bea37d2de5d4b69.js.gz HTTP/1.1Host: cdn.segment.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /v1/assessment HTTP/1.1Host: risk-vendor-svc.api.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; ADRUM_BTa=R:27\|g:84004c56-62b8-4066-9bbb-e2b79b0658c3\|n:intuit-sbg-prod_87bcfab1-ad5a-4af1-95e0-7eed4f8a1800; SameSite=None; ADRUM_BT1=R:27\|i:307331\|e:1; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /y9vnE8qXxGHkQFn7?affc70ce954c2104=ysG-weYZyAhgmpd_vRKbLmrml9Xxd_0ouapF0s0pHiU5p86GkkTmpongmHM54UXp1XJoLfVN9hEKQsAHcN1DvqrhLdrOCmTVPRe5kIsofeX2EQBIjcRNK3P7a_NSvzLvs4mW0dX4AIn8_Ys1dncAWDoz_KWUjx6nL3MKvadaY5gzp3CvVj_ldsjVFhIIKI4KQipdmgZrNk2TrUIvf-9rlL8&jb=373b262462736d753f576b6e646d7771266a736d3d5f696e666f7f712d32303132246a716a753f436a726d6d65246a71623d436a72676d65273238333937 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /qpuhaBhn3FLfgw42?607f084ae41c535c=Sg5Uoajep3GWQiIrbndBnMPbyAbUJMzmeaB3iCXnB8cIEr0QDmr6LkjxuLUJec51Qx7ALTjTaiRbg-d68Vstn1SppjNZGQ7gRl2nQ9e65ocf4eIS0cY8I7oZkrsoV_rYKp1C3AAP6JvL7FS0hGmUhBML-XYw2kKEv_q2aIt4AzkhWg HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /portal/rest/reporting/prometheus/pageLoad HTTP/1.1Host: connect.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; AWSALB=9G7neky7hAXiqgT67TS8kanzWSboQZK1+EqVmT/3zG1HwlMEUNDebiKnsxFGBhQumAOJLgrkI/YbyR+u6QDa8G6mO7co2vJe8n9IaRJ8UakZNb+HLHGjj/mtCn/0; AWSALBCORS=9G7neky7hAXiqgT67TS8kanzWSboQZK1+EqVmT/3zG1HwlMEUNDebiKnsxFGBhQumAOJLgrkI/YbyR+u6QDa8G6mO7co2vJe8n9IaRJ8UakZNb+HLHGjj/mtCn/0
Source: global traffic	HTTP traffic detected: GET /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /l6QruVyG7hy3CYg_?bcb292ea7da70489=w-Wo02DwwLUUyNVL8KZlwSvcnHUtleWDpqircecjflOcp926OS_19YNKXPI9HrGA_0oN4KB89mo94ngD0cy_ufPgU3QwnYTjqMZkbsg4RleVT-ib6O4Z4zMXtbpK8uLCKDp8L2rcbmZ_Si2yuYAgqiloomFdhPBYK8YVxTYcRbIAAw HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /favicon.png HTTP/1.1Host: static.cns-icn-prod.a.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /qpuhaBhn3FLfgw42?607f084ae41c535c=Sg5Uoajep3GWQiIrbndBnMPbyAbUJMzmeaB3iCXnB8cIEr0QDmr6LkjxuLUJec51Qx7ALTjTaiRbg-d68Vstn1SppjNZGQ7gRl2nQ9e65ocf4eIS0cY8I7oZkrsoV_rYKp1C3AAP6JvL7FS0hGmUhBML-XYw2kKEv_q2aIt4AzkhWg HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/summaryxonline.lloydstsb.co.ukxonlinebanking.mandtbank.com/summary/AccountSummaryxpassport.yandex.ruxpaypal.com/x/cgi-bin/webscr?cmd=_accountxpaypal.com/x/cgi-bin/webscr?cmd=_login-done&login_access=xpaypal.com/us/cgi-bin/webscr?cmd=_login-done&login_access=xposte.it/xpsk.co.at/xsecure.lloydstsb.co.uk/personal/a/account_overviewxsmile.co.uk/SmileWeb/passcodexusaa.com/xusbank.com/internetBanking/RequestRouter?requestCmdId=Gxwachovia.comxybonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagex.amazon.fr/xhistory/orders/view.htmlx.banquepopulaire.frxShowPortal.dox.bnpparibasfortis.bexHome_Logon.aspx.cdiscount.com/Account/Home.aspxx.
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: /, v60nf4oj/3bd393a3c363f1383b5b81f47a244b4b5e5308d420979545sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://connect.intuit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dJnOxq9hpWSJXtE_?4f1c7c4090943f56=jsgHtZXRMQSECRDjuYKBd2YEeeIOBBZg-A4cYfMYBohLqFP3jVi1VpgHV1jDiYaIc2XkZubYQ_u5EaIoybyCAUZh4ed5COISozinKMMuWsFt2LpXhRI-zOE9_IV8AjfaGol5x69XQabw8zU2YMSO2zygOU6x7ahm3K0us4TUX-5NAxBvxPR2lPXLYAYBYTLdZ2cEJhH0iE3tLMQtuAUz0JhGWQ HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /CSd-69SKOr141mNk?d37935dd309fc821=INwr7NOSluR-nY6b-_f4pKWplTUlpyhfsiBCaVYXQ88j3xcoHnRTubsr2hnVOpoIyorsXhwZ14MUbm6oG3wUf-lYNgRWFcpcZeGZHVRwtRxZU_IFVMbAxMGhr78LBr1bjTJIZS6QKoCao3zp53x7U4CLJitueB1NUf6mNTU-dyYBFUt4AgrfKW1Fo44SLwebwy5PrgOfW1vPAGKkT22R8M95bdo HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /NtM3RtiNzhEt7KMo?16608eed347ef96d=ekmEv_G-bA7ZSfYH2VlLp29Wp2jSCYTOSvq0qNldh9KT9BEwuD4BLhRHURdiD-vmQpa70209VDeOn7djGhWOMJv8nWmfzfjLbKfEzUUZOTiVOYp8bE7FPc5iOR8UBTqK3VJ63KFKHGbXeLm_zeaiEQtzACGIERIghAUDZM1ztqFw75meOhlnTSCO7j4EK45q9pONenKtDH6fZ0xmLvQXmhWIpIg HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwt7T-F3MGiA8uEG?c1bb9e99fa5d060c=yebNjE-FuBICgvsViRoy1K64DRbG6kZ_eU0Sbj_jMv6C8hJxnw14cvwO9xdpR-h207v5NJIqZPuWzmoMKWrFiQCjdCSVkJD1XrxsUzgZUkIb2dl6i0HcIhjXADjP1zV-eonYyjf_guylfMX5_nFarYZENLDMjeriOg&jb=3134266e7b613f31356433363230373261346136623a30383b306e313a64343360333037393137 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /f2p3t4cdSfcyyTW7?522c3c78613a37e9=Zm87H7Mm86a9ug8SguwgsAszmyF-VyMUVSROwk7Ekgnu2xiWVs-q6AuJKe5nrqNHgd7IZsXVfBH2YM07hLEyjcMulQiGhCBjeVnsiBFyA-XJo2n3K93ZgDEdhMxpAyvdjsc_2rkhHv15lxImhcS9LmC8ovjL HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /y9vnE8qXxGHkQFn7?affc70ce954c2104=ysG-weYZyAhgmpd_vRKbLmrml9Xxd_0ouapF0s0pHiU5p86GkkTmpongmHM54UXp1XJoLfVN9hEKQsAHcN1DvqrhLdrOCmTVPRe5kIsofeX2EQBIjcRNK3P7a_NSvzLvs4mW0dX4AIn8_Ys1dncAWDoz_KWUjx6nL3MKvadaY5gzp3CvVj_ldsjVFhIIKI4KQipdmgZrNk2TrUIvf-9rlL8&jb=373b262462736d753f576b6e646d7771266a736d3d5f696e666f7f712d32303132246a716a753f436a726d6d65246a71623d436a72676d65273238333937 HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /l6QruVyG7hy3CYg_?bcb292ea7da70489=w-Wo02DwwLUUyNVL8KZlwSvcnHUtleWDpqircecjflOcp926OS_19YNKXPI9HrGA_0oN4KB89mo94ngD0cy_ufPgU3QwnYTjqMZkbsg4RleVT-ib6O4Z4zMXtbpK8uLCKDp8L2rcbmZ_Si2yuYAgqiloomFdhPBYK8YVxTYcRbIAAw HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy-seal/validation?rid=6218d0ea-ee8b-4472-87dd-ba4bf95aab3d HTTP/1.1Host: privacy.truste.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /HTTpswvUJpVJQnMb?e3f8d25dc76c56b7=93GiOwgDpuCX7USaig1IK1JbR42QNnT0MNpPUoSzI9mGk_eM-NoeQfpZqjdQrI6yJ2uBP9G6vG5Rl-vzUxll8CzYWw4vtrXo7lQj_Z6ybj-sxvPkhshMwxb54hzoI9HDrSV-YRZX_u0P8qVxbqLtRf0F8N_furBWjmOSJvw HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/transfer.libertyreserve.com/x/commonscript.jslloydstsb.co.uk/personal/a/account_overview/xmbna.co.ukxmenyala.ruxmoney.yandex.ruxmoneybookers.com/app/login.plxmoneymail.ruxmy.ebay.co.uk/ws/eBayISAPI.dll?MyEbayxmy.ebay.com/ws/eBayISAPI.dll?MyEbayxmy.ebay.fr/ws/eBayISAPI.dll?MyEbayxmybusinessbank.co.ukxnationet.com/AppServices/SignOn/SignOnProcess/RcaSignOnxnpbs.co.ukxnwolb.com/AccountSummaryxnwolb.com/Statementsxnwolb.com/TransfersLandingPagexoltx.fidelity.com/x/x/ofsummary/s
Source: global traffic	HTTP traffic detected: GET /fp/clear.png HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /YDULhM2r0MPG48Bl?9c599ca5225d8fb3=VSnCHSrs4eofNxX52pQEiQJeUGD2uiq1chTemNACsoHNTCDmZYsQYGWtanNhYw3wEvfHQDK9fqs9ONfQJXWQs_T_4754iHS017i2BL5tG18_5bc9uANh97ZgJqUHL9DumDjoIJUcXlw8nsBmyXPuzygVJ1zEw8gW6Q&jf=3134266e7b623f34353930633967626764343936393165383b3939306b316235323361673b353b HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/dJnOxq9hpWSJXtE_?4f1c7c4090943f56=jsgHtZXRMQSECRDjuYKBd2YEeeIOBBZg-A4cYfMYBohLqFP3jVi1VpgHV1jDiYaIc2XkZubYQ_u5EaIoybyCAUZh4ed5COISozinKMMuWsFt2LpXhRI-zOE9_IV8AjfaGol5x69XQabw8zU2YMSO2zygOU6x7ahm3K0us4TUX-5NAxBvxPR2lPXLYAYBYTLdZ2cEJhH0iE3tLMQtuAUz0JhGWQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /CG3NxfsqA1u0ijlV?e565f69a9996cf8b=lQBx9R-P9ZcWq0YkrWF_x8CmdFFd2kez-zbfar2i-tO4wyvS9F2AeDw2mF1bP1AXHsrBYLRUKO0SVTxYClvn07gV3Sv4R2SWATFlcSADHxVJMGdDfq2eDpj_TEytjGDqs1KhU9IT3LGFb6IYrv_lJFi1Eshf&fr HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/dJnOxq9hpWSJXtE_?4f1c7c4090943f56=jsgHtZXRMQSECRDjuYKBd2YEeeIOBBZg-A4cYfMYBohLqFP3jVi1VpgHV1jDiYaIc2XkZubYQ_u5EaIoybyCAUZh4ed5COISozinKMMuWsFt2LpXhRI-zOE9_IV8AjfaGol5x69XQabw8zU2YMSO2zygOU6x7ahm3K0us4TUX-5NAxBvxPR2lPXLYAYBYTLdZ2cEJhH0iE3tLMQtuAUz0JhGWQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /dwt7T-F3MGiA8uEG?c1bb9e99fa5d060c=yebNjE-FuBICgvsViRoy1K64DRbG6kZ_eU0Sbj_jMv6C8hJxnw14cvwO9xdpR-h207v5NJIqZPuWzmoMKWrFiQCjdCSVkJD1XrxsUzgZUkIb2dl6i0HcIhjXADjP1zV-eonYyjf_guylfMX5_nFarYZENLDMjeriOg&jb=3134266e7b613f31356433363230373261346136623a30383b306e313a64343360333037393137 HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /dwt7T-F3MGiA8uEG?c1bb9e99fa5d060c=yebNjE-FuBICgvsViRoy1K64DRbG6kZ_eU0Sbj_jMv6C8hJxnw14cvwO9xdpR-h207v5NJIqZPuWzmoMKWrFiQCjdCSVkJD1XrxsUzgZUkIb2dl6i0HcIhjXADjP1zV-eonYyjf_guylfMX5_nFarYZENLDMjeriOg&ja=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
Source: global traffic	HTTP traffic detected: GET /f2p3t4cdSfcyyTW7?522c3c78613a37e9=Zm87H7Mm86a9ug8SguwgsAszmyF-VyMUVSROwk7Ekgnu2xiWVs-q6AuJKe5nrqNHgd7IZsXVfBH2YM07hLEyjcMulQiGhCBjeVnsiBFyA-XJo2n3K93ZgDEdhMxpAyvdjsc_2rkhHv15lxImhcS9LmC8ovjL HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /eNK4R5BhleP4nOE3?1013c7444d5e957c=Rpp9bQsfa33ei4jus_qwLFgvApK8yvYeGbe0qMklL5aHw4VIAjdfuclDMPRStItyU9uB0_AhhJoRKjyWmGOv5wOs9GsEK74etA-zwB8l8afsQ5crDjOS6rOm-wqPqnn467W8F5D9uiSrlyfJ4T6e8FvmJd7HbzlwuSkoDCY HTTP/1.1Host: h64.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /4kUguec-fTN8-6ju?b79e65cd7282b5e8=_IbMOlabUhmaY9SW2sJ3rYio_4GcLNAtWcSTx_646Esy5HdsMWqWW7qMTQvhKWvj3lYFpHmWe3L_lEkbJT5Ri-DXn9v62Or79MmYHRjg_LLePbCkgzx1bRidcF2bjTUvwQhwVvcHFott15zgYIdlwrQnF_zU9cVt86oYZaenUw3mXVUQ8Hn2A1tfAyU4zZW8v6f3BK5Xs_hyKHvn19wZELldNg&jf=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 HTTP/1.1Host: h.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://h.online-metrix.net/NtM3RtiNzhEt7KMo?16608eed347ef96d=ekmEv_G-bA7ZSfYH2VlLp29Wp2jSCYTOSvq0qNldh9KT9BEwuD4BLhRHURdiD-vmQpa70209VDeOn7djGhWOMJv8nWmfzfjLbKfEzUUZOTiVOYp8bE7FPc5iOR8UBTqK3VJ63KFKHGbXeLm_zeaiEQtzACGIERIghAUDZM1ztqFw75meOhlnTSCO7j4EK45q9pONenKtDH6fZ0xmLvQXmhWIpIgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /8Zps7M972wyhvRy7?89a9ffcd1a51ff16=rJJc9AgU4dfJHOhzavjzCKrZvViYK7caudpiuedkPBSzddKYG2scO6Mrn8Kh9EDRrQIlZ4YGnNZOIhBoSZBc981mdtN1Dbulo-IUWtGO-T0mbf-V2ApBcZ4xnsOKbXIc_4rY0OfFtyssc1dSaGI1o5EsZ5z1PSIiYL12z7Q9WqIOWVtuSZ0exc1jfUp6VcHxT_HfyqL2X96K9P06KIhg6FrBgA&jf=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /dwt7T-F3MGiA8uEG?c1bb9e99fa5d060c=yebNjE-FuBICgvsViRoy1K64DRbG6kZ_eU0Sbj_jMv6C8hJxnw14cvwO9xdpR-h207v5NJIqZPuWzmoMKWrFiQCjdCSVkJD1XrxsUzgZUkIb2dl6i0HcIhjXADjP1zV-eonYyjf_guylfMX5_nFarYZENLDMjeriOg&jac=1&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest
Source: global traffic	HTTP traffic detected: GET /WhviUumwt0kL_Rkj?342b75b46f19a6a8=ktsIjLNs4sKAc5pU0gLBSdktCf6GYJiqVr8q1BFeBBVzvhc0ZPs2YTwsMiTkBlNX5nZ1LfZ7bFeTV5-DYtXQXKdAcHtr_hOasZ_4QTrYByPJuUt9FTxcREQCUHSkVDqmj-CoVJfwIgYOB6bcdb6Bn1eJ02__r7TMZoLis6lKJM0 HTTP/1.1Host: v60nf4oj5kwx7nyv6kx5vw5sku3egwb4lvht5vvp3bd393a3c363f138am1.e.aa.online-metrix.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /QHEwBYVphBrUcCGF?95663be0ceac11c3=wG0iMT6Klo7iLSE9iLU8xnpsMt6IBhW8rX733gTLAfxWIgTUZmiME7biOSo3lFBgpIZp5YPy9I15_JizKZOidvRFu1J0GIRx46JxtTYDfVNE2BLl3ktm3hdrhQERg72eYDPuaIeut5dfHPWGkyKAlCdqu4yvKA4Ajt1YyBuSHpKf9YSbUpfdgFBL6EZgjjxwVsVHCmZZpbhk3yQHhyg2s5Vv3A&jac=1&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /dwt7T-F3MGiA8uEG?c1bb9e99fa5d060c=yebNjE-FuBICgvsViRoy1K64DRbG6kZ_eU0Sbj_jMv6C8hJxnw14cvwO9xdpR-h207v5NJIqZPuWzmoMKWrFiQCjdCSVkJD1XrxsUzgZUkIb2dl6i0HcIhjXADjP1zV-eonYyjf_guylfMX5_nFarYZENLDMjeriOg&jac=1&je=333426247f656b3d3a2e36362e3332312e3333 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /YDULhM2r0MPG48Bl?9c599ca5225d8fb3=VSnCHSrs4eofNxX52pQEiQJeUGD2uiq1chTemNACsoHNTCDmZYsQYGWtanNhYw3wEvfHQDK9fqs9ONfQJXWQs_T_4754iHS017i2BL5tG18_5bc9uANh97ZgJqUHL9DumDjoIJUcXlw8nsBmyXPuzygVJ1zEw8gW6Q&jf=3134266e7b623f34353930633967626764343936393165383b3939306b316235323361673b353b HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /HTTpswvUJpVJQnMb?e3f8d25dc76c56b7=93GiOwgDpuCX7USaig1IK1JbR42QNnT0MNpPUoSzI9mGk_eM-NoeQfpZqjdQrI6yJ2uBP9G6vG5Rl-vzUxll8CzYWw4vtrXo7lQj_Z6ybj-sxvPkhshMwxb54hzoI9HDrSV-YRZX_u0P8qVxbqLtRf0F8N_furBWjmOSJvw HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /eNK4R5BhleP4nOE3?1013c7444d5e957c=Rpp9bQsfa33ei4jus_qwLFgvApK8yvYeGbe0qMklL5aHw4VIAjdfuclDMPRStItyU9uB0_AhhJoRKjyWmGOv5wOs9GsEK74etA-zwB8l8afsQ5crDjOS6rOm-wqPqnn467W8F5D9uiSrlyfJ4T6e8FvmJd7HbzlwuSkoDCY HTTP/1.1Host: h64.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /CG3NxfsqA1u0ijlV?e565f69a9996cf8b=lQBx9R-P9ZcWq0YkrWF_x8CmdFFd2kez-zbfar2i-tO4wyvS9F2AeDw2mF1bP1AXHsrBYLRUKO0SVTxYClvn07gV3Sv4R2SWATFlcSADHxVJMGdDfq2eDpj_TEytjGDqs1KhU9IT3LGFb6IYrv_lJFi1Eshf&fr HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /WhviUumwt0kL_Rkj?342b75b46f19a6a8=ktsIjLNs4sKAc5pU0gLBSdktCf6GYJiqVr8q1BFeBBVzvhc0ZPs2YTwsMiTkBlNX5nZ1LfZ7bFeTV5-DYtXQXKdAcHtr_hOasZ_4QTrYByPJuUt9FTxcREQCUHSkVDqmj-CoVJfwIgYOB6bcdb6Bn1eJ02__r7TMZoLis6lKJM0 HTTP/1.1Host: v60nf4oj5kwx7nyv6kx5vw5sku3egwb4lvht5vvp3bd393a3c363f138am1.e.aa.online-metrix.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwt7T-F3MGiA8uEG?c1bb9e99fa5d060c=yebNjE-FuBICgvsViRoy1K64DRbG6kZ_eU0Sbj_jMv6C8hJxnw14cvwO9xdpR-h207v5NJIqZPuWzmoMKWrFiQCjdCSVkJD1XrxsUzgZUkIb2dl6i0HcIhjXADjP1zV-eonYyjf_guylfMX5_nFarYZENLDMjeriOg&jac=1&je=333339362e26726d3f6e6d2662637471743d2535422d32326e657e67642532322731413326303225304327323271746374757327323a253343253a306b686172656b6e652d323025354424617566683f63656660616d34373a363f356e3032666060643b3f33343135363b326460643b63363437306a6635343439343e39656267643137313563623534376132333135266578313d3a626266636e313f366461343632373d303a33356230383630643b373934363469626237656d363b266a736d3f576b66646d77712530303132267761683d27374a253230617a6160697465617675706d253032273343253230783a36253230253a432530326a6b7c6e6573712732302d334325303234342530322732432530326a72616c647b273a322533432735402d37402530326072616c642732322531412d3232456f67656465253232416870676d672530322732432732307665727169676e2530322d3149253232333337273a3227374625304325354227323262706166642530322d31492532324c6d74273b42432531444072616c642732322530432d323274657a71616f6e2530302531492530323a2530322535442732432535422d32326072696c6c253232273141273a324168706f6f69756f253032253241253a327667727b6b676e2532302733432d323031333727323227374625354427324b253230667d6e64566572716b6f6c44697174273230253343253742253740253a3262706166662d323225314325303a476d6f656c67253232436a726f6d67253a322530432d303a766572716b6f6c2d32302531412732323331352e302e37393b382e33333a273a322537462732412d37402530326072616c642732322531412d32324c6f7c273b42412531464270696e662530322732432732307665727169676e2530322d31492532323a2c302c382e3225303227374427324125374227323a6272636e6c273a322533432732304b68706f6f69776d2530322732432530327e65727169676c2d323225314325303a3133372c302c353931382c31333227323a253746253d462d32432530306d6d6a696e6527323025334366636c736527324b2532306d67666d6c2532302733432d3230253032273243273230706c61766667726d27323a273b4125323055696c6c6f7573273230253241253032706c63746e6f726f566d707b696f6e273032273b4127323031322e302c302732322530432d3232756f7f343c25323227314164696c71652737462675636c3f25374227323a6272636e6c712d323225314325374a2535422732306272636e6625323227334925323047676d6f6c65253032436a7a6f6f6527323025324125303276657073616f6e27323a273b412532303331352d32302535442732432737402532326072696e6427323a273b412532304c6f762d3340412733464272636e6625323227324b253230766d707b696f6e273032273b412732303827323227374625324327374a253230627a6366642532302733432d3230436a726d6d69776d2732322530432d323274657a71616f6e253030253149253032333135253230253544253546253a43253032656d6a696c65273032273b4164616e7367253241253032706c63746e6f726f253a302d3341253030576b66646d7771253032253544 HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anony
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwt7T-F3MGiA8uEG?c1bb9e99fa5d060c=yebNjE-FuBICgvsViRoy1K64DRbG6kZ_eU0Sbj_jMv6C8hJxnw14cvwO9xdpR-h207v5NJIqZPuWzmoMKWrFiQCjdCSVkJD1XrxsUzgZUkIb2dl6i0HcIhjXADjP1zV-eonYyjf_guylfMX5_nFarYZENLDMjeriOg&jac=1&je=333426247f656b3d3a2e36362e3332312e3333 HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /3maQEdJZElxNEpwG?00bc07fdde62147a=_uCIhnjQW_4LzPunDv76lNa7_WQPMmKrmyeiEpAVXwaT7nWI27nye4xOMCyQbwHMnbkBS3JPGKM0c2gWFTorSiVO_blLMy1fkvqsMitmLa1MDaEGttYEkMo6pVpG5zrH1UD2WQxaI7SAcPn_nuSct2a4hAzqu7BaytaqiOZALxP981MwucPw9oZDcM34Ha2XmqKQAGquROwHnwKnFRjyow&sera_parametere=VRJZA10LBQtXAg8FU1VWDwBSAlYMBQQFUQcCAwABBVsABgUKCVZTC1EHDxUVQg5RXRIRR0oWUndGBHQWUXUWCgMIF1ZVVgxWDUdFFlV1Fg9xUkEEfRZTAwtcRUcVFAB8FlUmFg53R1cKDgMLVAEACldQAAQLVwIAB1IGBgcDBggKVQcKAVFRAwdVVVVXCApeAVJCXVZdAlZeAFRXVQgAWQABVwUKVVAAWxVcQFsBSwgFUQEFDApUBgJRVVVWVAUBBFVVAF1RAlAACgEKUQILAQQDXAFfCgAVAloLAl4ACx5aC1keCBURWl4KDwpfCRVQWF9CUQRwCUEMXlMVBEcOCQJVQlFWQFxkCl1SXBFCFVtRXxBXQ2wCUg9fVFIFWhVdR19RAA%3D%3D&count=0&max=0 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://qfp.intuit.com/LmQVDoRc72l_hf-c?ca820bff528a51dc=qJztYOLXOy7ZL5BgZABvuTfjQwWe-iKEeHzQsqQYFXgnn1GJdK9B7FU7KwGgTO-qnAzKwGWjFYf1FmnvpeJ3BzLWqhdvmL82yqjfPHfgCg7oevu6HfSJXNEi2fGLc_6ywSMbhqge8pIP3YcgjbkQ7g&hp=.co-operativebank.co.uk/CBIBSWeb/login.do.co-operativebank.co.uk/CBIBSWeb/start.do.de/portal/portal/x.entropay.com/basemenu/prot/x.facebook.comx.nationet.com/x.netbank.commbank.com.au/netbank/bankmainx.npbs.co.uk/netmastergoldbanking/x.nwolb.xlogin.aspx?refereridentx.rbsdigital.xAccountSummaryx.smile.co.uk/SmileWeb/login.do.smile.co.uk/SmileWeb/start.do.yandex.rux/CapitalOne_Consumer/x/easypay.by/x/sbank.ru/x53.com/servlet/efsonlinex://online.wellsfargo.com/x://secure.assist.ru/assistid/protected/main.doxabbeynational.co.uk/EBAN_ENS/BtoChannelDriverxalliance-leicesterxaltergold.com/login.phpxamericanexpress.com/myca/intl/acctsumm/emea/accountSummaryxbancaintesa.it/xbankcardservices.co.ukxbankofamerica.com/xbanquepopulaire.fr/xbnpparibas.net/xcahoot.comxcapitaloneonline.co.uk/CapitalOne_Consumer/Transactionsxcbonline.co.uk/ralu/reglm-web/setupSecurityQuestionPagexcibc.comxPreSignOnxcibc.comxSignOnxcitibank.ru/xclient.uralsibbank.ruxco-operativebank.co.uk/CBIBSWeb/loginSpixcommerceonlinebanking.comxcoventrybuildingsociety.co.ukxdeutsche-bank.dexdiscovercard.com/cardmembersvcs/strongauth/app/sa_mainxebanking.bawag.comxebc_ebc1961xegg.com/customer/movemoneyxegg.com/customer/yourmoneyxfacebook.com/xhalifax-online.co.ukxMyAccountsxhalifax-online.co.uk/x/Mhalifax-online.co.uk/personalxhsbc.co.uk/1/2/personal/internet-banking/xhsbc.comxhttps://banking.postbank.de/app/finanzstatus.init.do;jsessionidxib.fineco.it/FinecoWeb/BonificiServletxib.fineco.it/FinecoWeb/jsp/Main/HBFineco.jspxib.fineco.it/FinecoWeb/jsp/Main/Principale.jspxibank.alfabank.ruxin-biz.it/xipko.plxlibertyreserve.com/x/historylibertyreserve.com/x/loginwww.libertyreserve.com/x/Core.jswww.libertyreserve.com/x/tran
Source: global traffic	HTTP traffic detected: GET /3maQEdJZElxNEpwG?00bc07fdde62147a=_uCIhnjQW_4LzPunDv76lNa7_WQPMmKrmyeiEpAVXwaT7nWI27nye4xOMCyQbwHMnbkBS3JPGKM0c2gWFTorSiVO_blLMy1fkvqsMitmLa1MDaEGttYEkMo6pVpG5zrH1UD2WQxaI7SAcPn_nuSct2a4hAzqu7BaytaqiOZALxP981MwucPw9oZDcM34Ha2XmqKQAGquROwHnwKnFRjyow&sera_parametere=VRJZA10LBQtXAg8FU1VWDwBSAlYMBQQFUQcCAwABBVsABgUKCVZTC1EHDxUVQg5RXRIRR0oWUndGBHQWUXUWCgMIF1ZVVgxWDUdFFlV1Fg9xUkEEfRZTAwtcRUcVFAB8FlUmFg53R1cKDgMLVAEACldQAAQLVwIAB1IGBgcDBggKVQcKAVFRAwdVVVVXCApeAVJCXVZdAlZeAFRXVQgAWQABVwUKVVAAWxVcQFsBSwgFUQEFDApUBgJRVVVWVAUBBFVVAF1RAlAACgEKUQILAQQDXAFfCgAVAloLAl4ACx5aC1keCBURWl4KDwpfCRVQWF9CUQRwCUEMXlMVBEcOCQJVQlFWQFxkCl1SXBFCFVtRXxBXQ2wCUg9fVFIFWhVdR19RAA%3D%3D&count=0&max=0 HTTP/1.1Host: qfp.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /QHEwBYVphBrUcCGF?95663be0ceac11c3=wG0iMT6Klo7iLSE9iLU8xnpsMt6IBhW8rX733gTLAfxWIgTUZmiME7biOSo3lFBgpIZp5YPy9I15_JizKZOidvRFu1J0GIRx46JxtTYDfVNE2BLl3ktm3hdrhQERg72eYDPuaIeut5dfHPWGkyKAlCdqu4yvKA4Ajt1YyBuSHpKf9YSbUpfdgFBL6EZgjjxwVsVHCmZZpbhk3yQHhyg2s5Vv3A&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b
Source: global traffic	HTTP traffic detected: GET /consumer-resources/dispute-resolution-2 HTTP/1.1Host: www.truste.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dispute-resolution-2/ HTTP/1.1Host: trustarc.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /QHEwBYVphBrUcCGF?95663be0ceac11c3=wG0iMT6Klo7iLSE9iLU8xnpsMt6IBhW8rX733gTLAfxWIgTUZmiME7biOSo3lFBgpIZp5YPy9I15_JizKZOidvRFu1J0GIRx46JxtTYDfVNE2BLl3ktm3hdrhQERg72eYDPuaIeut5dfHPWGkyKAlCdqu4yvKA4Ajt1YyBuSHpKf9YSbUpfdgFBL6EZgjjxwVsVHCmZZpbhk3yQHhyg2s5Vv3A&je=373126246261613d33267267655d7572646174673d2d374227323a322d323225314325354a253032746570253230253141332535442d3744 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consumer-information/privacy-feedback-button HTTP/1.1Host: trustarc.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consumer-information/privacy-feedback-button/ HTTP/1.1Host: trustarc.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-includes/css/dist/block-library/style.min.css?ver=6.6.1 HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/trustarc/assets/dist/style.css?ver=1711660746 HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/trustarc/style.css?ver=1711465962 HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/trustarc/assets/dist/js/jquery-3.6.0.min.js?ver=1711465976 HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /autoblockasset/core.min.39652c2.js?domain=trustarc.com HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed/index.php?tracker_id=86894795 HTTP/1.1Host: chat-application.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /autoblockoptout?domain=trustarc.com HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /frontend/web/index.php?r=api%2Fload-js&tracker_id=86894795 HTTP/1.1Host: chat-application.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/trustarc/assets/dist/js/jquery-3.6.0.min.js?ver=1711465976 HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/logo.svg HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/res-square-rect-blue.png HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /autoblockasset/core.min.39652c2.js?domain=trustarc.com HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /autoblockoptout?domain=trustarc.com HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/res-square-plus-pink.png HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/trustarc/assets/dist/images/icon-search.svg HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /frontend/web/index.php?r=api%2Fload-js&tracker_id=86894795 HTTP/1.1Host: chat-application.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/seal-truste-privacy-feedback.png HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/trustarc/assets/dist/js/app.js?ver=1711465976 HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/logo.svg HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/res-square-rect-blue.png HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /notice?domain=trustarc.com&c=teconsent&js=nj&noticeType=bb&gtm=1&text=true&pcookie&irmc=irmlink HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://trustarc.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/res-square-plus-pink.png HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/trustarc/assets/dist/images/icon-search.svg HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1Host: translate.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/seal-truste-privacy-feedback.png HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/footer-logo.svg HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /log?domain=trustarc.com&country=us&state=&behavior=implied&session=7680e9f7-eecc-4092-a9c2-e2b264e8308b&userType=NEW&c=0396&referer=https://trustarc.com&language=en HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /asset/notice.js/v/v1.7-230 HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://trustarc.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/li.svg HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /wp-content/themes/trustarc/assets/dist/js/app.js?ver=1711465976 HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/x.svg HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/fb.svg HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/wp-emoji-release.min.js?ver=6.6.1 HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /notice?domain=trustarc.com&c=teconsent&js=nj&noticeType=bb&gtm=1&text=true&pcookie&irmc=irmlink HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1Host: translate.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/li.svg HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/footer-logo.svg HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /bannermsg?action=views&domain=trustarc.com&behavior=implied&country=us&language=en&rand=0.17393726997713466&session=7680e9f7-eecc-4092-a9c2-e2b264e8308b&userType=NEW&referer=https://trustarc.com HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /QHEwBYVphBrUcCGF?95663be0ceac11c3=wG0iMT6Klo7iLSE9iLU8xnpsMt6IBhW8rX733gTLAfxWIgTUZmiME7biOSo3lFBgpIZp5YPy9I15_JizKZOidvRFu1J0GIRx46JxtTYDfVNE2BLl3ktm3hdrhQERg72eYDPuaIeut5dfHPWGkyKAlCdqu4yvKA4Ajt1YyBuSHpKf9YSbUpfdgFBL6EZgjjxwVsVHCmZZpbhk3yQHhyg2s5Vv3A&je=333126247a65743d384558333a564532 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_guid=445f9c99608b692d573e6a647bfee88e; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; tmx_guid=AAwozr9nCEzaTSy2s53b8R1bQhgFgp8S2KlqPOSLvER5cCpLRN-X0zLopSbSMfHFhWw9j_NOD5Cr6CyyNR6zuwOipcjKAQ; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /log?domain=trustarc.com&country=us&state=&behavior=implied&session=7680e9f7-eecc-4092-a9c2-e2b264e8308b&userType=NEW&c=0396&referer=https://trustarc.com&language=en HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /get?name=SourceSansPro-Regular.ttf HTTP/1.1Host: consent.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://trustarc.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/cleardot.gif HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/fb.svg HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2023/11/x.svg HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /wp-includes/js/wp-emoji-release.min.js?ver=6.6.1 HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /images/cleardot.gif HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /asset/notice.js/v/v1.7-230 HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /bannermsg?action=views&domain=trustarc.com&behavior=implied&country=us&language=en&rand=0.17393726997713466&session=7680e9f7-eecc-4092-a9c2-e2b264e8308b&userType=NEW&referer=https://trustarc.com HTTP/1.1Host: consent.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/cropped-favicon-32x32.png HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/consumer-information/privacy-feedback-button/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152
Source: global traffic	HTTP traffic detected: GET /ads/pixel.js HTTP/1.1Host: www.redditstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rs/846-LLZ-652/images/rwtsmin_minified.js HTTP/1.1Host: info.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152
Source: global traffic	HTTP traffic detected: GET /pixels/t2_9ns793lfk/config HTTP/1.1Host: pixel-config.reddit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://trustarc.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/conversions-config/v1/pixel/config/t2_9ns793lfk_telemetry HTTP/1.1Host: www.redditstatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://trustarc.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rp.gif?ts=1724709153168&id=t2_9ns793lfk&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=6d2b01cb-a771-4593-9ddf-c585315e7f40&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_e9773deb&dpm=&dpcc=&dprc= HTTP/1.1Host: alb.reddit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/AW-1046165339?random=1724709153858&cv=11&fst=1724709153858&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be48l0z8864344206za201zb864344206&gcd=13l3l3l3l1l1&dma=0&tag_exp=0&u_w=1280&u_h=1024&url=https%3A%2F%2Ftrustarc.com%2Fconsumer-information%2Fprivacy-feedback-button%2F&hn=www.googleadservices.com&frm=0&tiba=Privacy%20Dispute%20Resolution%20Services%20%7C%20TrustArc&npa=0&pscdl=noapi&auid=1157232784.1724709152&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1 HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/ga/rul?tid=G-GC23DHTMEC&gacid=1958377742.1724709154&gtm=45je48l0v876577859z8864344206za200zb864344206&dma=0&gcd=13l3l3l3l1l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=0&z=1915747246 HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/AW-1046165339/?random=1724709153858&cv=11&fst=1724709153858&bg=ffffff&guid=ON&async=1&gtm=45be48l0z8864344206za201zb864344206&gcd=13l3l3l3l1l1&dma=0&tag_exp=0&u_w=1280&u_h=1024&url=https%3A%2F%2Ftrustarc.com%2Fconsumer-information%2Fprivacy-feedback-button%2F&hn=www.googleadservices.com&frm=0&tiba=Privacy%20Dispute%20Resolution%20Services%20%7C%20TrustArc&npa=0&pscdl=noapi&auid=1157232784.1724709152&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /forums/920104 HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1
Source: global traffic	HTTP traffic detected: GET /pixels/t2_9ns793lfk/config HTTP/1.1Host: pixel-config.reddit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/pixel.js HTTP/1.1Host: www.redditstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/02/cropped-favicon-32x32.png HTTP/1.1Host: trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154
Source: global traffic	HTTP traffic detected: GET /ads/conversions-config/v1/pixel/config/t2_9ns793lfk_telemetry HTTP/1.1Host: www.redditstatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rs/846-LLZ-652/images/rwtsmin_minified.js HTTP/1.1Host: info.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; __cf_bm=55Lyw84T95YU6XqN1ZfeElEArfEpEP5yOBc0LiRgYmY-1724709154-1.0.1.1-qIDOUzEJkBt3Em0LvVwSIkJhPBafVt6Q.y7jhW5zaA9FR1NOwtS1ufYoArEI__G4es7tI2Q_B9ns_oPYSSpEVg; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/AW-1046165339/?random=1724709153858&cv=11&fst=1724706000000&bg=ffffff&guid=ON&async=1&gtm=45be48l0z8864344206za201zb864344206&gcd=13l3l3l3l1l1&dma=0&tag_exp=0&u_w=1280&u_h=1024&url=https%3A%2F%2Ftrustarc.com%2Fconsumer-information%2Fprivacy-feedback-button%2F&hn=www.googleadservices.com&frm=0&tiba=Privacy%20Dispute%20Resolution%20Services%20%7C%20TrustArc&npa=0&pscdl=noapi&auid=1157232784.1724709152&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnf7L8qKDFLwAmD4Xx9JJpa31BKoqbvPA&random=745543835&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://trustarc.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/uv-auth.css HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://feedback.qbo.intuit.com/forums/920104Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/uv-auth.esm.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/forums/920104Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/wp-components.esm.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/forums/920104Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ
Source: global traffic	HTTP traffic detected: GET /pkg/clients/site2/index-3226d0051af924eb2646f02816d7a869f328355bedcca204e4e0120f1e09f3b1.css HTTP/1.1Host: assets.uvcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://feedback.qbo.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rp.gif?ts=1724709153168&id=t2_9ns793lfk&event=PageVisit&m.itemCount=undefined&m.value=&m.valueDecimal=undefined&m.currency=undefined&m.transactionId=&m.customEventName=&m.products=&m.conversionId=&uuid=6d2b01cb-a771-4593-9ddf-c585315e7f40&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_e9773deb&dpm=&dpcc=&dprc= HTTP/1.1Host: alb.reddit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/AW-1046165339/?random=1724709153858&cv=11&fst=1724709153858&bg=ffffff&guid=ON&async=1&gtm=45be48l0z8864344206za201zb864344206&gcd=13l3l3l3l1l1&dma=0&tag_exp=0&u_w=1280&u_h=1024&url=https%3A%2F%2Ftrustarc.com%2Fconsumer-information%2Fprivacy-feedback-button%2F&hn=www.googleadservices.com&frm=0&tiba=Privacy%20Dispute%20Resolution%20Services%20%7C%20TrustArc&npa=0&pscdl=noapi&auid=1157232784.1724709152&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/AW-1046165339/?random=1724709153858&cv=11&fst=1724706000000&bg=ffffff&guid=ON&async=1&gtm=45be48l0z8864344206za201zb864344206&gcd=13l3l3l3l1l1&dma=0&tag_exp=0&u_w=1280&u_h=1024&url=https%3A%2F%2Ftrustarc.com%2Fconsumer-information%2Fprivacy-feedback-button%2F&hn=www.googleadservices.com&frm=0&tiba=Privacy%20Dispute%20Resolution%20Services%20%7C%20TrustArc&npa=0&pscdl=noapi&auid=1157232784.1724709152&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnf7L8qKDFLwAmD4Xx9JJpa31BKoqbvPA&random=745543835&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pkg/clients/site2/index-4d5e5366848ad2d8e3621058840315fab85cf070d00e5a1229debd2483a1609a.js HTTP/1.1Host: assets.uvcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-3e73ccf5.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/auth-component/uv-auth/uv-auth.esm.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-8c5cd27e.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/auth-component/uv-auth/uv-auth.esm.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ
Source: global traffic	HTTP traffic detected: GET /uploads.uservoice.com/logo/design_setting/109817/original/logo.png?1385523798 HTTP/1.1Host: s3.amazonaws.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback.qbo.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pkg/clients/site2/tab-selected-4eefad526fb67f2b709b1ee705a24f85794b87407331c04ed60b5b38160bae0a.png HTTP/1.1Host: widget.uservoice.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://assets.uvcdn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pkg/clients/_icons/icon.search.16px-bae686b6ac02e0aff2fa9842d8b09cd0584847bc6351aa04d30a9656b3c01672.png HTTP/1.1Host: widget.uservoice.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://assets.uvcdn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/p-5117d167.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/web-portal-components/wp-components/wp-components.esm.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/p-0d86e690.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/web-portal-components/wp-components/wp-components.esm.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/p-0d33de92.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/web-portal-components/wp-components/wp-components.esm.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ
Source: global traffic	HTTP traffic detected: GET /pkg/clients/_shared/field_select-d895064f3513fbd6ca8294037e3a30201cc96fae499b8d6e742a5efe3b1dd438.png HTTP/1.1Host: widget.uservoice.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://assets.uvcdn.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-0fe5d857.entry.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/auth-component/uv-auth/uv-auth.esm.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/uv-auth.esm.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/p-2250179d.entry.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/web-portal-components/wp-components/wp-components.esm.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /widget_environment/5SytiYyrEoStsXof7g09w.js HTTP/1.1Host: qbo.uservoice.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1OsylN.kwSgeuVB4Z1uNx_HNYbfh1mz.XmQOLP4_o00-1724709160-1.0.1.1-1Z_Qf4MZ0hb96DDMsEQpeJh5xlm.e0OyIr0s9M7lAie3UXKEUge9gtL_IusLNmmp9MVb8YyM4CYaIh9f.NVPog
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/static/fonts/proxima_nova_regular.woff2 HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://feedback.qbo.intuit.com/auth-component/uv-auth/uv-auth.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-8698cd4c.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/auth-component/uv-auth/p-0fe5d857.entry.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-2f974050.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/auth-component/uv-auth/p-0fe5d857.entry.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-6b2b4694.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://feedback.qbo.intuit.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/auth-component/uv-auth/p-0fe5d857.entry.jsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback.qbo.intuit.com/forums/920104Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/wp-components.esm.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-3e73ccf5.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-8c5cd27e.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /pkg/clients/site2/index-4d5e5366848ad2d8e3621058840315fab85cf070d00e5a1229debd2483a1609a.js HTTP/1.1Host: assets.uvcdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /uploads.uservoice.com/logo/design_setting/109817/original/logo.png?1385523798 HTTP/1.1Host: s3.amazonaws.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/p-0d86e690.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/p-5117d167.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /pkg/clients/_icons/icon.search.16px-bae686b6ac02e0aff2fa9842d8b09cd0584847bc6351aa04d30a9656b3c01672.png HTTP/1.1Host: widget.uservoice.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1OsylN.kwSgeuVB4Z1uNx_HNYbfh1mz.XmQOLP4_o00-1724709160-1.0.1.1-1Z_Qf4MZ0hb96DDMsEQpeJh5xlm.e0OyIr0s9M7lAie3UXKEUge9gtL_IusLNmmp9MVb8YyM4CYaIh9f.NVPog
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/p-0d33de92.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /pkg/clients/site2/tab-selected-4eefad526fb67f2b709b1ee705a24f85794b87407331c04ed60b5b38160bae0a.png HTTP/1.1Host: widget.uservoice.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1OsylN.kwSgeuVB4Z1uNx_HNYbfh1mz.XmQOLP4_o00-1724709160-1.0.1.1-1Z_Qf4MZ0hb96DDMsEQpeJh5xlm.e0OyIr0s9M7lAie3UXKEUge9gtL_IusLNmmp9MVb8YyM4CYaIh9f.NVPog
Source: global traffic	HTTP traffic detected: GET /widget_environment/5SytiYyrEoStsXof7g09w.js HTTP/1.1Host: qbo.uservoice.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1OsylN.kwSgeuVB4Z1uNx_HNYbfh1mz.XmQOLP4_o00-1724709160-1.0.1.1-1Z_Qf4MZ0hb96DDMsEQpeJh5xlm.e0OyIr0s9M7lAie3UXKEUge9gtL_IusLNmmp9MVb8YyM4CYaIh9f.NVPog
Source: global traffic	HTTP traffic detected: GET /pkg/clients/_shared/field_select-d895064f3513fbd6ca8294037e3a30201cc96fae499b8d6e742a5efe3b1dd438.png HTTP/1.1Host: widget.uservoice.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1OsylN.kwSgeuVB4Z1uNx_HNYbfh1mz.XmQOLP4_o00-1724709160-1.0.1.1-1Z_Qf4MZ0hb96DDMsEQpeJh5xlm.e0OyIr0s9M7lAie3UXKEUge9gtL_IusLNmmp9MVb8YyM4CYaIh9f.NVPog
Source: global traffic	HTTP traffic detected: GET /t2/141454/portal/track.js?_=1724709160819&s=0&c=__uvSessionData0 HTTP/1.1Host: by2.uservoice.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback.qbo.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1OsylN.kwSgeuVB4Z1uNx_HNYbfh1mz.XmQOLP4_o00-1724709160-1.0.1.1-1Z_Qf4MZ0hb96DDMsEQpeJh5xlm.e0OyIr0s9M7lAie3UXKEUge9gtL_IusLNmmp9MVb8YyM4CYaIh9f.NVPog
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/icons/facebook.svg HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback.qbo.intuit.com/forums/920104Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/icons/google.svg HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback.qbo.intuit.com/forums/920104Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-0fe5d857.entry.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /s2/favicons?domain=https://feedback.qbo.intuit.com/auth/oidc?from=popup&provider=71929 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback.qbo.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web-portal-components/wp-components/p-2250179d.entry.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-8698cd4c.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-2f974050.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/p-6b2b4694.js HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana
Source: global traffic	HTTP traffic detected: GET /t2/141454/portal/track.js?_=1724709160819&s=0&c=__uvSessionData0 HTTP/1.1Host: by2.uservoice.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=1OsylN.kwSgeuVB4Z1uNx_HNYbfh1mz.XmQOLP4_o00-1724709160-1.0.1.1-1Z_Qf4MZ0hb96DDMsEQpeJh5xlm.e0OyIr0s9M7lAie3UXKEUge9gtL_IusLNmmp9MVb8YyM4CYaIh9f.NVPog; uvts=0f6726ff-9fc8-45e3-524a-1bb3c3b5976f
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/icons/facebook.svg HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana; uvts=0f6726ff-9fc8-45e3-524a-1bb3c3b5976f
Source: global traffic	HTTP traffic detected: GET /auth-component/uv-auth/icons/google.svg HTTP/1.1Host: feedback.qbo.intuit.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; bmuid=1724709123167-9DC6C9FC-9A03-467E-8472-2C1FE629ED7A; cdContextId=2; cdSNum=1724709128266-sjc0000004-0ef6e3cf-7f63-4c4a-8946-3b8cc0fcfda9; _gcl_au=1.1.1140825863.1724709128; priorityCode=3468337910; AKES_GEO=US~NY; akid=gip127.0.0.1_gsip2.16.101.55_clip127.0.0.1_rclip127.0.0.1; _rf=0; _uv_sid=6378332c97e78a95503d677b53c371f1; __cf_bm=4_y8qJXwQOLBZzQtOkMs0EwSi4HiAhW5x0AEmB7i5FI-1724709157-1.0.1.1-yoy7V_CjARBNYY9wuvdt1idIHBeUwmJykV36xDfAj2xc6QsNGxj9KLzlT2EW_3ONkBIo3ImmAcD5MnlYT56ueQ; _uservoice_tz=America%2FHavana; uvts=0f6726ff-9fc8-45e3-524a-1bb3c3b5976f
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /QHEwBYVphBrUcCGF?95663be0ceac11c3=wG0iMT6Klo7iLSE9iLU8xnpsMt6IBhW8rX733gTLAfxWIgTUZmiME7biOSo3lFBgpIZp5YPy9I15_JizKZOidvRFu1J0GIRx46JxtTYDfVNE2BLl3ktm3hdrhQERg72eYDPuaIeut5dfHPWGkyKAlCdqu4yvKA4Ajt1YyBuSHpKf9YSbUpfdgFBL6EZgjjxwVsVHCmZZpbhk3yQHhyg2s5Vv3A&je=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 HTTP/1.1Host: qfp.intuit.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; ajs_anonymous_id=c5ae09d8-b54b-4ef6-83a7-d4e865a0f2d3; ius_session=3B5B81F47A244B4B5E5308D420979545; thx_gui
Source: global traffic	HTTP traffic detected: GET /consumer-information/file-a-privacy-dispute/ HTTP/1.1Host: trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/request HTTP/1.1Host: feedback-form.truste.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /client/v3.1/web/wup?cid=ironfist HTTP/1.1Host: wup-04e01638.us.v2.we-stats.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /watchdog/request HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/css/watchdog.css?v=3.0.0.26 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/css/te-icons.css?v=3.0.0.10 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/css/jquery.ui.autocomplete.css HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/css/jquery.ui.theme.css HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/css/bootstrap.min.css HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/jquery-2.1.4.min.js HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/jquery-ui.min.js HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/validate.js?v=3.0.0.11 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/survey.js?v=3.0.0.9 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/bootstrap.min.js HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/bootbox.min.js HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/css/images/logo-truste.gif HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/jquery-2.1.4.min.js HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=layout-stylesheet&t=1724706000 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/validate.js?v=3.0.0.11 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=image&c=captchaResponse&t=ac5ddac8a0274cf8b3fccf06d387cd14 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/survey.js?v=3.0.0.9 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=reload-icon HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=sound-icon HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/bootbox.min.js HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=script-include&c=captchaResponse&t=ac5ddac8a0274cf8b3fccf06d387cd14 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/bootstrap.min.js HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/css/images/logo-truste.gif HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/js/jquery-ui.min.js HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=image&c=captchaResponse&t=ac5ddac8a0274cf8b3fccf06d387cd14 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=sound-icon HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=reload-icon HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/css/images/ui-bg_flat_75_ffffff_40x100.png HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback-form.trustarc.com/watchdog/resources/css/jquery.ui.theme.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=script-include&c=captchaResponse&t=ac5ddac8a0274cf8b3fccf06d387cd14 HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=reload-disabled-icon HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=sound-disabled-icon HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://feedback-form.trustarc.com/watchdog/requestAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/resources/css/images/ui-bg_flat_75_ffffff_40x100.png HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=sound-disabled-icon HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /watchdog/botdetectcaptcha?get=reload-disabled-icon HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: JSESSIONID=91E97CCB1709CDE11C575820F861D034; TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: feedback-form.trustarc.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TAsessionID=7680e9f7-eecc-4092-a9c2-e2b264e8308b\|NEW; notice_behavior=implied,us; _gcl_au=1.1.1157232784.1724709152; _rdt_uuid=1724709153133.6d2b01cb-a771-4593-9ddf-c585315e7f40; rw_gclid=; rw_entry_url=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_entry_url-p=https://trustarc.com/consumer-information/privacy-feedback-button/; rw_source=webdirect; rw_source-p=webdirect; rw_channel=direct; rw_channel-p=direct; rw_utm_campaign=; rw_utm_campaign-p=; rw_utm_content=; rw_utm_content-p=; rw_utm_term=; rw_utm_term-p=; rw_utm_medium=; rw_utm_medium-p=; rw_utm_source=; rw_utm_source-p=; _gid=GA1.2.727978438.1724709154; _gat_UA-4146259-15=1; _ga_GC23DHTMEC=GS1.1.1724709154.1.0.1724709154.60.0.0; _ga=GA1.1.1958377742.1724709154; _mkto_trk=id:846-LLZ-652&token:_mch-trustarc.com-1724709156053-36059
Source: global traffic	HTTP traffic detected: GET /ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4aEATQ-2BdvHNjDcf3OmBO8OltXq6TPtCFVmMtf59VCEIhWP8mKN6H4HEXLgTiVOzMGungkdodFG1U68jQcrrNridBgnLDNNcks2Eu-2FQvYhEtX4HXrZ9v6fUa-2BRIi5AQ-2BwD5vS6MnLYVP87GGyb6HmNhdfD3KwSAS20G-2BeW0Vh1-2FR9QTUfmy33TQB0xSkInGL4OQ-3D-3Dd5bU_cr2hXK7H46C0VNrk0q72l8t-2Fz9mnxEHSfh1GAbJeNzpnKYe8FQIo-2FWBJuMOaTn-2FP5GR8Qt943ZZfuRkH6un4oUU3aXnLVtIgXrne8J6mRLgoHmZ4dSlnz9HKSTZpIEdqIMntBhHh48IoiPlkBcx5WCYGFvdqaseKMS4hqG-2Fqm3CXUvsLf-2FBUuq3N23Dp1e1ITq1YXJsD4Tc2Hp3umT37TOgYKV2wDoA502-2BmC98ur8ZXp7uaVp3-2BG6QDUeQpqKPWQHCWKl5kSR-2Bnb3SQu1evjJ2gpbcqd9JMAV6jWZMA3B8hmOtBKozI5eRDrBvzQb6tnM0dHr34e27qWboGpujmnGVOSZQqF0jwsNgVGly00WoLu0CZsW-2BcjGQpD7k9ALTpkcWliNGdFdbMxHMZXiA1J7lh2-2BsF5qgo9tGTfAjLJ4RsuC3oX6KaIwkulFtivIYSjHdA3X27kGlUzFrUHua-2BTgD5ohPM7evV83d7kPNItYEGvVPIJVZUk-2FxIBj3YPP-2Fsbtk7I0WbaGlb1bmDsgl2SUXcvBs603yDvLQMeC1aUJsiH8N2BZogAbJvS7FD1tk4BYTDW2Xwf7gosyLjUOkHNuS9r2LGmeREVOdjavhZFRuoyZt9K3oAqbd0ilkQ8cIP0szyeADWc0-2BNQ23CH7qE-2FjWIbg0HcwXFXFyjdQDi7qf1pgUXI-2Fv9Yy6AG5bUs2m1HxAWHaL7fW5CVQZ4F6B1Ju1sw59F7SUz23yhvwNObJmUVbVfEGV-2BZA-2F98pDH2pt7LJtKgI3mewrJbs-2F-2FTdOmrI6HG3-2FbXaeouJzCyvXqTCN6rAXz7G1EV-2BxmzweuxfbkDjekOwsb9FAt19H2h8p-2BacLMfFKRpKADWoVXepjHI41l8Ezr5z4P9kXhgjPrsLF1E0d878Uey8KsSHy4zMEwC2hysqB10YFJ8NqqDGiqvuO1ptzehCo0stoHlQSz6NXbxfVqYRRpI0bWjiE3mmH8tYFqTzyq0aLMLc8mRWBu2lYy5fk6tVB7RDFYmaMv4XG4unkmzRlYW1UlIFaFQRZg6nUUfTxlTFqd6Fq3MIy-2FutJstaaMOfOE3RGI-2FjMRYS6gGPZ-2FXFUNYyEqTQgau-2FHg-2BIPIfL6v25iFKH7BpfNrtW6dPZL-2FY5foy3wuJIqTA2g64-2BLwCF-2B1AnLxVb-2FbYm-2F7RNgq095K8jbC-2BKEkU2Ay2cSCNX52GHO974WSNSYh1dyvEWu2H4Nmtn6AV74Z-2FcJwN3dF1ce0-2BWuzqG0B6WkJDQyH0gEgA5jIpX031SHychMJHIjzt50P3dD4oGn86BCtFVqK4XCvQAFGl182mqUeuIP9aQ-2FdHf-2BtrB5hlbOp6NQ-2FjRIMw4bWzn-2BhXPIKipkXbuS-2BsK49do0iu8L0vdijcSBVk9hOju6vh1btfQb5l8PqUG19kVW1fkedtm6l0tKLclh-2FlVLBAj4SAZwbdk2PSlc88UMuZ0KZcDPiQWEpcPPmfr2Gl1LDI4f3zzDS6s9nsw-3D-3D HTTP/1.1Host: links.notification.intuit.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consumer-resources/dispute-resolution-2 HTTP/1.1Host: www.truste.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: chromecache_502.2.dr	String found in binary or memory: <a href="https://www.facebook.com/TrustArc/" target="_blank"><img src="https://trustarc.com/wp-content/uploads/2023/11/fb.svg" class="attachment-full size-full" alt="facebook" decoding="async" loading="lazy" /></a> equals www.facebook.com (Facebook)
Source: chromecache_502.2.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/trustarc/" target="_blank"><img src="https://trustarc.com/wp-content/uploads/2023/11/li.svg" class="attachment-full size-full" alt="LinkedIn" decoding="async" loading="lazy" /></a> equals www.linkedin.com (Linkedin)
Source: chromecache_502.2.dr	String found in binary or memory: <meta property="article:publisher" content="https://www.facebook.com/TrustArc/"/> equals www.facebook.com (Facebook)
Source: chromecache_707.2.dr	String found in binary or memory: !function(e){'use strict';function n(e){if(e&&e.__esModule)return e;var n=Object.create(null);return e&&Object.keys(e).forEach((function(t){if('default'!==t){var o=Object.getOwnPropertyDescriptor(e,t);Object.defineProperty(n,t,o.get?o:{enumerable:!0,get:function(){return e[t]}})}})),n.default=e,Object.freeze(n)}var t=n(e),o=function(e){return!!e&&'true'===e.toLowerCase()},r=function(e){var n=arguments.length>1&&void 0!==arguments[1]?arguments[1]:/[\|,]+/;return e?new Set(e.split(n)):new Set},a=function(e){var n=arguments.length>1&&void 0!==arguments[1]?arguments[1]:/[\|,]+/;return e=e.replace(/^\{[a-zA-Z]+\}$/,''),r(e,n)},l=function(e,n){var t=new Set;return e.forEach((function(e){n.has(e)&&t.add(e)})),t};if(t&&'function'==typeof t.init){var c=function(e){var n=arguments.length>1&&void 0!==arguments[1]&&arguments[1];if(e)try{return JSON.parse(e)}catch(n){console.error('[Bindings] Could not convert value as object:',e),console.error('[Bindings] '.concat(n.message))}return n?[]:{}}('{"Required Cookies":{"domains":["ajax.googleapis.com","app-sj01.marketo.com","consent.trustarc.com","consent.truste.com","console.accessibleweb.com","info.trustarc.com","login.truste.com","ramp.accessibleweb.com","remote.captcha.com","s3-us-west-1.amazonaws.com","submit-irm.trustarc.com","trustarc.com","www.googletagmanager.com","www.trustarc.com"],"value":"0"},"Advertising Cookies":{"domains":["adnxs.com","assets.buzzsprout.com","doubleclick.net","googleads.g.doubleclick.net","ib.adnxs.com","i.ytimg.com","linkedin.com",".mktoweb.com","munchkin.marketo.net","px.ads.linkedin.com","secure.adnxs.com","snap.licdn.com","static.ads-twitter.com","static.doubleclick.net","stats.g.doubleclick.net","storage.buzzsprout.com","ws-assets.zoominfo.com","www.buzzsprout.com","www.linkedin.com","www.redditstatic.com","www.youtube.com","www.youtube-nocookie.com","youtube.com","zoominfo.com"],"value":"2"},"Functional Cookies":{"domains":["accounts.livechatinc.com","api.livechatinc.com","bam-cell.nr-data.net","bam.nr-data.net","branding.jifo.co","cdn.jifo.co","cdnjs.cloudflare.com","cdn.livechatinc.com",".cloudfront.net","e.infogram.com","f.vimeocdn.com","g2.com","g2crowd.com","images.g2crowd.com","images.jifo.co","i.vimeocdn.com","jobs.jobvite.com","js-agent.newrelic.com","maps.googleapis.com","maps.google.com","maps.gstatic.com","nr-data.net","p.typekit.net","s.infogram.com","ssl.google-analytics.com","use.fontawesome.com","use.typekit.net","vimeo.com","ws.zoominfo.com","www.g2.com","www.google-analytics.com","www.google.com","www.google.ie","www.gstatic.com","yt3.ggpht.com"],"value":"1"}}'),s={autoOptInTrustArcDomain:!0,autoOptInHostAfterConsent:!0,enableIframeBlocking:!0,enableAutoBlocking:o('true'),enableAutoBlockOnConsent:o('true'),dntEnabled:o('false'),gpcEnabled:o('false'),dntConsentLevels:a(''),gpcConsentLevels:a(''),cookieNameOverride:'',localStorageNameOverride:'',cpraFinProg:o('false'),allConsentLevels:a(''),autoblockDefaultLevels:a('{AutoblockDefaultIdx}')};s.allConsentLevels&&
Source: chromecache_713.2.dr, chromecache_707.2.dr	String found in binary or memory: !function(e){'use strict';function n(e){if(e&&e.__esModule)return e;var n=Object.create(null);return e&&Object.keys(e).forEach((function(t){if('default'!==t){var o=Object.getOwnPropertyDescriptor(e,t);Object.defineProperty(n,t,o.get?o:{enumerable:!0,get:function(){return e[t]}})}})),n.default=e,Object.freeze(n)}var t=n(e),o=function(e){return!!e&&'true'===e.toLowerCase()},r=function(e){var n=arguments.length>1&&void 0!==arguments[1]?arguments[1]:/[\|,]+/;return e?new Set(e.split(n)):new Set},a=function(e){var n=arguments.length>1&&void 0!==arguments[1]?arguments[1]:/[\|,]+/;return e=e.replace(/^\{[a-zA-Z]+\}$/,''),r(e,n)},l=function(e,n){var t=new Set;return e.forEach((function(e){n.has(e)&&t.add(e)})),t};if(t&&'function'==typeof t.init){var c=function(e){var n=arguments.length>1&&void 0!==arguments[1]&&arguments[1];if(e)try{return JSON.parse(e)}catch(n){console.error('[Bindings] Could not convert value as object:',e),console.error('[Bindings] '.concat(n.message))}return n?[]:{}}('{"Required Cookies":{"domains":["ajax.googleapis.com","app-sj01.marketo.com","consent.trustarc.com","consent.truste.com","console.accessibleweb.com","info.trustarc.com","login.truste.com","ramp.accessibleweb.com","remote.captcha.com","s3-us-west-1.amazonaws.com","submit-irm.trustarc.com","trustarc.com","www.googletagmanager.com","www.trustarc.com"],"value":"0"},"Advertising Cookies":{"domains":["adnxs.com","assets.buzzsprout.com","doubleclick.net","googleads.g.doubleclick.net","ib.adnxs.com","i.ytimg.com","linkedin.com",".mktoweb.com","munchkin.marketo.net","px.ads.linkedin.com","secure.adnxs.com","snap.licdn.com","static.ads-twitter.com","static.doubleclick.net","stats.g.doubleclick.net","storage.buzzsprout.com","ws-assets.zoominfo.com","www.buzzsprout.com","www.linkedin.com","www.redditstatic.com","www.youtube.com","www.youtube-nocookie.com","youtube.com","zoominfo.com"],"value":"2"},"Functional Cookies":{"domains":["accounts.livechatinc.com","api.livechatinc.com","bam-cell.nr-data.net","bam.nr-data.net","branding.jifo.co","cdn.jifo.co","cdnjs.cloudflare.com","cdn.livechatinc.com",".cloudfront.net","e.infogram.com","f.vimeocdn.com","g2.com","g2crowd.com","images.g2crowd.com","images.jifo.co","i.vimeocdn.com","jobs.jobvite.com","js-agent.newrelic.com","maps.googleapis.com","maps.google.com","maps.gstatic.com","nr-data.net","p.typekit.net","s.infogram.com","ssl.google-analytics.com","use.fontawesome.com","use.typekit.net","vimeo.com","ws.zoominfo.com","www.g2.com","www.google-analytics.com","www.google.com","www.google.ie","www.gstatic.com","yt3.ggpht.com"],"value":"1"}}'),s={autoOptInTrustArcDomain:!0,autoOptInHostAfterConsent:!0,enableIframeBlocking:!0,enableAutoBlocking:o('true'),enableAutoBlockOnConsent:o('true'),dntEnabled:o('false'),gpcEnabled:o('false'),dntConsentLevels:a(''),gpcConsentLevels:a(''),cookieNameOverride:'',localStorageNameOverride:'',cpraFinProg:o('false'),allConsentLevels:a(''),autoblockDefaultLevels:a('{AutoblockDefaultIdx}')};s.allConsentLevels&&
Source: chromecache_663.2.dr	String found in binary or memory: Math.round(q);v["gtm.videoElapsedTime"]=Math.round(f);v["gtm.videoPercent"]=r;v["gtm.videoVisible"]=t;return v},Vj:function(){e=Bb()},md:function(){d()}}};var hc=ja(["data-gtm-yt-inspected-"]),sC=["www.youtube.com","www.youtube-nocookie.com"],tC,uC=!1; equals www.youtube.com (Youtube)
Source: chromecache_587.2.dr	String found in binary or memory: Math.round(q);v["gtm.videoElapsedTime"]=Math.round(f);v["gtm.videoPercent"]=r;v["gtm.videoVisible"]=t;return v},kk:function(){e=Cb()},od:function(){d()}}};var ic=ja(["data-gtm-yt-inspected-"]),rC=["www.youtube.com","www.youtube-nocookie.com"],sC,tC=!1; equals www.youtube.com (Youtube)
Source: chromecache_663.2.dr	String found in binary or memory: if(!(e\|\|f\|\|g\|\|k.length\|\|m.length))return;var p={Yg:e,Wg:f,Xg:g,Ih:k,Jh:m,Ee:n,Bb:b},q=E.YT;if(q)return q.ready&&q.ready(d),b;var r=E.onYouTubeIframeAPIReady;E.onYouTubeIframeAPIReady=function(){r&&r();d()};G(function(){for(var t=F.getElementsByTagName("script"),u=t.length,v=0;v<u;v++){var w=t[v].getAttribute("src");if(DC(w,"iframe_api")\|\|DC(w,"player_api"))return b}for(var x=F.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!uC&&BC(x[A],p.Ee))return xc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_587.2.dr	String found in binary or memory: if(!(e\|\|f\|\|g\|\|k.length\|\|m.length))return;var p={gh:e,eh:f,fh:g,Rh:k,Sh:m,He:n,Db:b},q=G.YT;if(q)return q.ready&&q.ready(d),b;var r=G.onYouTubeIframeAPIReady;G.onYouTubeIframeAPIReady=function(){r&&r();d()};I(function(){for(var t=H.getElementsByTagName("script"),u=t.length,v=0;v<u;v++){var w=t[v].getAttribute("src");if(CC(w,"iframe_api")\|\|CC(w,"player_api"))return b}for(var x=H.getElementsByTagName("iframe"),y=x.length,B=0;B<y;B++)if(!tC&&AC(x[B],p.He))return yc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_514.2.dr, chromecache_470.2.dr, chromecache_521.2.dr, chromecache_577.2.dr	String found in binary or memory: return b}pC.J="internal.enableAutoEventOnTimer";var ic=ja(["data-gtm-yt-inspected-"]),rC=["www.youtube.com","www.youtube-nocookie.com"],sC,tC=!1; equals www.youtube.com (Youtube)
Source: chromecache_699.2.dr	String found in binary or memory: return b}qC.J="internal.enableAutoEventOnTimer";var hc=ja(["data-gtm-yt-inspected-"]),sC=["www.youtube.com","www.youtube-nocookie.com"],tC,uC=!1; equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: links.notification.intuit.com
Source: global traffic	DNS traffic detected: DNS query: connect.intuit.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: static.cns-icn-prod.a.intuit.com
Source: global traffic	DNS traffic detected: DNS query: ips-logos-cdn.ips.sbg.a.intuit.com
Source: global traffic	DNS traffic detected: DNS query: cdn.segment.com
Source: global traffic	DNS traffic detected: DNS query: smx.intuit.com
Source: global traffic	DNS traffic detected: DNS query: prd.sentry-io.a.intuit.com
Source: global traffic	DNS traffic detected: DNS query: eventbus.intuit.com
Source: global traffic	DNS traffic detected: DNS query: qfp.intuit.com
Source: global traffic	DNS traffic detected: DNS query: bcdn-god.we-stats.com
Source: global traffic	DNS traffic detected: DNS query: aa.online-metrix.net
Source: global traffic	DNS traffic detected: DNS query: wup-04e01638.us.v2.we-stats.com
Source: global traffic	DNS traffic detected: DNS query: risk-vendor-svc.api.intuit.com
Source: global traffic	DNS traffic detected: DNS query: quickbooks.intuit.com
Source: global traffic	DNS traffic detected: DNS query: log-04e01638.us.v2.we-stats.com
Source: global traffic	DNS traffic detected: DNS query: h.online-metrix.net
Source: global traffic	DNS traffic detected: DNS query: privacy.truste.com
Source: global traffic	DNS traffic detected: DNS query: eu-aa.online-metrix.net
Source: global traffic	DNS traffic detected: DNS query: h64.online-metrix.net
Source: global traffic	DNS traffic detected: DNS query: v60nf4oj5kwx7nyv6kx5vw5sku3egwb4lvht5vvp3bd393a3c363f138am1.e.aa.online-metrix.net
Source: global traffic	DNS traffic detected: DNS query: www.truste.com
Source: global traffic	DNS traffic detected: DNS query: trustarc.com
Source: global traffic	DNS traffic detected: DNS query: use.typekit.net
Source: global traffic	DNS traffic detected: DNS query: consent.trustarc.com
Source: global traffic	DNS traffic detected: DNS query: chat-application.com
Source: global traffic	DNS traffic detected: DNS query: p.typekit.net
Source: global traffic	DNS traffic detected: DNS query: translate.google.com
Source: global traffic	DNS traffic detected: DNS query: cdn.livechatinc.com
Source: global traffic	DNS traffic detected: DNS query: api.livechatinc.com
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: secure.livechatinc.com
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: www.redditstatic.com
Source: global traffic	DNS traffic detected: DNS query: munchkin.marketo.net
Source: global traffic	DNS traffic detected: DNS query: info.trustarc.com
Source: global traffic	DNS traffic detected: DNS query: pixel-config.reddit.com
Source: global traffic	DNS traffic detected: DNS query: alb.reddit.com
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: feedback.qbo.intuit.com
Source: global traffic	DNS traffic detected: DNS query: 846-llz-652.mktoresp.com
Source: global traffic	DNS traffic detected: DNS query: assets.uvcdn.com
Source: global traffic	DNS traffic detected: DNS query: s3.amazonaws.com
Source: global traffic	DNS traffic detected: DNS query: w3-reporting-nel.reddit.com
Source: global traffic	DNS traffic detected: DNS query: widget.uservoice.com
Source: global traffic	DNS traffic detected: DNS query: qbo.uservoice.com
Source: global traffic	DNS traffic detected: DNS query: by2.uservoice.com
Source: global traffic	DNS traffic detected: DNS query: feedback-form.truste.com
Source: global traffic	DNS traffic detected: DNS query: feedback-form.trustarc.com
Source: global traffic	DNS traffic detected: DNS query: chrome.cloudflare-dns.com

Source: unknown

HTTP traffic detected: POST /api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1 HTTP/1.1Host: prd.sentry-io.a.intuit.comConnection: keep-aliveContent-Length: 480sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plain;charset=UTF-8Accept: */*Origin: https://connect.intuit.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://connect.intuit.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: E0F5C59F9FA661F6F4C50B87FEF3A15A0.10.dr	String found in binary or memory: http://apps.identrust.com/roots/dstrootcax3.p7c
Source: chromecache_736.2.dr, chromecache_527.2.dr	String found in binary or memory: http://bootboxjs.com/license.txt
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: http://consent.trustarc.com/noticemsg?
Source: chromecache_459.2.dr	String found in binary or memory: http://docs.jquery.com/UI/Autocomplete#theming
Source: chromecache_459.2.dr	String found in binary or memory: http://docs.jquery.com/UI/Menu#theming
Source: chromecache_548.2.dr	String found in binary or memory: http://docs.jquery.com/UI/Theming/API
Source: chromecache_631.2.dr, chromecache_627.2.dr, chromecache_693.2.dr	String found in binary or memory: http://getbootstrap.com)
Source: chromecache_734.2.dr, chromecache_591.2.dr	String found in binary or memory: http://github.com/kenwheeler/slick
Source: chromecache_734.2.dr, chromecache_591.2.dr	String found in binary or memory: http://github.com/kenwheeler/slick/issues
Source: chromecache_459.2.dr, chromecache_548.2.dr	String found in binary or memory: http://jquery.org/license
Source: chromecache_564.2.dr, chromecache_523.2.dr	String found in binary or memory: http://jqueryui.com
Source: chromecache_459.2.dr, chromecache_548.2.dr	String found in binary or memory: http://jqueryui.com/about)
Source: chromecache_548.2.dr	String found in binary or memory: http://jqueryui.com/themeroller/
Source: chromecache_734.2.dr, chromecache_591.2.dr	String found in binary or memory: http://kenwheeler.github.io
Source: chromecache_734.2.dr, chromecache_591.2.dr	String found in binary or memory: http://kenwheeler.github.io/slick
Source: chromecache_502.2.dr	String found in binary or memory: http://ogp.me/ns#
Source: chromecache_502.2.dr	String found in binary or memory: http://ogp.me/ns/fb#
Source: chromecache_734.2.dr, chromecache_591.2.dr	String found in binary or memory: http://psd2html.com/jcf
Source: chromecache_603.2.dr	String found in binary or memory: http://scripts.sil.org/OFL.
Source: chromecache_603.2.dr	String found in binary or memory: http://scripts.sil.org/OFLThis
Source: chromecache_701.2.dr	String found in binary or memory: http://typekit.com/eulas/00000000000000000000e7fe
Source: chromecache_701.2.dr	String found in binary or memory: http://typekit.com/eulas/00000000000000000000e802
Source: chromecache_701.2.dr	String found in binary or memory: http://typekit.com/eulas/00000000000000000000e805
Source: chromecache_701.2.dr	String found in binary or memory: http://typekit.com/eulas/00000000000000000000e807
Source: chromecache_701.2.dr	String found in binary or memory: http://typekit.com/eulas/000000000000000000011b23
Source: chromecache_701.2.dr	String found in binary or memory: http://typekit.com/eulas/00000000000000007735993f
Source: chromecache_701.2.dr	String found in binary or memory: http://typekit.com/eulas/000000000000000077359969
Source: chromecache_458.2.dr, chromecache_655.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_733.2.dr, chromecache_667.2.dr, chromecache_628.2.dr, chromecache_537.2.dr	String found in binary or memory: http://www.bohemiancoding.com/sketch
Source: chromecache_744.2.dr, chromecache_536.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_742.2.dr	String found in binary or memory: http://www.gnu.org/licenses/gpl-2.0.html
Source: chromecache_588.2.dr	String found in binary or memory: http://www.trustarc.com/about/
Source: chromecache_588.2.dr	String found in binary or memory: http://www.youronlinechoices.eu/
Source: chromecache_587.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_578.2.dr, chromecache_606.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://api-js-log.trustarc.com/error
Source: chromecache_486.2.dr	String found in binary or memory: https://api.livechatinc.com
Source: chromecache_502.2.dr	String found in binary or memory: https://api.w.org/
Source: chromecache_461.2.dr	String found in binary or memory: https://app.qbo.intuit.com/app/login?pagereq=paymentssetup%3Fp_prioritycode%3Dacq937_payments_webpg
Source: chromecache_477.2.dr	String found in binary or memory: https://assets.uvcdn.com/pkg/clients/site2/ie-6f6256efa8fcab0da2c5c83d6ccddaabe16fdd607b4f9e01ad9efe
Source: chromecache_477.2.dr	String found in binary or memory: https://assets.uvcdn.com/pkg/clients/site2/index-3226d0051af924eb2646f02816d7a869f328355bedcca204e4e
Source: chromecache_477.2.dr	String found in binary or memory: https://assets.uvcdn.com/pkg/clients/site2/index-4d5e5366848ad2d8e3621058840315fab85cf070d00e5a1229d
Source: chromecache_477.2.dr	String found in binary or memory: https://assets.uvcdn.com/pkg/clients/site2/lt_IE_9-5d621b8b38991dde7ef0c335fc7cc90426c625e325949517b
Source: chromecache_699.2.dr, chromecache_514.2.dr, chromecache_470.2.dr, chromecache_663.2.dr, chromecache_521.2.dr, chromecache_577.2.dr, chromecache_587.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_486.2.dr	String found in binary or memory: https://cdn.livechatinc.com
Source: chromecache_486.2.dr	String found in binary or memory: https://cdn.livechatinc.com/direct-link/livechat-chat-with-us.png
Source: chromecache_486.2.dr	String found in binary or memory: https://cdn.livechatinc.com/widget/static/js/livechat.Bn-5oE6B.js
Source: chromecache_502.2.dr	String found in binary or memory: https://chat-application.com/embed/index.php?tracker_id=86894795
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://consent-pref.trustarc.com?type=trustarcnew_gdpr&layout=gdpr
Source: chromecache_520.2.dr	String found in binary or memory: https://consent.trustarc.com/
Source: chromecache_502.2.dr	String found in binary or memory: https://consent.trustarc.com/autoblockasset/core.min.39652c2.js?domain=trustarc.com
Source: chromecache_502.2.dr	String found in binary or memory: https://consent.trustarc.com/autoblockoptout?domain=trustarc.com
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://consent.trustarc.com/bannermsg?
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://consent.trustarc.com/get?name=SourceSansPro-Regular.eot)
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://consent.trustarc.com/get?name=SourceSansPro-Regular.otf)
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://consent.trustarc.com/get?name=SourceSansPro-Regular.ttf)
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://consent.trustarc.com/get?name=SourceSansPro-Regular.woff)
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://consent.trustarc.com/get?name=trustarc_close.svg
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://consent.trustarc.com/log
Source: chromecache_494.2.dr, chromecache_630.2.dr, chromecache_689.2.dr, chromecache_483.2.dr	String found in binary or memory: https://developers.marketo.com/MunchkinLicense.pdf
Source: chromecache_477.2.dr	String found in binary or memory: https://feedback.qbo.intuit.com/admin
Source: chromecache_477.2.dr	String found in binary or memory: https://feedback.qbo.intuit.com/dashboard/contributor/myActivity
Source: chromecache_477.2.dr	String found in binary or memory: https://feedback.qbo.intuit.com/forums/920104
Source: chromecache_477.2.dr	String found in binary or memory: https://feedback.qbo.intuit.com/forums/920104-quickbooks-invoice-online-checkout
Source: chromecache_744.2.dr, chromecache_536.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_744.2.dr, chromecache_536.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
Source: chromecache_614.2.dr	String found in binary or memory: https://github.com/bugsnag/bugsnag-js
Source: chromecache_671.2.dr, chromecache_504.2.dr	String found in binary or memory: https://github.com/dollarshaveclub/postmate
Source: chromecache_631.2.dr, chromecache_627.2.dr, chromecache_693.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_461.2.dr	String found in binary or memory: https://glam.app.intuit.com/app/guesttos?glocale=en_US
Source: chromecache_577.2.dr	String found in binary or memory: https://google.com
Source: chromecache_577.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_588.2.dr	String found in binary or memory: https://jira.truste.com/browse/DR-132
Source: chromecache_530.2.dr	String found in binary or memory: https://jira.truste.com/browse/DR-140
Source: chromecache_588.2.dr	String found in binary or memory: https://jira.truste.com/browse/DR-149
Source: chromecache_458.2.dr, chromecache_655.2.dr	String found in binary or memory: https://localforage.github.io/localForage
Source: chromecache_502.2.dr	String found in binary or memory: https://login.truste.com/
Source: chromecache_701.2.dr	String found in binary or memory: https://p.typekit.net/p.css?s=1&k=afz3cwq&ht=tk&f=1980.1981.8542.2005.2006.2009.2011&a=87769202&app=
Source: chromecache_587.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_699.2.dr, chromecache_514.2.dr, chromecache_470.2.dr, chromecache_663.2.dr, chromecache_521.2.dr, chromecache_577.2.dr, chromecache_587.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_536.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_461.2.dr	String found in binary or memory: https://public-consumer-chat.app.intuit.com/app/ccs/consumer?experienceId=sbsegUsDtCorePos
Source: chromecache_521.2.dr	String found in binary or memory: https://px.ads.linkedin.com/collect?
Source: chromecache_477.2.dr	String found in binary or memory: https://pythononlinecompiler.com/
Source: chromecache_477.2.dr	String found in binary or memory: https://qbo.intuit.com
Source: chromecache_477.2.dr	String found in binary or memory: https://qbo.uservoice.com/widget_environment/5SytiYyrEoStsXof7g09w.js
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/learn-support/en-us
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/learn-support/en-us/
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/learn-support/en-us/help-article/chargebacks/sign-payments-dispute-pro
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/learn-support/en-us/help-article/product-system-requirements/system-re
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/money/see-plans/
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/offers/5apy/
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/payments/desktop/#easy-payments
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/payments/legal/
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/payments/legal/qbmoneycard/toc92020/greendot/
Source: chromecache_461.2.dr	String found in binary or memory: https://quickbooks.intuit.com/payments/legal/toc102017/greendot/?elqTrackId=abf7d8c40f3f48e0b939dfe3
Source: chromecache_471.2.dr	String found in binary or memory: https://reactjs.org/link/react-polyfills
Source: chromecache_477.2.dr	String found in binary or memory: https://s3.amazonaws.com/uploads.uservoice.com/logo/design_setting/109817/original/logo.png?13855237
Source: chromecache_502.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_486.2.dr	String found in binary or memory: https://secure.livechatinc.com/
Source: chromecache_597.2.dr, chromecache_650.2.dr	String found in binary or memory: https://sketchapp.com
Source: chromecache_521.2.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_663.2.dr, chromecache_587.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_606.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://submit-irm.trustarc.com/services/validation/11bc4513-fc39-4d64-bcf3-ae603d2bd140
Source: chromecache_578.2.dr, chromecache_606.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_699.2.dr, chromecache_514.2.dr, chromecache_470.2.dr, chromecache_663.2.dr, chromecache_521.2.dr, chromecache_577.2.dr, chromecache_587.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_614.2.dr	String found in binary or memory: https://tinyurl.com/yy3rn63z
Source: chromecache_536.2.dr	String found in binary or memory: https://translate.google.com
Source: chromecache_744.2.dr, chromecache_536.2.dr	String found in binary or memory: https://translate.googleapis.com/element/log?format=json&hasfast=true
Source: chromecache_502.2.dr	String found in binary or memory: https://trust.trustarc.com/
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/#website
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/?p=2753
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/?s=
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/comments/feed/
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/consumer-information/
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/consumer-information/privacy-feedback-button/
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/consumer-information/privacy-feedback-button/#breadcrumb
Source: chromecache_588.2.dr	String found in binary or memory: https://trustarc.com/dispute-resolution-faqs/
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/feed/
Source: chromecache_502.2.dr, chromecache_588.2.dr	String found in binary or memory: https://trustarc.com/privacy-policy/
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/themes/trustarc/assets/dist/images/icon-search.svg
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/themes/trustarc/assets/dist/js/app.js?ver=1711465976
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/themes/trustarc/assets/dist/js/jquery-3.6.0.min.js?ver=1711465976
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/themes/trustarc/assets/dist/style.css?ver=1711660746
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/themes/trustarc/style.css?ver=1711465962
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2023/11/footer-logo.svg
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2023/11/li.svg
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2023/11/logo.svg
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2023/11/x.svg
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2024/02/cropped-favicon-180x180.png
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2024/02/cropped-favicon-192x192.png
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2024/02/cropped-favicon-270x270.png
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2024/02/cropped-favicon-32x32.png
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2024/02/res-square-plus-pink.png
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2024/02/res-square-rect-blue.png
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-content/uploads/2024/03/OG-main.png
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-includes/css/dist/block-library/style.min.css?ver=6.6.1
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-json/
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-json/oembed/1.0/embed?url=https%3A%2F%2Ftrustarc.com%2Fconsumer-information%
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/wp-json/wp/v2/pages/2753
Source: chromecache_502.2.dr	String found in binary or memory: https://trustarc.com/xmlrpc.php?rsd
Source: chromecache_502.2.dr	String found in binary or memory: https://twitter.com/TrustArc
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/38974e/00000000000000007735993f/30/a?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/38974e/00000000000000007735993f/30/d?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/38974e/00000000000000007735993f/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/5cca6d/00000000000000000000e802/27/a?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/5cca6d/00000000000000000000e802/27/d?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/5cca6d/00000000000000000000e802/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/620bf8/00000000000000000000e7fe/27/a?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/620bf8/00000000000000000000e7fe/27/d?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/620bf8/00000000000000000000e7fe/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/64e458/000000000000000077359969/30/a?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/64e458/000000000000000077359969/30/d?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/64e458/000000000000000077359969/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/9cf49e/00000000000000000000e807/27/a?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/9cf49e/00000000000000000000e807/27/d?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/9cf49e/00000000000000000000e807/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/e3ca36/00000000000000000000e805/27/a?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/e3ca36/00000000000000000000e805/27/d?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/e3ca36/00000000000000000000e805/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/f7c91f/000000000000000000011b23/27/a?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/f7c91f/000000000000000000011b23/27/d?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_701.2.dr	String found in binary or memory: https://use.typekit.net/af/f7c91f/000000000000000000011b23/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8
Source: chromecache_502.2.dr	String found in binary or memory: https://use.typekit.net/afz3cwq.css
Source: chromecache_588.2.dr	String found in binary or memory: https://www.dataprivacyframework.gov/s/european-individuals
Source: chromecache_521.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_578.2.dr, chromecache_606.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_578.2.dr, chromecache_606.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_578.2.dr, chromecache_606.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_587.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_578.2.dr, chromecache_606.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_536.2.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: chromecache_464.2.dr, chromecache_452.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/AW-1046165339/?random
Source: chromecache_744.2.dr, chromecache_536.2.dr	String found in binary or memory: https://www.google.com/support/translate
Source: chromecache_577.2.dr, chromecache_587.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_587.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_699.2.dr, chromecache_514.2.dr, chromecache_470.2.dr, chromecache_521.2.dr, chromecache_577.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_578.2.dr, chromecache_606.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_502.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chromecache_502.2.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-T3CS5GN
Source: chromecache_536.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
Source: chromecache_744.2.dr, chromecache_536.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
Source: chromecache_744.2.dr, chromecache_536.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/1x/translate_24dp.png
Source: chromecache_461.2.dr	String found in binary or memory: https://www.intuit.com/legal/licenses/payment-licenses/
Source: chromecache_461.2.dr	String found in binary or memory: https://www.intuit.com/legal/licenses/payment-licenses/.
Source: chromecache_502.2.dr	String found in binary or memory: https://www.linkedin.com/company/trustarc/
Source: chromecache_663.2.dr, chromecache_587.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_522.2.dr, chromecache_517.2.dr	String found in binary or memory: https://www.redditstatic.com/ads/8d515a58/pixel.js
Source: chromecache_521.2.dr	String found in binary or memory: https://www.redditstatic.com/ads/pixel.js
Source: chromecache_742.2.dr	String found in binary or memory: https://www.thehonorroll.com/
Source: chromecache_582.2.dr, chromecache_520.2.dr	String found in binary or memory: https://www.trustarc.com/privacy-policy/
Source: chromecache_663.2.dr, chromecache_587.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_502.2.dr	String found in binary or memory: https://yoast.com/wordpress/plugins/seo/

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 51445 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 51410 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50107 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51456 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51411 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50142 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51433 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 51444 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 50144 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 51435 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 51434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51457 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 51401 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51412 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50109 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50132 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 51423 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51427
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51428
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51425
Source: unknown	Network traffic detected: HTTP traffic on port 51442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51426
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51429
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51420
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51423
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51424
Source: unknown	Network traffic detected: HTTP traffic on port 50094 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51421
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51422
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51438
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51439
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51436
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51437
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51430
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51431
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 51418 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51431 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51434
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51435
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51432
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51433
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51449
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51447
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51448
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51441
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51442
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 51419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51440
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51445
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 51430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51444
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51453 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 51464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51459
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51452
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51453
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51450
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51451
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51456
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51457
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50129 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51466 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50152 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51421 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51405
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51406
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51403
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51401
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51402
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50140 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51443 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51416
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51417
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51414
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51415
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51418
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51419
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51412
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51413
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51410
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 51411
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50069 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51451 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51438 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50147 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51450 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 51416 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 51427 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 50136 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50138
Source: unknown	Network traffic detected: HTTP traffic on port 51417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49743 version: TLS 1.2

System Summary

Blob-based file download detected

Source: C:\Users\user\Downloads\downloaded.pdf

File download: blob:https://connect.intuit.com/f000e683-5ca1-44d9-acc9-761f7cc9692bC:\Users\user\Downloads\downloaded.pdf

Very long command line found

Source: unknown

Process created: Commandline size = 2006

Source: classification engine

Classification label: mal56.phis.win@55/512@201/59

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\Downloads\515a7f9c-c7e6-45fa-bbb5-95a7e8b4d138.tmp

Jump to behavior

Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe

File created: C:\Users\user\AppData\Local\Temp\acrobat_sbx\NGL\NGLClient_AcrobatReader123.6.20320.6 2024-08-26 17-53-03-036.log

Jump to behavior

Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\CA

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2280 --field-trial-handle=1968,i,4710161793563401793,7235233090458664314,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://links.notification.intuit.com/ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4aEATQ-2BdvHNjDcf3OmBO8OltXq6TPtCFVmMtf59VCEIhWP8mKN6H4HEXLgTiVOzMGungkdodFG1U68jQcrrNridBgnLDNNcks2Eu-2FQvYhEtX4HXrZ9v6fUa-2BRIi5AQ-2BwD5vS6MnLYVP87GGyb6HmNhdfD3KwSAS20G-2BeW0Vh1-2FR9QTUfmy33TQB0xSkInGL4OQ-3D-3Dd5bU_cr2hXK7H46C0VNrk0q72l8t-2Fz9mnxEHSfh1GAbJeNzpnKYe8FQIo-2FWBJuMOaTn-2FP5GR8Qt943ZZfuRkH6un4oUU3aXnLVtIgXrne8J6mRLgoHmZ4dSlnz9HKSTZpIEdqIMntBhHh48IoiPlkBcx5WCYGFvdqaseKMS4hqG-2Fqm3CXUvsLf-2FBUuq3N23Dp1e1ITq1YXJsD4Tc2Hp3umT37TOgYKV2wDoA502-2BmC98ur8ZXp7uaVp3-2BG6QDUeQpqKPWQHCWKl5kSR-2Bnb3SQu1evjJ2gpbcqd9JMAV6jWZMA3B8hmOtBKozI5eRDrBvzQb6tnM0dHr34e27qWboGpujmnGVOSZQqF0jwsNgVGly00WoLu0CZsW-2BcjGQpD7k9ALTpkcWliNGdFdbMxHMZXiA1J7lh2-2BsF5qgo9tGTfAjLJ4RsuC3oX6KaIwkulFtivIYSjHdA3X27kGlUzFrUHua-2BTgD5ohPM7evV83d7kPNItYEGvVPIJVZUk-2FxIBj3YPP-2Fsbtk7I0WbaGlb1bmDsgl2SUXcvBs603yDvLQMeC1aUJsiH8N2BZogAbJvS7FD1tk4BYTDW2Xwf7gosyLjUOkHNuS9r2LGmeREVOdjavhZFRuoyZt9K3oAqbd0ilkQ8cIP0szyeADWc0-2BNQ23CH7qE-2FjWIbg0HcwXFXFyjdQDi7qf1pgUXI-2Fv9Yy6AG5bUs2m1HxAWHaL7fW5CVQZ4F6B1Ju1sw59F7SUz23yhvwNObJmUVbVfEGV-2BZA-2F98pDH2pt7LJtKgI3mewrJbs-2F-2FTdOmrI6HG3-2FbXaeouJzCyvXqTCN6rAXz7G1EV-2BxmzweuxfbkDjekOwsb9FAt19H2h8p-2BacLMfFKRpKADWoVXepjHI41l8Ezr5z4P9kXhgjPrsLF1E0d878Uey8KsSHy4zMEwC2hysqB10YFJ8NqqDGiqvuO1ptzehCo0stoHlQSz6NXbxfVqYRRpI0bWjiE3mmH8tYFqTzyq0aLMLc8mRWBu2lYy5fk6tVB7RDFYmaMv4XG4unkmzRlYW1UlIFaFQRZg6nUUfTxlTFqd6Fq3MIy-2FutJstaaMOfOE3RGI-2FjMRYS6gGPZ-2FXFUNYyEqTQgau-2FHg-2BIPIfL6v25iFKH7BpfNrtW6dPZL-2FY5foy3wuJIqTA2g64-2BLwCF-2B1AnLxVb-2FbYm-2F7RNgq095K8jbC-2BKEkU2Ay2cSCNX52GHO974WSNSYh1dyvEWu2H4Nmtn6AV74Z-2FcJwN3dF1ce0-2BWuzqG0B6WkJDQyH0gEgA5jIpX031SHychMJHIjzt50P3dD4oGn86BCtFVqK4XCvQAFGl182mqUeuIP9aQ-2FdHf-2BtrB5hlbOp6NQ-2FjRIMw4bWzn-2BhXPIKipkXbuS-2BsK49do0iu8L0vdijcSBVk9hOju6vh1btfQb5l8PqUG19kVW1fkedtm6l0tKLclh-2FlVLBAj4SAZwbdk2PSlc88UMuZ0KZcDPiQWEpcPPmfr2Gl1LDI4f3zzDS6s9nsw-3D-3D"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4792 --field-trial-handle=1968,i,4710161793563401793,7235233090458664314,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4144 --field-trial-handle=1968,i,4710161793563401793,7235233090458664314,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" "C:\Users\user\Downloads\downloaded.pdf"
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0" --lang=en-US --user-data-dir="C:\Users\user\AppData\Local\CEF\User Data" --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log" --mojo-platform-channel-handle=2108 --field-trial-handle=1684,i,15438552520617086001,7945836129112852067,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2280 --field-trial-handle=1968,i,4710161793563401793,7235233090458664314,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4792 --field-trial-handle=1968,i,4710161793563401793,7235233090458664314,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4144 --field-trial-handle=1968,i,4710161793563401793,7235233090458664314,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --backgroundcolor=16777215	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe "C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --log-severity=disable --user-agent-product="ReaderServices/23.6.20320 Chrome/105.0.0.0" --lang=en-US --user-data-dir="C:\Users\user\AppData\Local\CEF\User Data" --log-file="C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\debug.log" --mojo-platform-channel-handle=2108 --field-trial-handle=1684,i,15438552520617086001,7945836129112852067,131072 --disable-features=BackForwardCache,CalculateNativeWinOcclusion,WinUseBrowserSpellChecker /prefetch:8	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe

File opened: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\crash_reporter.cfg

Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Accept

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	1 Command and Scripting Interpreter	Path Interception	1 Process Injection	1 Masquerading	OS Credential Dumping	1 System Information Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	3 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	4 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	1 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
http://links.notification.intuit.com/ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4aEATQ-2BdvHNjDcf3OmBO8OltXq6TPtCFVmMtf59VCEIhWP8mKN6H4HEXLgTiVOzMGungkdodFG1U68jQcrrNridBgnLDNNcks2Eu-2FQvYhEtX4HXrZ9v6fUa-2BRIi5AQ-2BwD5vS6MnLYVP87GGyb6HmNhdfD3KwSAS20G-2BeW0Vh1-2FR9QTUfmy33TQB0xSkInGL4OQ-3D-3Dd5bU_cr2hXK7H46C0VNrk0q72l8t-2Fz9mnxEHSfh1GAbJeNzpnKYe8FQIo-2FWBJuMOaTn-2FP5GR8Qt943ZZfuRkH6un4oUU3aXnLVtIgXrne8J6mRLgoHmZ4dSlnz9HKSTZpIEdqIMntBhHh48IoiPlkBcx5WCYGFvdqaseKMS4hqG-2Fqm3CXUvsLf-2FBUuq3N23Dp1e1ITq1YXJsD4Tc2Hp3umT37TOgYKV2wDoA502-2BmC98ur8ZXp7uaVp3-2BG6QDUeQpqKPWQHCWKl5kSR-2Bnb3SQu1evjJ2gpbcqd9JMAV6jWZMA3B8hmOtBKozI5eRDrBvzQb6tnM0dHr34e27qWboGpujmnGVOSZQqF0jwsNgVGly00WoLu0CZsW-2BcjGQpD7k9ALTpkcWliNGdFdbMxHMZXiA1J7lh2-2BsF5qgo9tGTfAjLJ4RsuC3oX6KaIwkulFtivIYSjHdA3X27kGlUzFrUHua-2BTgD5ohPM7evV83d7kPNItYEGvVPIJVZUk-2FxIBj3YPP-2Fsbtk7I0WbaGlb1bmDsgl2SUXcvBs603yDvLQMeC1aUJsiH8N2BZogAbJvS7FD1tk4BYTDW2Xwf7gosyLjUOkHNuS9r2LGmeREVOdjavhZFRuoyZt9K3oAqbd0ilkQ8cIP0szyeADWc0-2BNQ23CH7qE-2FjWIbg0HcwXFXFyjdQDi7qf1pgUXI-2Fv9Yy6AG5bUs2m1HxAWHaL7fW5CVQZ4F6B1Ju1sw59F7SUz23yhvwNObJmUVbVfEGV-2BZA-2F98pDH2pt7LJtKgI3mewrJbs-2F-2FTdOmrI6HG3-2FbXaeouJzCyvXqTCN6rAXz7G1EV-2BxmzweuxfbkDjekOwsb9FAt19H2h8p-2BacLMfFKRpKADWoVXepjHI41l8Ezr5z4P9kXhgjPrsLF1E0d878Uey8KsSHy4zMEwC2hysqB10YFJ8NqqDGiqvuO1ptzehCo0stoHlQSz6NXbxfVqYRRpI0bWjiE3mmH8tYFqTzyq0aLMLc8mRWBu2lYy5fk6tVB7RDFYmaMv4XG4unkmzRlYW1UlIFaFQRZg6nUUfTxlTFqd6Fq3MIy-2FutJstaaMOfOE3RGI-2FjMRYS6gGPZ-2FXFUNYyEqTQgau-2FHg-2BIPIfL6v25iFKH7BpfNrtW6dPZL-2FY5foy3wuJIqTA2g64-2BLwCF-2B1AnLxVb-2FbYm-2F7RNgq095K8jbC-2BKEkU2Ay2cSCNX52GHO974WSNSYh1dyvEWu2H4Nmtn6AV74Z-2FcJwN3dF1ce0-2BWuzqG0B6WkJDQyH0gEgA5jIpX031SHychMJHIjzt50P3dD4oGn86BCtFVqK4XCvQAFGl182mqUeuIP9aQ-2FdHf-2BtrB5hlbOp6NQ-2FjRIMw4bWzn-2BhXPIKipkXbuS-2BsK49do0iu8L0vdijcSBVk9hOju6vh1btfQb5l8PqUG19kVW1fkedtm6l0tKLclh-2FlVLBAj4SAZwbdk2PSlc88UMuZ0KZcDPiQWEpcPPmfr2Gl1LDI4f3zzDS6s9nsw-3D-3D	0%	Avira URL Cloud	safe

Source	Detection	Scanner	Label
https://stats.g.doubleclick.net/g/collect	0%	URL Reputation	safe
https://www.redditstatic.com/ads/pixel.js	0%	URL Reputation	safe
https://ampcid.google.com/v1/publisher:getClientId	0%	URL Reputation	safe
https://w3-reporting-nel.reddit.com/reports	0%	URL Reputation	safe
https://px.ads.linkedin.com/collect?	0%	URL Reputation	safe
https://stats.g.doubleclick.net/j/collect	0%	URL Reputation	safe
https://schema.org	0%	URL Reputation	safe
https://cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js	0%	URL Reputation	safe
https://developers.marketo.com/MunchkinLicense.pdf	0%	URL Reputation	safe
https://yoast.com/wordpress/plugins/seo/	0%	URL Reputation	safe
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/8948.2692353fb3048aa0.js	0%	Avira URL Cloud	safe
https://assets.uvcdn.com/pkg/clients/site2/lt_IE_9-5d621b8b38991dde7ef0c335fc7cc90426c625e325949517b	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/favicon.png	0%	Avira URL Cloud	safe
https://quickbooks.intuit.com/payments/desktop/#easy-payments	0%	Avira URL Cloud	safe
https://feedback.qbo.intuit.com/web-portal-components/wp-components/p-0d86e690.js	0%	Avira URL Cloud	safe
https://reactjs.org/link/react-polyfills	0%	URL Reputation	safe
https://feedback.qbo.intuit.com/favicon.ico	0%	Avira URL Cloud	safe
https://trustarc.com/wp-content/uploads/2023/11/logo.svg	0%	Avira URL Cloud	safe
https://quickbooks.intuit.com/money/see-plans/	0%	Avira URL Cloud	safe
https://trustarc.com/wp-content/uploads/2023/11/x.svg	0%	Avira URL Cloud	safe
https://qfp.intuit.com/qpuhaBhn3FLfgw42?607f084ae41c535c=Sg5Uoajep3GWQiIrbndBnMPbyAbUJMzmeaB3iCXnB8cIEr0QDmr6LkjxuLUJec51Qx7ALTjTaiRbg-d68Vstn1SppjNZGQ7gRl2nQ9e65ocf4eIS0cY8I7oZkrsoV_rYKp1C3AAP6JvL7FS0hGmUhBML-XYw2kKEv_q2aIt4AzkhWg	0%	Avira URL Cloud	safe
https://use.typekit.net/af/620bf8/00000000000000000000e7fe/27/d?primer=7cdcb44be4a7db8877ffa5c0007b8	0%	Avira URL Cloud	safe
https://trustarc.com/consumer-information/privacy-feedback-button	0%	Avira URL Cloud	safe
https://cdn.livechatinc.com/widget/static/js/livechat.Bn-5oE6B.js	0%	Avira URL Cloud	safe
https://qfp.intuit.com/nbb1tmor7ga3i535.js?iqxh0z34jnpxx64m=v60nf4oj&2ps8az1z7geoeboi=3B5B81F47A244B4B5E5308D420979545	0%	Avira URL Cloud	safe
http://scripts.sil.org/OFL.	0%	Avira URL Cloud	safe
https://glam.app.intuit.com/app/guesttos?glocale=en_US	0%	Avira URL Cloud	safe
https://trustarc.com/feed/	0%	Avira URL Cloud	safe
http://docs.jquery.com/UI/Autocomplete#theming	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/truste.svg	0%	Avira URL Cloud	safe
https://use.typekit.net/af/e3ca36/00000000000000000000e805/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8	0%	Avira URL Cloud	safe
https://risk-vendor-svc.api.intuit.com/v1/assessment	0%	Avira URL Cloud	safe
https://trustarc.com/wp-json/wp/v2/pages/2753	0%	Avira URL Cloud	safe
about:blank	0%	Avira URL Cloud	safe
https://bcdn-god.we-stats.com/scripts/04e01638/04e01638.js	0%	Avira URL Cloud	safe
http://getbootstrap.com)	0%	Avira URL Cloud	safe
https://feedback-form.trustarc.com/watchdog/resources/css/watchdog.css?v=3.0.0.26	0%	Avira URL Cloud	safe
blob:https://connect.intuit.com/f000e683-5ca1-44d9-acc9-761f7cc9692b	0%	Avira URL Cloud	safe
https://feedback-form.trustarc.com/watchdog/botdetectcaptcha?get=sound-disabled-icon	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/mastercard.bug.svg	0%	Avira URL Cloud	safe
https://use.typekit.net/af/620bf8/00000000000000000000e7fe/27/a?primer=7cdcb44be4a7db8877ffa5c0007b8	0%	Avira URL Cloud	safe
http://typekit.com/eulas/000000000000000000011b23	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/fonts/AvenirNext-forINTUIT-Web-Fonts/AvenirNext+forINTUIT+W05+Mediu_web.woff2	0%	Avira URL Cloud	safe
https://feedback.qbo.intuit.com/auth-component/uv-auth/uv-auth.css	0%	Avira URL Cloud	safe
https://prd.sentry-io.a.intuit.com/api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1	0%	Avira URL Cloud	safe
https://feedback.qbo.intuit.com/forums/920104-quickbooks-invoice-online-checkout	0%	Avira URL Cloud	safe
https://feedback-form.trustarc.com/watchdog/botdetectcaptcha?get=script-include&c=captchaResponse&t=ac5ddac8a0274cf8b3fccf06d387cd14	0%	Avira URL Cloud	safe
https://trustarc.com/wp-content/uploads/2024/03/OG-main.png	0%	Avira URL Cloud	safe
https://secure.livechatinc.com/	0%	Avira URL Cloud	safe
https://trustarc.com/wp-content/uploads/2023/11/fb.svg	0%	Avira URL Cloud	safe
https://consent-pref.trustarc.com?type=trustarcnew_gdpr&layout=gdpr	0%	Avira URL Cloud	safe
https://by2.uservoice.com/t2/141454/portal/track.js?_=1724709160819&s=0&c=__uvSessionData0	0%	Avira URL Cloud	safe
https://feedback.qbo.intuit.com/auth-component/uv-auth/p-6b2b4694.js	0%	Avira URL Cloud	safe
https://trustarc.com/wp-content/uploads/2024/02/res-square-rect-blue.png	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/7465-1b3ac9cfccea5cb5.js	0%	Avira URL Cloud	safe
https://feedback-form.trustarc.com/watchdog/resources/css/images/logo-truste.gif	0%	Avira URL Cloud	safe
https://trustarc.com/wp-content/uploads/2023/11/li.svg	0%	Avira URL Cloud	safe
https://trustarc.com/wp-content/themes/trustarc/assets/dist/js/app.js?ver=1711465976	0%	Avira URL Cloud	safe
https://tinyurl.com/yy3rn63z	0%	Avira URL Cloud	safe
http://www.trustarc.com/about/	0%	Avira URL Cloud	safe
https://use.typekit.net/af/38974e/00000000000000007735993f/30/d?primer=7cdcb44be4a7db8877ffa5c0007b8	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/2378.40683c6fb386355f.js	0%	Avira URL Cloud	safe
https://quickbooks.intuit.com/payments/legal/toc102017/greendot/?elqTrackId=abf7d8c40f3f48e0b939dfe3	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/3953-b52fc72e328e008a.js	0%	Avira URL Cloud	safe
https://connect.intuit.com/portal/rest/reporting/batch	0%	Avira URL Cloud	safe
https://consent.trustarc.com/autoblockoptout?domain=trustarc.com	0%	Avira URL Cloud	safe
https://use.typekit.net/af/38974e/00000000000000007735993f/30/a?primer=7cdcb44be4a7db8877ffa5c0007b8	0%	Avira URL Cloud	safe
https://trustarc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1	0%	Avira URL Cloud	safe
https://feedback.qbo.intuit.com/auth-component/uv-auth/p-2f974050.js	0%	Avira URL Cloud	safe
https://feedback-form.trustarc.com/watchdog/resources/css/jquery.ui.theme.css	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/6835-0f0b30fe7859a16d.js	0%	Avira URL Cloud	safe
http://psd2html.com/jcf	0%	Avira URL Cloud	safe
https://trustarc.com/consumer-information/file-a-privacy-dispute/	0%	Avira URL Cloud	safe
https://v60nf4oj5kwx7nyv6kx5vw5sku3egwb4lvht5vvp3bd393a3c363f138am1.e.aa.online-metrix.net/WhviUumwt0kL_Rkj?342b75b46f19a6a8=ktsIjLNs4sKAc5pU0gLBSdktCf6GYJiqVr8q1BFeBBVzvhc0ZPs2YTwsMiTkBlNX5nZ1LfZ7bFeTV5-DYtXQXKdAcHtr_hOasZ_4QTrYByPJuUt9FTxcREQCUHSkVDqmj-CoVJfwIgYOB6bcdb6Bn1eJ02__r7TMZoLis6lKJM0	0%	Avira URL Cloud	safe
https://github.com/twbs/bootstrap/blob/master/LICENSE)	0%	Avira URL Cloud	safe
https://feedback.qbo.intuit.com/web-portal-components/wp-components/p-5117d167.js	0%	Avira URL Cloud	safe
https://consent.trustarc.com/get?name=SourceSansPro-Regular.eot)	0%	Avira URL Cloud	safe
https://consent.trustarc.com/log	0%	Avira URL Cloud	safe
https://trustarc.com/wp-content/uploads/2024/02/cropped-favicon-270x270.png	0%	Avira URL Cloud	safe
https://trustarc.com/xmlrpc.php?rsd	0%	Avira URL Cloud	safe
https://consent.trustarc.com/get?name=trustarc_close.svg	0%	Avira URL Cloud	safe
https://use.typekit.net/af/64e458/000000000000000077359969/30/d?primer=7cdcb44be4a7db8877ffa5c0007b8	0%	Avira URL Cloud	safe
https://qfp.intuit.com/HTTpswvUJpVJQnMb?e3f8d25dc76c56b7=93GiOwgDpuCX7USaig1IK1JbR42QNnT0MNpPUoSzI9mGk_eM-NoeQfpZqjdQrI6yJ2uBP9G6vG5Rl-vzUxll8CzYWw4vtrXo7lQj_Z6ybj-sxvPkhshMwxb54hzoI9HDrSV-YRZX_u0P8qVxbqLtRf0F8N_furBWjmOSJvw	0%	Avira URL Cloud	safe
https://submit-irm.trustarc.com/services/validation/11bc4513-fc39-4d64-bcf3-ae603d2bd140	0%	Avira URL Cloud	safe
https://trustarc.com/	0%	Avira URL Cloud	safe
https://www.google.com/images/cleardot.gif	0%	Avira URL Cloud	safe
https://privacy.truste.com/privacy-seal/validation?rid=6218d0ea-ee8b-4472-87dd-ba4bf95aab3d	0%	Avira URL Cloud	safe
https://assets.uvcdn.com/pkg/clients/site2/index-4d5e5366848ad2d8e3621058840315fab85cf070d00e5a1229d	0%	Avira URL Cloud	safe
https://feedback-form.truste.com/watchdog/request	0%	Avira URL Cloud	safe
https://trust.trustarc.com/	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/7868.851b65ef7fa1a422.js	0%	Avira URL Cloud	safe
https://www.trustarc.com/privacy-policy/	0%	Avira URL Cloud	safe
https://www.truste.com/consumer-resources/dispute-resolution-2	0%	Avira URL Cloud	safe
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/main-593e743601aca717.js	0%	Avira URL Cloud	safe
https://use.typekit.net/af/f7c91f/000000000000000000011b23/27/a?primer=7cdcb44be4a7db8877ffa5c0007b8	0%	Avira URL Cloud	safe
https://feedback.qbo.intuit.com/auth-component/uv-auth/icons/google.svg	0%	Avira URL Cloud	safe
https://feedback.qbo.intuit.com/auth-component/uv-auth/p-0fe5d857.entry.js	0%	Avira URL Cloud	safe
https://trustarc.com/comments/feed/	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
chrome.cloudflare-dns.com	172.64.41.3	true	false	unknown
sendgrid.net	167.89.123.66	true	false	unknown
truste-com-509071560.us-east-1.elb.amazonaws.com	54.83.171.190	true	false	unknown
static.cns-icn-prod.a.intuit.com	13.225.78.17	true	false	unknown
eu-aa.online-metrix.net	91.235.132.129	true	false	unknown
fp2e7a.wpc.phicdn.net	192.229.221.95	true	false	unknown
sj01.mktossl.com	104.17.70.206	true	false	unknown
stats.g.doubleclick.net	142.251.173.155	true	false	unknown
d2rikquc8s9owl.cloudfront.net	13.32.121.110	true	false	unknown
d296je7bbdd650.cloudfront.net	13.227.222.191	true	false	unknown
s3.amazonaws.com	52.216.43.184	true	false	unknown
wup-04e01638.us.v2.we-stats.com	52.141.217.134	true	false	unknown
ips-logos-cdn.ips.sbg.a.intuit.com	18.66.102.30	true	false	unknown
h-v60nf4oj-qfp.online-metrix.net	91.235.133.106	true	false	unknown
www.google.com	142.250.185.164	true	false	unknown
h64.online-metrix.net	192.225.158.1	true	false	unknown
by2.uservoice.com	104.17.29.92	true	false	unknown
aa.online-metrix.net	91.235.132.129	true	false	unknown
widget.uservoice.com	104.17.28.92	true	false	unknown
v60nf4oj5kwx7nyv6kx5vw5sku3egwb4lvht5vvp3bd393a3c363f138am1.e.aa.online-metrix.net	91.235.134.131	true	false	unknown
chat-application.com	3.215.34.116	true	false	unknown
eventbus.a.intuit.com	54.69.113.244	true	false	unknown
legacy-validation-prod2-1100105057.us-east-1.elb.amazonaws.com	44.205.105.174	true	false	unknown
prd-sb04.apigwsbgprdusw2.iks2.a.intuit.com	52.27.203.35	true	false	unknown
platformexps-prd-sentry-io-stable.qbcapitalprdusw2.iks2.a.intuit.com	34.215.237.163	true	false	unknown
assets.uvcdn.com	104.18.18.225	true	false	unknown
legacy-watchdog-prod2-2089635595.us-east-1.elb.amazonaws.com	23.21.127.106	true	false	unknown
consent.trustarc.com	3.160.188.26	true	false	unknown
bg.microsoft.map.fastly.net	199.232.210.172	true	false	unknown
dualstack.reddit.map.fastly.net	151.101.1.140	true	false	unknown
analytics-alv.google.com	216.239.38.181	true	false	unknown
www3.l.google.com	142.250.185.78	true	false	unknown
reddit.map.fastly.net	151.101.1.140	true	false	unknown
googleads.g.doubleclick.net	142.250.74.194	true	false	unknown
qbo.uservoice.com	104.17.28.92	true	false	unknown
trustarc.com	141.193.213.21	true	false	unknown
td.doubleclick.net	216.58.206.66	true	false	unknown
prd-dx01.devpapigwextprdusw2.iks2.a.intuit.com	54.188.219.43	true	false	unknown
h.online-metrix.net	91.235.132.130	true	false	unknown
846-llz-652.mktoresp.com	192.28.147.68	true	false	unknown
log-04e01638.us.v2.we-stats.com	52.238.253.184	true	false	unknown
alb.reddit.com	unknown	unknown	true	unknown
smx.intuit.com	unknown	unknown	true	unknown
www.truste.com	unknown	unknown	true	unknown
connect.intuit.com	unknown	unknown	true	unknown
links.notification.intuit.com	unknown	unknown	true	unknown
use.typekit.net	unknown	unknown	true	unknown
www.redditstatic.com	unknown	unknown	true	unknown
privacy.truste.com	unknown	unknown	true	unknown
px.ads.linkedin.com	unknown	unknown	true	unknown
munchkin.marketo.net	unknown	unknown	true	unknown
qfp.intuit.com	unknown	unknown	true	unknown
p.typekit.net	unknown	unknown	true	unknown
risk-vendor-svc.api.intuit.com	unknown	unknown	true	unknown
info.trustarc.com	unknown	unknown	true	unknown
prd.sentry-io.a.intuit.com	unknown	unknown	true	unknown
secure.livechatinc.com	unknown	unknown	true	unknown
w3-reporting-nel.reddit.com	unknown	unknown	true	unknown
cdn.segment.com	unknown	unknown	true	unknown
pixel-config.reddit.com	unknown	unknown	true	unknown
quickbooks.intuit.com	unknown	unknown	true	unknown
feedback.qbo.intuit.com	unknown	unknown	true	unknown
feedback-form.truste.com	unknown	unknown	true	unknown
eventbus.intuit.com	unknown	unknown	true	unknown
www.linkedin.com	unknown	unknown	true	unknown
api.livechatinc.com	unknown	unknown	true	unknown
cdn.livechatinc.com	unknown	unknown	true	unknown
bcdn-god.we-stats.com	unknown	unknown	true	unknown
snap.licdn.com	unknown	unknown	true	unknown
translate.google.com	unknown	unknown	true	unknown
analytics.google.com	unknown	unknown	true	unknown
feedback-form.trustarc.com	unknown	unknown	true	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://trustarc.com/wp-content/uploads/2023/11/logo.svg	false	Avira URL Cloud: safe	unknown
https://trustarc.com/wp-content/uploads/2023/11/x.svg	false	Avira URL Cloud: safe	unknown
https://static.cns-icn-prod.a.intuit.com/favicon.png	false	Avira URL Cloud: safe	unknown
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/8948.2692353fb3048aa0.js	false	Avira URL Cloud: safe	unknown
https://feedback.qbo.intuit.com/web-portal-components/wp-components/p-0d86e690.js	false	Avira URL Cloud: safe	unknown
https://feedback.qbo.intuit.com/favicon.ico	false	Avira URL Cloud: safe	unknown
https://qfp.intuit.com/qpuhaBhn3FLfgw42?607f084ae41c535c=Sg5Uoajep3GWQiIrbndBnMPbyAbUJMzmeaB3iCXnB8cIEr0QDmr6LkjxuLUJec51Qx7ALTjTaiRbg-d68Vstn1SppjNZGQ7gRl2nQ9e65ocf4eIS0cY8I7oZkrsoV_rYKp1C3AAP6JvL7FS0hGmUhBML-XYw2kKEv_q2aIt4AzkhWg	false	Avira URL Cloud: safe	unknown
https://www.redditstatic.com/ads/pixel.js	false	URL Reputation: safe	unknown
https://trustarc.com/consumer-information/privacy-feedback-button	false	Avira URL Cloud: safe	unknown
https://static.cns-icn-prod.a.intuit.com/truste.svg	false	Avira URL Cloud: safe	unknown
https://qfp.intuit.com/nbb1tmor7ga3i535.js?iqxh0z34jnpxx64m=v60nf4oj&2ps8az1z7geoeboi=3B5B81F47A244B4B5E5308D420979545	false	Avira URL Cloud: safe	unknown
https://risk-vendor-svc.api.intuit.com/v1/assessment	false	Avira URL Cloud: safe	unknown
https://w3-reporting-nel.reddit.com/reports	false	URL Reputation: safe	unknown
about:blank	false	Avira URL Cloud: safe	unknown
https://bcdn-god.we-stats.com/scripts/04e01638/04e01638.js	false	Avira URL Cloud: safe	unknown
https://feedback-form.trustarc.com/watchdog/botdetectcaptcha?get=sound-disabled-icon	false	Avira URL Cloud: safe	unknown
https://feedback-form.trustarc.com/watchdog/resources/css/watchdog.css?v=3.0.0.26	false	Avira URL Cloud: safe	unknown
https://static.cns-icn-prod.a.intuit.com/mastercard.bug.svg	false	Avira URL Cloud: safe	unknown
blob:https://connect.intuit.com/f000e683-5ca1-44d9-acc9-761f7cc9692b	true	Avira URL Cloud: safe	unknown
https://static.cns-icn-prod.a.intuit.com/fonts/AvenirNext-forINTUIT-Web-Fonts/AvenirNext+forINTUIT+W05+Mediu_web.woff2	false	Avira URL Cloud: safe	unknown
https://prd.sentry-io.a.intuit.com/api/3/envelope/?sentry_key=ebe3b2c7c21247ebaee17c5bf4ca67c3&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.53.1	false	Avira URL Cloud: safe	unknown
https://feedback.qbo.intuit.com/auth-component/uv-auth/uv-auth.css	false	Avira URL Cloud: safe	unknown
https://feedback-form.trustarc.com/watchdog/botdetectcaptcha?get=script-include&c=captchaResponse&t=ac5ddac8a0274cf8b3fccf06d387cd14	false	Avira URL Cloud: safe	unknown
https://trustarc.com/wp-content/uploads/2023/11/fb.svg	false	Avira URL Cloud: safe	unknown
https://by2.uservoice.com/t2/141454/portal/track.js?_=1724709160819&s=0&c=__uvSessionData0	false	Avira URL Cloud: safe	unknown
https://feedback.qbo.intuit.com/auth-component/uv-auth/p-6b2b4694.js	false	Avira URL Cloud: safe	unknown
https://trustarc.com/wp-content/uploads/2024/02/res-square-rect-blue.png	false	Avira URL Cloud: safe	unknown
https://feedback-form.trustarc.com/watchdog/resources/css/images/logo-truste.gif	false	Avira URL Cloud: safe	unknown
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/7465-1b3ac9cfccea5cb5.js	false	Avira URL Cloud: safe	unknown
https://trustarc.com/wp-content/uploads/2023/11/li.svg	false	Avira URL Cloud: safe	unknown
https://trustarc.com/wp-content/themes/trustarc/assets/dist/js/app.js?ver=1711465976	false	Avira URL Cloud: safe	unknown
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/2378.40683c6fb386355f.js	false	Avira URL Cloud: safe	unknown
https://cdn.segment.com/analytics-next/bundles/schemaFilter.bundle.5c2661f67b4b71a6d9bd.js	false	URL Reputation: safe	unknown
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/3953-b52fc72e328e008a.js	false	Avira URL Cloud: safe	unknown
https://connect.intuit.com/portal/rest/reporting/batch	false	Avira URL Cloud: safe	unknown
https://consent.trustarc.com/autoblockoptout?domain=trustarc.com	false	Avira URL Cloud: safe	unknown
https://trustarc.com/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1	false	Avira URL Cloud: safe	unknown
https://feedback.qbo.intuit.com/auth-component/uv-auth/p-2f974050.js	false	Avira URL Cloud: safe	unknown
https://trustarc.com/consumer-information/privacy-feedback-button/	true		unknown
https://secure.livechatinc.com/customer/action/open_chat?license_id=6354551&group=391&embedded=1&widget_version=3&unique_groups=1	false		unknown
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/6835-0f0b30fe7859a16d.js	false	Avira URL Cloud: safe	unknown
https://feedback-form.trustarc.com/watchdog/resources/css/jquery.ui.theme.css	false	Avira URL Cloud: safe	unknown
https://trustarc.com/consumer-information/file-a-privacy-dispute/	false	Avira URL Cloud: safe	unknown
https://v60nf4oj5kwx7nyv6kx5vw5sku3egwb4lvht5vvp3bd393a3c363f138am1.e.aa.online-metrix.net/WhviUumwt0kL_Rkj?342b75b46f19a6a8=ktsIjLNs4sKAc5pU0gLBSdktCf6GYJiqVr8q1BFeBBVzvhc0ZPs2YTwsMiTkBlNX5nZ1LfZ7bFeTV5-DYtXQXKdAcHtr_hOasZ_4QTrYByPJuUt9FTxcREQCUHSkVDqmj-CoVJfwIgYOB6bcdb6Bn1eJ02__r7TMZoLis6lKJM0	false	Avira URL Cloud: safe	unknown
https://feedback.qbo.intuit.com/web-portal-components/wp-components/p-5117d167.js	false	Avira URL Cloud: safe	unknown
https://qfp.intuit.com/HTTpswvUJpVJQnMb?e3f8d25dc76c56b7=93GiOwgDpuCX7USaig1IK1JbR42QNnT0MNpPUoSzI9mGk_eM-NoeQfpZqjdQrI6yJ2uBP9G6vG5Rl-vzUxll8CzYWw4vtrXo7lQj_Z6ybj-sxvPkhshMwxb54hzoI9HDrSV-YRZX_u0P8qVxbqLtRf0F8N_furBWjmOSJvw	false	Avira URL Cloud: safe	unknown
https://www.google.com/images/cleardot.gif	false	Avira URL Cloud: safe	unknown
https://privacy.truste.com/privacy-seal/validation?rid=6218d0ea-ee8b-4472-87dd-ba4bf95aab3d	false	Avira URL Cloud: safe	unknown
https://feedback-form.truste.com/watchdog/request	false	Avira URL Cloud: safe	unknown
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/7868.851b65ef7fa1a422.js	false	Avira URL Cloud: safe	unknown
https://www.truste.com/consumer-resources/dispute-resolution-2	false	Avira URL Cloud: safe	unknown
https://static.cns-icn-prod.a.intuit.com/_next/static/chunks/main-593e743601aca717.js	false	Avira URL Cloud: safe	unknown
https://feedback.qbo.intuit.com/auth-component/uv-auth/icons/google.svg	false	Avira URL Cloud: safe	unknown
https://feedback.qbo.intuit.com/auth-component/uv-auth/p-0fe5d857.entry.js	false	Avira URL Cloud: safe	unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://assets.uvcdn.com/pkg/clients/site2/lt_IE_9-5d621b8b38991dde7ef0c335fc7cc90426c625e325949517b	chromecache_477.2.dr	false	Avira URL Cloud: safe	unknown
https://stats.g.doubleclick.net/g/collect	chromecache_663.2.dr, chromecache_587.2.dr	false	URL Reputation: safe	unknown
https://quickbooks.intuit.com/payments/desktop/#easy-payments	chromecache_461.2.dr	false	Avira URL Cloud: safe	unknown
https://quickbooks.intuit.com/money/see-plans/	chromecache_461.2.dr	false	Avira URL Cloud: safe	unknown
https://cdn.livechatinc.com/widget/static/js/livechat.Bn-5oE6B.js	chromecache_486.2.dr	false	Avira URL Cloud: safe	unknown
https://use.typekit.net/af/620bf8/00000000000000000000e7fe/27/d?primer=7cdcb44be4a7db8877ffa5c0007b8	chromecache_701.2.dr	false	Avira URL Cloud: safe	unknown
http://scripts.sil.org/OFL.	chromecache_603.2.dr	false	Avira URL Cloud: safe	unknown
https://trustarc.com/feed/	chromecache_502.2.dr	false	Avira URL Cloud: safe	unknown
http://docs.jquery.com/UI/Autocomplete#theming	chromecache_459.2.dr	false	Avira URL Cloud: safe	unknown
https://glam.app.intuit.com/app/guesttos?glocale=en_US	chromecache_461.2.dr	false	Avira URL Cloud: safe	unknown
https://ampcid.google.com/v1/publisher:getClientId	chromecache_578.2.dr, chromecache_606.2.dr	false	URL Reputation: safe	unknown
https://use.typekit.net/af/e3ca36/00000000000000000000e805/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8	chromecache_701.2.dr	false	Avira URL Cloud: safe	unknown
https://trustarc.com/wp-json/wp/v2/pages/2753	chromecache_502.2.dr	false	Avira URL Cloud: safe	unknown
https://px.ads.linkedin.com/collect?	chromecache_521.2.dr	false	URL Reputation: safe	unknown
https://use.typekit.net/af/620bf8/00000000000000000000e7fe/27/a?primer=7cdcb44be4a7db8877ffa5c0007b8	chromecache_701.2.dr	false	Avira URL Cloud: safe	unknown
http://getbootstrap.com)	chromecache_631.2.dr, chromecache_627.2.dr, chromecache_693.2.dr	false	Avira URL Cloud: safe	unknown
http://typekit.com/eulas/000000000000000000011b23	chromecache_701.2.dr	false	Avira URL Cloud: safe	unknown
https://stats.g.doubleclick.net/j/collect	chromecache_606.2.dr	false	URL Reputation: safe	unknown
https://feedback.qbo.intuit.com/forums/920104-quickbooks-invoice-online-checkout	chromecache_477.2.dr	false	Avira URL Cloud: safe	unknown
https://secure.livechatinc.com/	chromecache_486.2.dr	false	Avira URL Cloud: safe	unknown
https://trustarc.com/wp-content/uploads/2024/03/OG-main.png	chromecache_502.2.dr	false	Avira URL Cloud: safe	unknown
https://consent-pref.trustarc.com?type=trustarcnew_gdpr&layout=gdpr	chromecache_582.2.dr, chromecache_520.2.dr	false	Avira URL Cloud: safe	unknown
http://www.trustarc.com/about/	chromecache_588.2.dr	false	Avira URL Cloud: safe	unknown
https://schema.org	chromecache_502.2.dr	false	URL Reputation: safe	unknown
https://tinyurl.com/yy3rn63z	chromecache_614.2.dr	false	Avira URL Cloud: safe	unknown
https://use.typekit.net/af/38974e/00000000000000007735993f/30/d?primer=7cdcb44be4a7db8877ffa5c0007b8	chromecache_701.2.dr	false	Avira URL Cloud: safe	unknown
https://quickbooks.intuit.com/payments/legal/toc102017/greendot/?elqTrackId=abf7d8c40f3f48e0b939dfe3	chromecache_461.2.dr	false	Avira URL Cloud: safe	unknown
https://use.typekit.net/af/38974e/00000000000000007735993f/30/a?primer=7cdcb44be4a7db8877ffa5c0007b8	chromecache_701.2.dr	false	Avira URL Cloud: safe	unknown
http://psd2html.com/jcf	chromecache_734.2.dr, chromecache_591.2.dr	false	Avira URL Cloud: safe	unknown
https://developers.marketo.com/MunchkinLicense.pdf	chromecache_494.2.dr, chromecache_630.2.dr, chromecache_689.2.dr, chromecache_483.2.dr	false	URL Reputation: safe	unknown
https://consent.trustarc.com/get?name=SourceSansPro-Regular.eot)	chromecache_582.2.dr, chromecache_520.2.dr	false	Avira URL Cloud: safe	unknown
https://github.com/twbs/bootstrap/blob/master/LICENSE)	chromecache_631.2.dr, chromecache_627.2.dr, chromecache_693.2.dr	false	Avira URL Cloud: safe	unknown
https://consent.trustarc.com/log	chromecache_582.2.dr, chromecache_520.2.dr	false	Avira URL Cloud: safe	unknown
https://trustarc.com/wp-content/uploads/2024/02/cropped-favicon-270x270.png	chromecache_502.2.dr	false	Avira URL Cloud: safe	unknown
https://trustarc.com/xmlrpc.php?rsd	chromecache_502.2.dr	false	Avira URL Cloud: safe	unknown
https://consent.trustarc.com/get?name=trustarc_close.svg	chromecache_582.2.dr, chromecache_520.2.dr	false	Avira URL Cloud: safe	unknown
https://use.typekit.net/af/64e458/000000000000000077359969/30/d?primer=7cdcb44be4a7db8877ffa5c0007b8	chromecache_701.2.dr	false	Avira URL Cloud: safe	unknown
https://submit-irm.trustarc.com/services/validation/11bc4513-fc39-4d64-bcf3-ae603d2bd140	chromecache_582.2.dr, chromecache_520.2.dr	false	Avira URL Cloud: safe	unknown
https://trustarc.com/	chromecache_502.2.dr	false	Avira URL Cloud: safe	unknown
https://yoast.com/wordpress/plugins/seo/	chromecache_502.2.dr	false	URL Reputation: safe	unknown
https://assets.uvcdn.com/pkg/clients/site2/index-4d5e5366848ad2d8e3621058840315fab85cf070d00e5a1229d	chromecache_477.2.dr	false	Avira URL Cloud: safe	unknown
https://trust.trustarc.com/	chromecache_502.2.dr	false	Avira URL Cloud: safe	unknown
https://www.trustarc.com/privacy-policy/	chromecache_582.2.dr, chromecache_520.2.dr	false	Avira URL Cloud: safe	unknown
https://use.typekit.net/af/f7c91f/000000000000000000011b23/27/a?primer=7cdcb44be4a7db8877ffa5c0007b8	chromecache_701.2.dr	false	Avira URL Cloud: safe	unknown
https://reactjs.org/link/react-polyfills	chromecache_471.2.dr	false	URL Reputation: safe	unknown
https://trustarc.com/comments/feed/	chromecache_502.2.dr	false	Avira URL Cloud: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
54.83.171.190	truste-com-509071560.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
151.101.193.140	unknown	United States	54113	FASTLYUS	false
151.101.65.140	unknown	United States	54113	FASTLYUS	false
104.18.18.225	assets.uvcdn.com	United States	13335	CLOUDFLARENETUS	false
3.227.162.133	unknown	United States	14618	AMAZON-AESUS	false
142.250.186.78	unknown	United States	15169	GOOGLEUS	false
52.27.203.35	prd-sb04.apigwsbgprdusw2.iks2.a.intuit.com	United States	16509	AMAZON-02US	false
23.21.127.106	legacy-watchdog-prod2-2089635595.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
13.225.78.17	static.cns-icn-prod.a.intuit.com	United States	16509	AMAZON-02US	false
104.17.29.92	by2.uservoice.com	United States	13335	CLOUDFLARENETUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.185.196	unknown	United States	15169	GOOGLEUS	false
104.17.71.206	unknown	United States	13335	CLOUDFLARENETUS	false
99.86.8.175	unknown	United States	16509	AMAZON-02US	false
52.216.43.184	s3.amazonaws.com	United States	16509	AMAZON-02US	false
13.32.121.110	d2rikquc8s9owl.cloudfront.net	United States	16509	AMAZON-02US	false
18.236.195.120	unknown	United States	16509	AMAZON-02US	false
91.235.132.130	h.online-metrix.net	Netherlands	30286	THMUS	false
142.250.185.78	www3.l.google.com	United States	15169	GOOGLEUS	false
104.17.70.206	sj01.mktossl.com	United States	13335	CLOUDFLARENETUS	false
54.69.113.244	eventbus.a.intuit.com	United States	16509	AMAZON-02US	false
216.239.38.181	analytics-alv.google.com	United States	15169	GOOGLEUS	false
54.188.219.43	prd-dx01.devpapigwextprdusw2.iks2.a.intuit.com	United States	16509	AMAZON-02US	false
192.28.147.68	846-llz-652.mktoresp.com	United States	53580	MARKETOUS	false
34.199.182.45	unknown	United States	14618	AMAZON-AESUS	false
142.250.185.164	www.google.com	United States	15169	GOOGLEUS	false
104.17.30.92	unknown	United States	13335	CLOUDFLARENETUS	false
91.235.134.131	v60nf4oj5kwx7nyv6kx5vw5sku3egwb4lvht5vvp3bd393a3c363f138am1.e.aa.online-metrix.net	Netherlands	30286	THMUS	false
172.64.41.3	chrome.cloudflare-dns.com	United States	13335	CLOUDFLARENETUS	false
3.215.34.116	chat-application.com	United States	14618	AMAZON-AESUS	false
91.235.133.106	h-v60nf4oj-qfp.online-metrix.net	Netherlands	30286	THMUS	false
151.101.1.140	dualstack.reddit.map.fastly.net	United States	54113	FASTLYUS	false
52.217.228.64	unknown	United States	16509	AMAZON-02US	false
151.101.129.140	unknown	United States	54113	FASTLYUS	false
142.250.186.66	unknown	United States	15169	GOOGLEUS	false
13.227.222.191	d296je7bbdd650.cloudfront.net	United States	16509	AMAZON-02US	false
18.238.243.123	unknown	United States	16509	AMAZON-02US	false
44.205.105.174	legacy-validation-prod2-1100105057.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
141.193.213.21	trustarc.com	United States	396845	DV-PRIMARY-ASN1US	false
141.193.213.20	unknown	United States	396845	DV-PRIMARY-ASN1US	false
167.89.123.66	sendgrid.net	United States	11377	SENDGRIDUS	false
34.215.237.163	platformexps-prd-sentry-io-stable.qbcapitalprdusw2.iks2.a.intuit.com	United States	16509	AMAZON-02US	false
142.251.173.155	stats.g.doubleclick.net	United States	15169	GOOGLEUS	false
44.227.253.200	unknown	United States	16509	AMAZON-02US	false
18.66.102.113	unknown	United States	3	MIT-GATEWAYSUS	false
13.32.121.41	unknown	United States	16509	AMAZON-02US	false
52.141.217.134	wup-04e01638.us.v2.we-stats.com	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
108.177.122.147	unknown	United States	15169	GOOGLEUS	false
3.160.188.26	consent.trustarc.com	United States	16509	AMAZON-02US	false
104.17.28.92	widget.uservoice.com	United States	13335	CLOUDFLARENETUS	false
52.238.253.184	log-04e01638.us.v2.we-stats.com	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
91.235.132.129	eu-aa.online-metrix.net	Netherlands	30286	THMUS	false
142.250.74.194	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
216.58.206.66	td.doubleclick.net	United States	15169	GOOGLEUS	false
34.208.255.189	unknown	United States	16509	AMAZON-02US	false
192.225.158.1	h64.online-metrix.net	United States	30286	THMUS	false
18.66.102.30	ips-logos-cdn.ips.sbg.a.intuit.com	United States	3	MIT-GATEWAYSUS	false

Private

IP
192.168.2.4
192.168.2.5

General Information

Joe Sandbox version:	40.0.0 Tourmaline
Analysis ID:	1499395
Start date and time:	2024-08-26 23:50:53 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 4m 27s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	http://links.notification.intuit.com/ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4aEATQ-2BdvHNjDcf3OmBO8OltXq6TPtCFVmMtf59VCEIhWP8mKN6H4HEXLgTiVOzMGungkdodFG1U68jQcrrNridBgnLDNNcks2Eu-2FQvYhEtX4HXrZ9v6fUa-2BRIi5AQ-2BwD5vS6MnLYVP87GGyb6HmNhdfD3KwSAS20G-2BeW0Vh1-2FR9QTUfmy33TQB0xSkInGL4OQ-3D-3Dd5bU_cr2hXK7H46C0VNrk0q72l8t-2Fz9mnxEHSfh1GAbJeNzpnKYe8FQIo-2FWBJuMOaTn-2FP5GR8Qt943ZZfuRkH6un4oUU3aXnLVtIgXrne8J6mRLgoHmZ4dSlnz9HKSTZpIEdqIMntBhHh48IoiPlkBcx5WCYGFvdqaseKMS4hqG-2Fqm3CXUvsLf-2FBUuq3N23Dp1e1ITq1YXJsD4Tc2Hp3umT37TOgYKV2wDoA502-2BmC98ur8ZXp7uaVp3-2BG6QDUeQpqKPWQHCWKl5kSR-2Bnb3SQu1evjJ2gpbcqd9JMAV6jWZMA3B8hmOtBKozI5eRDrBvzQb6tnM0dHr34e27qWboGpujmnGVOSZQqF0jwsNgVGly00WoLu0CZsW-2BcjGQpD7k9ALTpkcWliNGdFdbMxHMZXiA1J7lh2-2BsF5qgo9tGTfAjLJ4RsuC3oX6KaIwkulFtivIYSjHdA3X27kGlUzFrUHua-2BTgD5ohPM7evV83d7kPNItYEGvVPIJVZUk-2FxIBj3YPP-2Fsbtk7I0WbaGlb1bmDsgl2SUXcvBs603yDvLQMeC1aUJsiH8N2BZogAbJvS7FD1tk4BYTDW2Xwf7gosyLjUOkHNuS9r2LGmeREVOdjavhZFRuoyZt9K3oAqbd0ilkQ8cIP0szyeADWc0-2BNQ23CH7qE-2FjWIbg0HcwXFXFyjdQDi7qf1pgUXI-2Fv9Yy6AG5bUs2m1HxAWHaL7fW5CVQZ4F6B1Ju1sw59F7SUz23yhvwNObJmUVbVfEGV-2BZA-2F98pDH2pt7LJtKgI3mewrJbs-2F-2FTdOmrI6HG3-2FbXaeouJzCyvXqTCN6rAXz7G1EV-2BxmzweuxfbkDjekOwsb9FAt19H2h8p-2BacLMfFKRpKADWoVXepjHI41l8Ezr5z4P9kXhgjPrsLF1E0d878Uey8KsSHy4zMEwC2hysqB10YFJ8NqqDGiqvuO1ptzehCo0stoHlQSz6NXbxfVqYRRpI0bWjiE3mmH8tYFqTzyq0aLMLc8mRWBu2lYy5fk6tVB7RDFYmaMv4XG4unkmzRlYW1UlIFaFQRZg6nUUfTxlTFqd6Fq3MIy-2FutJstaaMOfOE3RGI-2FjMRYS6gGPZ-2FXFUNYyEqTQgau-2FHg-2BIPIfL6v25iFKH7BpfNrtW6dPZL-2FY5foy3wuJIqTA2g64-2BLwCF-2B1AnLxVb-2FbYm-2F7RNgq095K8jbC-2BKEkU2Ay2cSCNX52GHO974WSNSYh1dyvEWu2H4Nmtn6AV74Z-2FcJwN3dF1ce0-2BWuzqG0B6WkJDQyH0gEgA5jIpX031SHychMJHIjzt50P3dD4oGn86BCtFVqK4XCvQAFGl182mqUeuIP9aQ-2FdHf-2BtrB5hlbOp6NQ-2FjRIMw4bWzn-2BhXPIKipkXbuS-2BsK49do0iu8L0vdijcSBVk9hOju6vh1btfQb5l8PqUG19kVW1fkedtm6l0tKLclh-2FlVLBAj4SAZwbdk2PSlc88UMuZ0KZcDPiQWEpcPPmfr2Gl1LDI4f3zzDS6s9nsw-3D-3D
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	15
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal56.phis.win@55/512@201/59
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0
Cookbook Comments:	Browse: https://privacy.truste.com/privacy-seal/validation?rid=6218d0ea-ee8b-4472-87dd-ba4bf95aab3d Browse: https://feedback.qbo.intuit.com/forums/920104 Browse: https://trustarc.com/consumer-information/file-a-privacy-dispute/ Found PDF document Close Viewer

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.185.163, 172.217.23.110, 64.233.184.84, 34.104.35.123, 23.55.229.208, 23.57.18.228, 40.127.169.103, 199.232.210.172, 142.250.186.42, 142.250.185.234, 142.250.181.234, 216.58.206.42, 142.250.185.138, 216.58.206.74, 172.217.18.10, 142.250.186.74, 142.250.184.234, 172.217.16.202, 142.250.185.170, 142.250.185.202, 172.217.16.138, 142.250.186.170, 142.250.186.138, 142.250.186.106, 192.229.221.95, 13.95.31.18, 142.250.186.104, 23.192.240.149, 142.250.186.136, 52.165.164.15, 2.19.126.206, 2.19.126.198, 23.222.28.241, 23.222.28.240, 172.217.18.8, 23.38.98.79, 23.38.98.94, 95.101.111.143, 95.101.111.142, 95.101.111.167, 95.101.111.156, 95.101.111.145, 95.101.111.161, 95.101.111.137, 95.101.111.159, 95.101.111.146, 216.58.206.35, 142.250.74.202, 216.58.212.138, 172.217.18.106, 142.250.185.106, 142.250.185.74, 142.250.184.202, 2.19.126.143, 2.19.126.135, 216.58.212.131, 13.107.42.14, 23.67.42.58, 23.67.42.25, 23.67.42.17, 142.250.9.95, 95.101.111.131, 216.58.212.163, 142
Excluded domains from analysis (whitelisted): http-download.intuit.com.edgekey.net, e39296.f.akamaiedge.net, slscr.update.microsoft.com, clientservices.googleapis.com, e10776.b.akamaiedge.net, mktg.intuit.com.edgekey.net, secure.livechat.com.edgekey.net, acroipm2.adobe.com, a1874.dscg1.akamai.net, a1952.dscq.akamai.net, l-0005.l-msedge.net, clients2.google.com, ocsp.digicert.com, use-stls.adobe.com.edgesuite.net, ssl-delivery.adobe.com.edgekey.net, a122.dscd.akamai.net, update.googleapis.com, t2.gstatic.com, www.gstatic.com, cdn.livechat.com.edgekey.net, wu-b-net.trafficmanager.net, apps.identrust.com, www.google-analytics.com, fs.microsoft.com, identrust.edgesuite.net, content-autofill.googleapis.com, acroipm2.adobe.com.edgesuite.net, od.linkedin.edgesuite.net, p.typekit.net-stls-v3.edgesuite.net, e39296.b.akamaiedge.net, ssl.adobe.com.edgekey.net, edgedl.me.gvt1.com, translate.googleapis.com, clients.l.google.com, geo2.adobe.com, a1916.dscg2.akamai.net, e9951.g.akamaiedge.net, e4578.dscg.akamaiedge.net, e45
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing network information.
Report size getting too big, too many NtCreateFile calls found.
Report size getting too big, too many NtOpenFile calls found.
Report size getting too big, too many NtSetInformationFile calls found.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: http://links.notification.intuit.com/ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4aEATQ-2BdvHNjDcf3OmBO8OltXq6TPtCFVmMtf59VCEIhWP8mKN6H4HEXLgTiVOzMGungkdodFG1U68jQcrrNridBgnLDNNcks2Eu-2FQvYhEtX4HXrZ9v6fUa-2BRIi5AQ-2BwD5vS6MnLYVP87GGyb6HmNhdfD3KwSAS20G-2BeW0Vh1-2FR9QTUfmy33TQB0xSkInGL4OQ-3D-3Dd5bU_cr2hXK7H46C0VNrk0q72l8t-2Fz9mnxEHSfh1GAbJeNzpnKYe8FQIo-2FWBJuMOaTn-2FP5GR8Qt943ZZfuRkH6un4oUU3aXnLVtIgXrne8J6mRLgoHmZ4dSlnz9HKSTZpIEdqIMntBhHh48IoiPlkBcx5WCYGFvdqaseKMS4hqG-2Fqm3CXUvsLf-2FBUuq3N23Dp1e1ITq1YXJsD4Tc2Hp3umT37TOgYKV2wDoA502-2BmC98ur8ZXp7uaVp3-2BG6QDUeQpqKPWQHCWKl5kSR-2Bnb3SQu1evjJ2gpbcqd9JMAV6jWZMA3B8hmOtBKozI5eRDrBvzQb6tnM0dHr34e27qWboGpujmnGVOSZQqF0jwsNgVGly00WoLu0CZsW-2BcjGQpD7k9ALTpkcWliNGdFdbMxHMZXiA1J7lh2-2BsF5qgo9tGTfAjLJ4RsuC3oX6KaIwkulFtivIYSjHdA3X27kGlUzFrUHua-2BTgD5ohPM7evV83d7kPNItYEGvVPIJVZUk-2FxIBj3YPP-2Fsbtk7I0WbaGlb1bmDsgl2SUXcvBs603yDvLQMeC1aUJsiH8N2BZogAbJvS7FD1tk4BYTDW2Xwf7gosyLjUOkHNuS9r2LGmeREVO

Simulations

Behavior and APIs

Time	Type	Description
17:53:13	API Interceptor	1x Sleep call for process: AcroCEF.exe modified

Process:	C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
File Type:	ASCII text
Category:	dropped
Size (bytes):	292
Entropy (8bit):	5.265215640887052
Encrypted:	false
SSDEEP:	6:Nwis3+q2Pwkn2nKuAl9OmbnIFUt88wcFZZmw+8wcFNVkwOwkn2nKuAl9OmbjLJ:NwisOvYfHAahFUt88wI/+8wQ5JfHAaSJ
MD5:	53F93BB7DBC92CB37A94BE510C336FE9
SHA1:	688419B99D97F202B764E5272421222F64B5AAA8
SHA-256:	B6EA56B10612C78CC5F5C1F882CB7877D11A8C0BDFC7B477ADEC0AF117398338
SHA-512:	A66BB7C5403DE2EF63E276725E049657F9595A99F7A286E6985F378E27BCC6C99EB2E743BB1323D764F50B986694D46D5761FDB491B078AB6DDAF826309DB70F
Malicious:	false
Reputation:	low
Preview:	2024/08/26-17:53:00.829 1578 Reusing MANIFEST C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/MANIFEST-000001.2024/08/26-17:53:00.831 1578 Recovering log #3.2024/08/26-17:53:00.831 1578 Reusing old log C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/000003.log .

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PDF document, version 1.7, 1 pages
Category:	dropped
Size (bytes):	28885
Entropy (8bit):	7.8628096078544845
Encrypted:	false
SSDEEP:	768:hBgTx2qbhP890V5mN3JLOcKLhu6VEzXNqQ+l+X2arJn2LjzW3:ETxLYhku6VEz7Wxar4HU
MD5:	17B7F01383442FBEFB9BA754CB914BE8
SHA1:	A971ABEC11A347BF4C62E3B73ADBAEE63170E4B6
SHA-256:	8B11043239BF238C5F8675EF1A3F00D04A7DE701385049C742261B3123003F02
SHA-512:	781F002D0389A2300EEC7A289602A54A32689CDE6A66D7223AE8115C4AD090AAAA25C9F4808ADAA8C1DBE6D1E035D19F2E8CA8439493C1990045FF648FCD003E
Malicious:	false
Reputation:	low
Preview:	%PDF-1.7..4 0 obj..<</Type /Page/Parent 3 0 R/Contents 5 0 R/MediaBox [0 0 612 792]/Resources<</Font<</FAAAAH 7 0 R/FAAAAJ 9 0 R/FAAABC 12 0 R>>/XObject<</X1 14 0 R/X2 15 0 R>>>>/Group <</Type/Group/S/Transparency/CS/DeviceRGB>>>>..endobj..5 0 obj..<</Length 16 0 R/Filter /FlateDecode>>stream..x...ksZ....L......~.S....(.m .'.[.d..l$....9.p... ,......{..]s.....?..2.%.........wZ..>.%..x..w....{c......d..w.a.p.c.Zb[.)$.q.....h.GZ.....y....^. fp....#.[..S...td..._..._....?...E.?...yU.....j~..f...TX E..H..~..,(..$..P...T#I/...nLn.wc2z;...#....cr?'.b2%.O.gr2.....n..l....y...........I).7c2.&....xAn.....d:%.h...k3.q...\.....d4.#..=\|.krU\|.K.\|...6'.B-.!u.t....>.-.Un.......xR..KI..u-..0g..@\|.:.zgV.2.t\!..A.,.Z..._._.e../.....w..# ..........A...-W.\|..9znW..iH....a)F/.U.g9\a..6F......h....=%....4g.K.f.KGi...'..`./.....7.pn.k...f...=2....._.x.q...f...8....~2.....G..1..AG..Mn.l...+5..ZR......."..5......`...I....1.MW...C;..!......Q{Hl.S.....@%2.\...Z.*T..d.Y-

Timestamp	Bytes transferred	Direction	Data
Aug 26, 2024 23:51:47.153137922 CEST	2355	OUT	GET /ls/click?upn=u001.Hu9nToJLxsJSQR8ZHWn8Ib7JikYF6PNXv5VK-2BAfeSpVHPRNy-2BFDtJ-2BhNUfKXTverofrKjvXVKH4ba5KbTX-2BS4aEATQ-2BdvHNjDcf3OmBO8OltXq6TPtCFVmMtf59VCEIhWP8mKN6H4HEXLgTiVOzMGungkdodFG1U68jQcrrNridBgnLDNNcks2Eu-2FQvYhEtX4HXrZ9v6fUa-2BRIi5AQ-2BwD5vS6MnLYVP87GGyb6HmNhdfD3KwSAS20G-2BeW0Vh1-2FR9QTUfmy33TQB0xSkInGL4OQ-3D-3Dd5bU_cr2hXK7H46C0VNrk0q72l8t-2Fz9mnxEHSfh1GAbJeNzpnKYe8FQIo-2FWBJuMOaTn-2FP5GR8Qt943ZZfuRkH6un4oUU3aXnLVtIgXrne8J6mRLgoHmZ4dSlnz9HKSTZpIEdqIMntBhHh48IoiPlkBcx5WCYGFvdqaseKMS4hqG-2Fqm3CXUvsLf-2FBUuq3N23Dp1e1ITq1YXJsD4Tc2Hp3umT37TOgYKV2wDoA502-2BmC98ur8ZXp7uaVp3-2BG6QDUeQpqKPWQHCWKl5kSR-2Bnb3SQu1evjJ2gpbcqd9JMAV6jWZMA3B8hmOtBKozI5eRDrBvzQb6tnM0dHr34e27qWboGpujmnGVOSZQqF0jwsNgVGly00WoLu0CZsW-2BcjGQpD7k9ALTpkcWliNGdFdbMxHMZXiA1J7lh2-2BsF5qgo9tGTfAjLJ4RsuC3oX6KaIwkulFtivIYSjHdA3X27kGlUzFrUHua-2BTgD5ohPM7evV83d7kPNItYEGvVPIJVZUk-2FxIBj3YPP-2Fsbtk7I0WbaGlb1bmDsgl2SUXcvBs603yDvLQMeC1aUJsiH8N2BZogAbJvS7FD1tk4BYTDW2Xwf7gosyLjUOkHNuS9r2LGmeREVOdjavhZFRuoyZt9K3oAqbd0ilkQ8cIP0szyeADWc0-2BNQ23CH7qE-2Fj [TRUNCATED] Host: links.notification.intuit.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Aug 26, 2024 23:51:47.654898882 CEST	619	IN	HTTP/1.1 302 Found Server: nginx Date: Mon, 26 Aug 2024 21:51:47 GMT Content-Type: text/html; charset=utf-8 Content-Length: 221 Connection: keep-alive Location: https://connect.intuit.com/portal/app/CommerceNetwork/view/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US X-Robots-Tag: noindex, nofollow Data Raw: 3c 61 20 68 72 65 66 3d 22 68 74 74 70 73 3a 2f 2f 63 6f 6e 6e 65 63 74 2e 69 6e 74 75 69 74 2e 63 6f 6d 2f 70 6f 72 74 61 6c 2f 61 70 70 2f 43 6f 6d 6d 65 72 63 65 4e 65 74 77 6f 72 6b 2f 76 69 65 77 2f 73 63 73 2d 76 31 2d 39 36 36 35 37 61 39 39 35 62 61 64 34 36 64 32 39 61 37 35 62 65 62 37 35 66 63 35 64 31 37 37 65 37 66 32 64 31 32 66 38 37 38 64 34 30 63 63 39 66 65 32 39 61 32 66 35 63 34 62 62 31 65 61 32 61 66 32 30 33 64 31 33 66 37 63 34 30 65 31 39 62 36 64 62 61 66 32 31 39 35 34 36 39 62 31 3f 63 74 61 3d 76 69 65 77 69 6e 76 6f 69 63 65 6e 6f 77 26 61 6d 70 3b 6c 6f 63 61 6c 65 3d 65 6e 5f 55 53 22 3e 46 6f 75 6e 64 3c 2f 61 3e 2e 0a 0a Data Ascii: <a href="https://connect.intuit.com/portal/app/CommerceNetwork/view/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US">Found</a>.
Aug 26, 2024 23:52:32.713542938 CEST	6	OUT	Data Raw: 00 Data Ascii:

Timestamp	Bytes transferred	Direction	Data
Aug 26, 2024 23:52:18.027182102 CEST	468	OUT	GET /consumer-resources/dispute-resolution-2 HTTP/1.1 Host: www.truste.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Aug 26, 2024 23:52:18.509380102 CEST	373	IN	HTTP/1.1 301 Moved Permanently Server: awselb/2.0 Date: Mon, 26 Aug 2024 21:52:18 GMT Content-Type: text/html Content-Length: 134 Connection: keep-alive Location: https://www.truste.com:443/consumer-resources/dispute-resolution-2 Data Raw: 3c 68 74 6d 6c 3e 0d 0a 3c 68 65 61 64 3e 3c 74 69 74 6c 65 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 74 69 74 6c 65 3e 3c 2f 68 65 61 64 3e 0d 0a 3c 62 6f 64 79 3e 0d 0a 3c 63 65 6e 74 65 72 3e 3c 68 31 3e 33 30 31 20 4d 6f 76 65 64 20 50 65 72 6d 61 6e 65 6e 74 6c 79 3c 2f 68 31 3e 3c 2f 63 65 6e 74 65 72 3e 0d 0a 3c 2f 62 6f 64 79 3e 0d 0a 3c 2f 68 74 6d 6c 3e 0d 0a Data Ascii: <html><head><title>301 Moved Permanently</title></head><body><center><h1>301 Moved Permanently</h1></center></body></html>
Aug 26, 2024 23:53:03.525036097 CEST	6	OUT	Data Raw: 00 Data Ascii:

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:49 UTC	828	OUT	GET /portal/app/CommerceNetwork/view/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US HTTP/1.1 Host: connect.intuit.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-08-26 21:51:49 UTC	1207	IN	HTTP/1.1 302 Found Date: Mon, 26 Aug 2024 21:51:49 GMT Content-Type: text/html;charset=utf-8 Content-Length: 328 Connection: close x-spanid: 130ce05f-2384-9d34-fbe1-604617feda8b x-amzn-trace-id: Root=1-66ccf8f5-7387262353c3b2884e139ca9 X-Content-Type-Options: nosniff Set-Cookie: AWSALB=nSMHi36OiGoVoCWCA33fCie2HhsZ9UwyZzPIGoPpmw95vOGuIp/bMHWILKPuu01VB32pn50LXabr8hJeiAAIRlugz8Cu6tADdJI/UXxq52Dr8vYwfk1+sSFjn1BS; Expires=Mon, 02 Sep 2024 21:51:49 GMT; Path=/ Set-Cookie: AWSALBCORS=nSMHi36OiGoVoCWCA33fCie2HhsZ9UwyZzPIGoPpmw95vOGuIp/bMHWILKPuu01VB32pn50LXabr8hJeiAAIRlugz8Cu6tADdJI/UXxq52Dr8vYwfk1+sSFjn1BS; Expires=Mon, 02 Sep 2024 21:51:49 GMT; Path=/; SameSite=None; Secure x-frame-options: SAMEORIGIN X-Robots-Tag: noindex, nofollow, noarchive, nosnippet, noimageindex, notranslate Cache-Control: no-store Location: /t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US Vary: Accept, Accept-Encoding x-envoy-upstream-service-time: 12 Strict-Transport-Security: max-age=31536000 intuit_tid: 1-66ccf8f5-7387262353c3b2884e139ca9 x-request-id: 1-66ccf8f5-7387262353c3b2884e139ca9 server: istio-envoy
2024-08-26 21:51:49 UTC	328	IN	Data Raw: 3c 70 3e 46 6f 75 6e 64 2e 20 52 65 64 69 72 65 63 74 69 6e 67 20 74 6f 20 3c 61 20 68 72 65 66 3d 22 2f 74 2f 73 63 73 2d 76 31 2d 39 36 36 35 37 61 39 39 35 62 61 64 34 36 64 32 39 61 37 35 62 65 62 37 35 66 63 35 64 31 37 37 65 37 66 32 64 31 32 66 38 37 38 64 34 30 63 63 39 66 65 32 39 61 32 66 35 63 34 62 62 31 65 61 32 61 66 32 30 33 64 31 33 66 37 63 34 30 65 31 39 62 36 64 62 61 66 32 31 39 35 34 36 39 62 31 3f 63 74 61 3d 76 69 65 77 69 6e 76 6f 69 63 65 6e 6f 77 26 61 6d 70 3b 6c 6f 63 61 6c 65 3d 65 6e 5f 55 53 22 3e 2f 74 2f 73 63 73 2d 76 31 2d 39 36 36 35 37 61 39 39 35 62 61 64 34 36 64 32 39 61 37 35 62 65 62 37 35 66 63 35 64 31 37 37 65 37 66 32 64 31 32 66 38 37 38 64 34 30 63 63 39 66 65 32 39 61 32 66 35 63 34 62 62 31 65 61 32 61 66 Data Ascii: <p>Found. Redirecting to <a href="/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US">/t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:50 UTC	1076	OUT	GET /t/scs-v1-96657a995bad46d29a75beb75fc5d177e7f2d12f878d40cc9fe29a2f5c4bb1ea2af203d13f7c40e19b6dbaf2195469b1?cta=viewinvoicenow&locale=en_US HTTP/1.1 Host: connect.intuit.com Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: AWSALB=nSMHi36OiGoVoCWCA33fCie2HhsZ9UwyZzPIGoPpmw95vOGuIp/bMHWILKPuu01VB32pn50LXabr8hJeiAAIRlugz8Cu6tADdJI/UXxq52Dr8vYwfk1+sSFjn1BS; AWSALBCORS=nSMHi36OiGoVoCWCA33fCie2HhsZ9UwyZzPIGoPpmw95vOGuIp/bMHWILKPuu01VB32pn50LXabr8hJeiAAIRlugz8Cu6tADdJI/UXxq52Dr8vYwfk1+sSFjn1BS
2024-08-26 21:51:51 UTC	1225	IN	HTTP/1.1 200 OK Date: Mon, 26 Aug 2024 21:51:51 GMT Content-Type: text/html;charset=utf-8 Content-Length: 166848 Connection: close x-spanid: 9f98c7d0-9498-948f-1298-e8a662d5cbed x-amzn-trace-id: Root=1-66ccf8f6-6e601a4c6362fe7f486b55e1 X-Content-Type-Options: nosniff Set-Cookie: AWSALB=nvIDlI5QEy3LoyPAct3oDQ17JO2RrfqFDRjdPJnQDYOiyAK+sDETnGbNOZU2IlknC8I3be7SuAnUPw2UFVaQKX7eMa99M5CO80sbJFkqn1LqI05Ed0Mhk0eKNls9; Expires=Mon, 02 Sep 2024 21:51:50 GMT; Path=/ Set-Cookie: AWSALBCORS=nvIDlI5QEy3LoyPAct3oDQ17JO2RrfqFDRjdPJnQDYOiyAK+sDETnGbNOZU2IlknC8I3be7SuAnUPw2UFVaQKX7eMa99M5CO80sbJFkqn1LqI05Ed0Mhk0eKNls9; Expires=Mon, 02 Sep 2024 21:51:50 GMT; Path=/; SameSite=None; Secure x-frame-options: SAMEORIGIN X-Robots-Tag: noindex, nofollow, noarchive, nosnippet, noimageindex, notranslate Cache-Control: no-store Set-Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154; Domain=.intuit.com; Path=/; Expires=Sun, 26 Aug 2029 21:51:50 GMT; Secure ETag: W/"28bc0-iSM11niS4H7R7D+SPgoqu9Y7zXE" Vary: Accept-Encoding x-envoy-upstream-service-time: 936 Strict-Transport-Security: max-age=31536000 intuit_tid: 1-66ccf8f6-6e601a4c6362fe7f486b55e1 x-request-id: 1-66ccf8f6-6e601a4c6362fe7f486b55e1 server: istio-envoy
2024-08-26 21:51:51 UTC	15159	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 3c 6d 65 74 61 20 63 68 61 72 53 65 74 3d 22 75 74 66 2d 38 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 22 2f 3e 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 6e 65 78 74 2d 68 65 61 64 2d 63 6f 75 6e 74 22 20 63 6f 6e 74 65 6e 74 3d 22 32 22 2f 3e 3c 74 69 74 6c 65 3e 49 6e 74 75 69 74 20 51 75 69 63 6b 42 6f 6f 6b 73 3c 2f 74 69 74 6c 65 3e 3c 73 63 72 69 70 74 3e 0a 77 69 6e 64 6f 77 2e 6f 6e 65 72 72 6f 72 20 3d 20 66 75 6e 63 74 69 6f 6e 20 28 6d 65 73 73 61 67 65 2c 20 73 6f 75 72 63 65 2c 20 6c 69 6e 65 6e 6f 2c 20 63 6f 6c 6e 6f 2c 20 65 72 72 6f 72 29 20 7b 0a 20 20 Data Ascii: <!DOCTYPE html><html><head><meta charSet="utf-8"/><meta name="viewport" content="width=device-width"/><meta name="next-head-count" content="2"/><title>Intuit QuickBooks</title><script>window.onerror = function (message, source, lineno, colno, error) {
2024-08-26 21:51:51 UTC	16373	IN	Data Raw: 2c 2e 77 2e 6a 73 78 2d 33 37 31 31 31 34 36 39 32 33 20 2e 6c 69 6e 6b 2d 77 2e 6a 73 78 2d 33 37 31 31 31 34 36 39 32 33 3a 66 6f 63 75 73 7b 62 6f 72 64 65 72 2d 62 6f 74 74 6f 6d 3a 73 6f 6c 69 64 20 34 70 78 20 23 32 63 61 30 31 63 3b 63 6f 6c 6f 72 3a 23 30 30 30 30 30 30 3b 6f 75 74 6c 69 6e 65 3a 6e 6f 6e 65 3b 7d 2e 77 2e 6a 73 78 2d 33 37 31 31 31 34 36 39 32 33 20 2e 74 78 74 2d 6f 76 65 72 66 6c 6f 77 2e 6a 73 78 2d 33 37 31 31 31 34 36 39 32 33 7b 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 6f 76 65 72 66 6c 6f 77 3a 68 69 64 64 65 6e 3b 74 65 78 74 2d 6f 76 65 72 66 6c 6f 77 3a 65 6c 6c 69 70 73 69 73 3b 6d 61 78 2d 77 69 64 74 68 3a 33 30 30 70 78 3b 7d 40 6d 65 64 69 61 20 73 63 72 65 65 6e 20 61 6e 64 20 28 6d 61 78 2d 77 69 Data Ascii: ,.w.jsx-3711146923 .link-w.jsx-3711146923:focus{border-bottom:solid 4px #2ca01c;color:#000000;outline:none;}.w.jsx-3711146923 .txt-overflow.jsx-3711146923{white-space:nowrap;overflow:hidden;text-overflow:ellipsis;max-width:300px;}@media screen and (max-wi
2024-08-26 21:51:51 UTC	735	IN	Data Raw: 3a 63 65 6e 74 65 72 3b 2d 6d 73 2d 66 6c 65 78 2d 61 6c 69 67 6e 3a 63 65 6e 74 65 72 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 70 61 63 6b 3a 73 70 61 63 65 2d 65 76 65 6e 6c 79 3b 2d 77 65 62 6b 69 74 2d 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 73 70 61 63 65 2d 65 76 65 6e 6c 79 3b 2d 6d 73 2d 66 6c 65 78 2d 70 61 63 6b 3a 73 70 61 63 65 2d 65 76 65 6e 6c 79 3b 6a 75 73 74 69 66 79 2d 63 6f 6e 74 65 6e 74 3a 73 70 61 63 65 2d 65 76 65 6e 6c 79 3b 2d 77 65 62 6b 69 74 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 3b 2d 6d 73 2d 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 3b 66 6c 65 78 2d 64 69 72 65 63 74 69 6f 6e 3a 63 6f 6c 75 6d 6e 3b 6d 61 78 2d 77 Data Ascii: :center;-ms-flex-align:center;align-items:center;-webkit-box-pack:space-evenly;-webkit-justify-content:space-evenly;-ms-flex-pack:space-evenly;justify-content:space-evenly;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;max-w
2024-08-26 21:51:51 UTC	16384	IN	Data Raw: 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 41 76 65 6e 69 72 4e 65 78 74 66 6f 72 49 4e 54 55 49 54 2d 4d 65 64 69 75 6d 3b 7d 2e 63 70 42 75 74 74 6f 6e 2e 6a 73 78 2d 32 36 30 39 30 35 34 32 33 33 3a 66 6f 63 75 73 2c 63 70 42 75 74 74 6f 6e 2e 6a 73 78 2d 32 36 30 39 30 35 34 32 33 33 3a 61 63 74 69 76 65 7b 6f 75 74 6c 69 6e 65 3a 6e 6f 6e 65 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 30 70 78 20 30 70 78 20 30 70 78 20 31 70 78 20 77 68 69 74 65 2c 30 70 78 20 30 70 78 20 30 70 78 20 34 70 78 20 23 30 30 37 37 43 35 3b 7d 2e 63 70 42 75 74 74 6f 6e 2e 6a 73 78 2d 32 36 30 39 30 35 34 32 33 33 3a 3a 2d 6d 6f 7a 2d 66 6f 63 75 73 2d 69 6e 6e 65 72 7b 62 6f 72 64 65 72 3a 30 3b 7d 2e 63 70 42 75 74 74 6f 6e 2d Data Ascii: white-space:nowrap;font-family:AvenirNextforINTUIT-Medium;}.cpButton.jsx-2609054233:focus,cpButton.jsx-2609054233:active{outline:none;box-shadow:0px 0px 0px 1px white,0px 0px 0px 4px #0077C5;}.cpButton.jsx-2609054233::-moz-focus-inner{border:0;}.cpButton-
2024-08-26 21:51:51 UTC	16384	IN	Data Raw: 72 3b 61 6c 69 67 6e 2d 69 74 65 6d 73 3a 63 65 6e 74 65 72 3b 7d 2e 63 6f 75 6e 74 72 79 2d 66 69 65 6c 64 2e 6a 73 78 2d 32 37 35 34 34 35 33 33 32 36 20 6c 61 62 65 6c 2e 6a 73 78 2d 32 37 35 34 34 35 33 33 32 36 20 2e 69 63 6f 6e 2e 6a 73 78 2d 32 37 35 34 34 35 33 33 32 36 7b 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 73 74 72 6f 6b 65 2d 77 69 64 74 68 3a 30 3b 73 74 72 6f 6b 65 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 66 69 6c 6c 3a 63 75 72 72 65 6e 74 43 6f 6c 6f 72 3b 2d 77 65 62 6b 69 74 2d 66 69 6c 74 65 72 3a 6e 6f 6e 65 3b 66 69 6c 74 65 72 3a 6e 6f 6e 65 3b 7d 2e 63 6f 75 6e 74 72 79 2d 66 69 65 6c 64 2e 6a 73 78 2d 32 37 35 34 34 35 33 33 32 36 20 6c 61 62 65 6c 2e 6a 73 78 2d 32 37 35 34 34 35 33 33 32 36 3e 2e 69 63 Data Ascii: r;align-items:center;}.country-field.jsx-2754453326 label.jsx-2754453326 .icon.jsx-2754453326{display:inline-block;stroke-width:0;stroke:currentColor;fill:currentColor;-webkit-filter:none;filter:none;}.country-field.jsx-2754453326 label.jsx-2754453326>.ic
2024-08-26 21:51:51 UTC	16384	IN	Data Raw: 66 6f 72 6d 2d 6f 72 69 67 69 6e 3a 62 6f 74 74 6f 6d 3b 2d 77 65 62 6b 69 74 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 28 35 30 25 2c 2d 31 30 30 25 29 20 72 6f 74 61 74 65 28 2d 39 30 64 65 67 29 3b 2d 6d 73 2d 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 28 35 30 25 2c 2d 31 30 30 25 29 20 72 6f 74 61 74 65 28 2d 39 30 64 65 67 29 3b 74 72 61 6e 73 66 6f 72 6d 3a 74 72 61 6e 73 6c 61 74 65 28 35 30 25 2c 2d 31 30 30 25 29 20 72 6f 74 61 74 65 28 2d 39 30 64 65 67 29 3b 72 69 67 68 74 3a 30 70 78 3b 62 6f 74 74 6f 6d 3a 34 38 70 78 3b 68 65 69 67 68 74 3a 34 30 70 78 3b 6c 69 6e 65 2d 68 65 69 67 68 74 3a 34 30 70 78 3b 7d 2e 66 65 65 64 62 61 63 6b 2d 77 2e 64 65 73 6b 74 6f 70 2e 6a 73 78 2d 33 38 39 38 34 38 33 31 37 35 Data Ascii: form-origin:bottom;-webkit-transform:translate(50%,-100%) rotate(-90deg);-ms-transform:translate(50%,-100%) rotate(-90deg);transform:translate(50%,-100%) rotate(-90deg);right:0px;bottom:48px;height:40px;line-height:40px;}.feedback-w.desktop.jsx-3898483175
2024-08-26 21:51:51 UTC	16384	IN	Data Raw: 69 76 3e 3c 2f 6c 69 3e 3c 6c 69 20 61 72 69 61 2d 6c 61 62 65 6c 3d 22 64 61 74 61 20 72 6f 77 20 69 74 65 6d 22 20 63 6c 61 73 73 3d 22 6a 73 78 2d 32 34 34 32 33 30 30 35 34 32 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 78 2d 32 34 34 32 33 30 30 35 34 32 20 73 70 61 63 65 2d 62 65 74 77 65 65 6e 20 66 6c 65 78 2d 72 6f 77 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6a 73 78 2d 32 34 34 32 33 30 30 35 34 32 20 6c 61 62 65 6c 20 6c 65 66 74 22 3e 3c 73 70 61 6e 20 63 6c 61 73 73 3d 22 6a 73 78 2d 32 34 34 32 33 30 30 35 34 32 20 62 6f 72 64 65 72 42 6f 74 74 6f 6d 22 3e 3c 73 70 61 6e 3e 49 6e 76 6f 69 63 65 20 61 6d 6f 75 6e 74 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 2f 73 70 61 6e 3e 3c 73 70 61 6e 20 64 61 74 61 2d 63 79 3d 22 64 61 74 61 Data Ascii: iv></li><li aria-label="data row item" class="jsx-2442300542"><div class="jsx-2442300542 space-between flex-row"><span class="jsx-2442300542 label left"><span class="jsx-2442300542 borderBottom"><span>Invoice amount</span></span></span><span data-cy="data
2024-08-26 21:51:51 UTC	16384	IN	Data Raw: 61 74 65 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 78 2d 31 34 39 38 33 30 38 30 37 38 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 78 2d 32 31 36 38 37 30 37 38 36 34 20 22 3e 3c 6c 61 62 65 6c 20 63 6c 61 73 73 3d 22 6a 73 78 2d 32 31 36 38 37 30 37 38 36 34 22 3e 3c 73 70 61 6e 3e 45 78 70 20 64 61 74 65 3c 2f 73 70 61 6e 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 78 2d 39 32 31 36 32 37 38 36 30 20 77 72 61 70 70 65 72 22 3e 3c 64 69 76 20 63 6c 61 73 73 3d 22 6a 73 78 2d 39 32 31 36 32 37 38 36 30 20 69 6e 70 75 74 2d 77 72 61 70 70 65 72 22 3e 3c 69 6e 70 75 74 20 76 61 6c 75 65 3d 22 22 20 6e 61 6d 65 3d 22 65 78 70 44 61 74 65 22 20 61 75 74 6f 43 6f 6d 70 6c 65 74 65 3d 22 63 63 2d 65 78 70 22 20 69 6e 70 75 74 4d 6f 64 65 3d 22 64 65 Data Ascii: ate"><div class="jsx-1498308078"><div class="jsx-2168707864 "><label class="jsx-2168707864"><span>Exp date</span><div class="jsx-921627860 wrapper"><div class="jsx-921627860 input-wrapper"><input value="" name="expDate" autoComplete="cc-exp" inputMode="de
2024-08-26 21:51:51 UTC	16384	IN	Data Raw: 3a 7b 22 62 72 6f 77 73 65 72 41 70 69 4b 65 79 22 3a 22 70 72 64 61 6b 79 72 65 73 55 34 33 57 76 55 56 59 77 4a 6c 4a 39 50 44 52 72 4c 61 57 66 41 50 64 79 6d 7a 7a 53 36 53 22 7d 2c 22 63 6c 69 65 6e 74 52 65 71 54 69 6d 65 6f 75 74 22 3a 33 32 30 30 30 2c 22 69 6e 76 6f 69 63 65 50 44 46 54 69 6d 65 6f 75 74 4d 53 22 3a 33 32 30 30 30 2c 22 73 65 67 6d 65 6e 74 54 6f 6b 65 6e 22 3a 22 78 43 46 4e 7a 58 66 65 67 6e 71 56 65 55 4a 7a 49 36 4b 6b 72 75 5a 4c 35 5a 7a 4c 37 69 58 79 22 2c 22 73 63 68 65 6d 61 22 3a 22 73 62 73 65 67 5f 63 70 5f 70 61 79 6d 65 6e 74 73 5f 70 72 6f 64 22 2c 22 6c 6f 67 4c 65 76 65 6c 22 3a 31 2c 22 6f 72 69 67 69 6e 61 74 69 6e 67 49 70 22 3a 22 38 2e 34 36 2e 31 32 33 2e 33 33 22 2c 22 6c 6f 63 61 6c 65 43 6f 6e 66 22 3a Data Ascii: :{"browserApiKey":"prdakyresU43WvUVYwJlJ9PDRrLaWfAPdymzzS6S"},"clientReqTimeout":32000,"invoicePDFTimeoutMS":32000,"segmentToken":"xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy","schema":"sbseg_cp_payments_prod","logLevel":1,"originatingIp":"8.46.123.33","localeConf":
2024-08-26 21:51:51 UTC	16384	IN	Data Raw: 6f 72 20 49 6e 74 75 69 74 20 49 6e 63 2e 20 74 6f 20 6f 62 74 61 69 6e 20 61 6e 64 20 70 65 72 69 6f 64 69 63 61 6c 6c 79 20 72 65 66 72 65 73 68 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 66 72 6f 6d 20 62 61 6e 6b 20 76 65 72 69 66 69 63 61 74 69 6f 6e 20 64 61 74 61 20 70 72 6f 76 69 64 65 72 73 20 74 6f 20 76 61 6c 69 64 61 74 65 20 79 6f 75 72 20 62 61 6e 6b 20 61 63 63 6f 75 6e 74 20 69 6e 66 6f 72 6d 61 74 69 6f 6e 20 61 6e 64 20 66 6f 72 20 6f 74 68 65 72 20 66 72 61 75 64 20 64 65 74 65 63 74 69 6f 6e 20 70 75 72 70 6f 73 65 73 2e 22 2c 22 50 41 59 46 4c 4f 57 5f 50 41 59 4d 45 4e 54 5f 4d 45 54 48 4f 44 5f 42 41 4e 4b 5f 44 49 53 43 4c 41 49 4d 45 52 5f 32 22 3a 22 50 61 79 6d 65 6e 74 73 20 61 72 65 20 70 72 6f 63 65 73 73 65 64 20 62 79 20 50 61 Data Ascii: or Intuit Inc. to obtain and periodically refresh information from bank verification data providers to validate your bank account information and for other fraud detection purposes.","PAYFLOW_PAYMENT_METHOD_BANK_DISCLAIMER_2":"Payments are processed by Pa

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:50 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-08-26 21:51:51 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF17) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=150516 Date: Mon, 26 Aug 2024 21:51:50 GMT Connection: close X-CID: 2

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:51 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-08-26 21:51:52 UTC	515	IN	HTTP/1.1 200 OK ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF06) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=154428 Date: Mon, 26 Aug 2024 21:51:52 GMT Content-Length: 55 Connection: close X-CID: 2
2024-08-26 21:51:52 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:52 UTC	656	OUT	GET /flags/us.svg HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:53 UTC	576	IN	HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 4424 Connection: close Date: Mon, 26 Aug 2024 21:51:54 GMT x-amz-replication-status: COMPLETED Last-Modified: Tue, 06 Dec 2022 09:36:13 GMT ETag: "bfaaeb1ca82bf9541f20aa098f3e7cf2" x-amz-version-id: 3J9QqnT3nEyHG1ivjeSeboZhefqbdr_a Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Miss from cloudfront Via: 1.1 06d36e78e8dfd9468327f09115761a9e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: Cxhq30bjdZQPPlOjGShi2A55eS4lSgDTqstoLUmR8gpq4-72Bav7nw== Vary: Origin
2024-08-26 21:51:53 UTC	4424	IN	Data Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 69 64 3d 22 66 6c 61 67 2d 69 63 6f 6e 73 2d 75 73 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 36 34 30 20 34 38 30 22 3e 0a 20 20 3c 67 20 66 69 6c 6c 2d 72 75 6c 65 3d 22 65 76 65 6e 6f 64 64 22 3e 0a 20 20 20 20 3c 67 20 73 74 72 6f 6b 65 2d 77 69 64 74 68 3d 22 31 70 74 22 3e 0a 20 20 20 20 20 20 3c 70 61 74 68 20 66 69 6c 6c 3d 22 23 62 64 33 64 34 34 22 20 64 3d 22 4d 30 20 30 68 39 31 32 76 33 37 48 30 7a 6d 30 20 37 33 2e 39 68 39 31 32 76 33 37 48 30 7a 6d 30 20 37 33 2e 38 68 39 31 32 76 33 37 48 30 7a 6d 30 20 37 33 2e 38 68 39 31 32 76 33 37 48 30 7a 6d 30 20 37 34 68 39 31 32 76 33 36 2e 38 48 30 7a 6d 30 20 37 33 2e 37 68 Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" id="flag-icons-us" viewBox="0 0 640 480"> <g fill-rule="evenodd"> <g stroke-width="1pt"> <path fill="#bd3d44" d="M0 0h912v37H0zm0 73.9h912v37H0zm0 73.8h912v37H0zm0 73.8h912v37H0zm0 74h912v36.8H0zm0 73.7h

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:53 UTC	662	OUT	GET /mastercard.bug.svg HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:53 UTC	587	IN	HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 1975 Connection: close Date: Mon, 26 Aug 2024 13:26:24 GMT x-amz-replication-status: COMPLETED Last-Modified: Thu, 29 Jul 2021 14:30:53 GMT ETag: "c398ba7b3f1d301e06c7b3b32c2826d1" x-amz-version-id: wuzPI2NSZ7bMYiAyvKuLEta9wNaOXBMS Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 91ba7c34719cd9c69e0357c149b94b90.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: xtPyy2rIewU4kwq5736mvOg2wHaMyQxn4pdLaSMFkxseOi9Qu_h98A== Age: 30330 Vary: Origin
2024-08-26 21:51:53 UTC	1975	IN	Data Raw: 3c 73 76 67 20 77 69 64 74 68 3d 22 33 34 22 20 68 65 69 67 68 74 3d 22 32 32 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 33 34 20 32 32 22 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 3e 0a 3c 70 61 74 68 20 64 3d 22 4d 33 31 2e 37 35 33 32 20 32 31 2e 32 31 39 37 43 33 32 2e 35 33 32 36 20 32 31 2e 32 31 39 37 20 33 33 2e 31 36 20 32 30 2e 35 39 38 39 20 33 33 2e 31 36 20 31 39 2e 38 32 31 32 56 32 2e 31 38 32 30 33 43 33 33 2e 31 36 20 31 2e 34 30 34 33 32 20 33 32 2e 35 33 32 36 20 30 2e 37 38 33 34 35 33 20 33 31 2e 37 35 33 32 20 30 2e 37 38 33 34 35 33 48 32 2e 32 30 36 39 43 31 2e 34 32 37 34 39 20 30 2e 37 38 33 34 35 33 20 30 2e 38 30 30 30 35 35 20 Data Ascii: <svg width="34" height="22" viewBox="0 0 34 22" fill="none" xmlns="http://www.w3.org/2000/svg"><path d="M31.7532 21.2197C32.5326 21.2197 33.16 20.5989 33.16 19.8212V2.18203C33.16 1.40432 32.5326 0.783453 31.7532 0.783453H2.2069C1.42749 0.783453 0.800055

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:53 UTC	668	OUT	GET /american-express.bug.svg HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:53 UTC	587	IN	HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 1419 Connection: close x-amz-replication-status: COMPLETED Last-Modified: Thu, 29 Jul 2021 14:30:57 GMT x-amz-version-id: xcFhAGD5oE.fyqQe9Zqwl2O6vQfinJ4h Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 26 Aug 2024 01:28:36 GMT ETag: "52a550dea46151d5aa39f51a5fd5e456" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 6fa33d47af6f4da7007689083cfe9b9c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: h75iBz0J8WKg5B-D8ZdgTCZXtPB8yY85v4yXb2Hd2PAgoQRRm9B_-g== Age: 73398 Vary: Origin
2024-08-26 21:51:53 UTC	1419	IN	Data Raw: 3c 73 76 67 20 77 69 64 74 68 3d 22 33 34 22 20 68 65 69 67 68 74 3d 22 32 32 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 33 34 20 32 32 22 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 3e 0a 3c 70 61 74 68 20 64 3d 22 4d 33 31 2e 37 39 33 20 32 31 2e 32 31 36 36 43 33 32 2e 35 37 32 34 20 32 31 2e 32 31 36 36 20 33 33 2e 31 39 39 38 20 32 30 2e 35 39 35 37 20 33 33 2e 31 39 39 38 20 31 39 2e 38 31 38 56 32 2e 31 37 38 38 36 43 33 33 2e 31 39 39 38 20 31 2e 34 30 31 31 34 20 33 32 2e 35 37 32 34 20 30 2e 37 38 30 32 37 39 20 33 31 2e 37 39 33 20 30 2e 37 38 30 32 37 39 48 32 2e 32 34 36 37 43 31 2e 34 36 37 32 38 20 30 2e 37 38 30 32 37 39 20 30 2e 38 33 39 38 Data Ascii: <svg width="34" height="22" viewBox="0 0 34 22" fill="none" xmlns="http://www.w3.org/2000/svg"><path d="M31.793 21.2166C32.5724 21.2166 33.1998 20.5957 33.1998 19.818V2.17886C33.1998 1.40114 32.5724 0.780279 31.793 0.780279H2.2467C1.46728 0.780279 0.8398

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:53 UTC	660	OUT	GET /discover.bug.svg HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:53 UTC	589	IN	HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 112893 Connection: close Date: Mon, 26 Aug 2024 01:28:30 GMT x-amz-replication-status: COMPLETED Last-Modified: Thu, 29 Jul 2021 14:30:56 GMT ETag: "5a77cf71535a1fea1d094ea4f090e641" x-amz-version-id: s1brD8GvEjp8mKlUYeFYSyDUP_P7J_6B Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 d6b9c7bad28b271f1e800a50d49ab8a4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: 0WNhvDcoxELExtXoChdGwtqDK_26XtGJoA9IJV87JBMuuNkKknCXmw== Age: 73404 Vary: Origin
2024-08-26 21:51:53 UTC	16384	IN	Data Raw: 3c 73 76 67 20 77 69 64 74 68 3d 22 33 34 22 20 68 65 69 67 68 74 3d 22 32 32 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 33 34 20 32 32 22 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 3e 0a 3c 70 61 74 68 20 64 3d 22 4d 33 31 2e 37 36 37 33 20 32 31 2e 32 31 35 38 43 33 32 2e 35 34 36 35 20 32 31 2e 32 31 35 38 20 33 33 2e 31 37 33 38 20 32 30 2e 35 39 35 31 20 33 33 2e 31 37 33 38 20 31 39 2e 38 31 37 35 56 32 2e 31 38 31 38 43 33 33 2e 31 37 33 38 20 31 2e 34 30 34 32 34 20 33 32 2e 35 34 36 35 20 30 2e 37 38 33 34 39 36 20 33 31 2e 37 36 37 33 20 30 2e 37 38 33 34 39 36 48 32 2e 32 32 36 36 39 43 31 2e 34 34 37 34 33 20 30 2e 37 38 33 34 39 36 20 30 2e 38 Data Ascii: <svg width="34" height="22" viewBox="0 0 34 22" fill="none" xmlns="http://www.w3.org/2000/svg"><path d="M31.7673 21.2158C32.5465 21.2158 33.1738 20.5951 33.1738 19.8175V2.1818C33.1738 1.40424 32.5465 0.783496 31.7673 0.783496H2.22669C1.44743 0.783496 0.8
2024-08-26 21:51:53 UTC	16384	IN	Data Raw: 36 20 31 31 2e 34 34 30 37 20 31 39 2e 35 36 39 36 20 31 32 2e 34 39 39 33 20 31 38 2e 32 35 35 34 20 31 32 2e 34 39 39 33 43 31 36 2e 39 34 31 32 20 31 32 2e 34 39 39 33 20 31 35 2e 38 37 35 32 20 31 31 2e 34 34 30 37 20 31 35 2e 38 37 35 32 20 31 30 2e 31 33 35 37 43 31 35 2e 38 37 35 32 20 38 2e 38 33 30 36 35 20 31 36 2e 39 34 31 32 20 37 2e 37 37 32 30 39 20 31 38 2e 32 35 35 34 20 37 2e 37 37 32 30 39 5a 22 20 66 69 6c 6c 3d 22 23 35 34 35 35 35 37 22 2f 3e 0a 3c 70 61 74 68 20 6f 70 61 63 69 74 79 3d 22 30 2e 35 22 20 64 3d 22 4d 31 38 2e 32 35 37 31 20 37 2e 37 37 33 36 38 43 31 39 2e 35 37 31 33 20 37 2e 37 37 33 36 38 20 32 30 2e 36 33 37 33 20 38 2e 38 33 32 32 33 20 32 30 2e 36 33 37 33 20 31 30 2e 31 33 37 33 43 32 30 2e 36 33 37 33 20 31 31 Data Ascii: 6 11.4407 19.5696 12.4993 18.2554 12.4993C16.9412 12.4993 15.8752 11.4407 15.8752 10.1357C15.8752 8.83065 16.9412 7.77209 18.2554 7.77209Z" fill="#545557"/><path opacity="0.5" d="M18.2571 7.77368C19.5713 7.77368 20.6373 8.83223 20.6373 10.1373C20.6373 11
2024-08-26 21:51:53 UTC	16384	IN	Data Raw: 61 74 68 20 6f 70 61 63 69 74 79 3d 22 30 2e 35 22 20 64 3d 22 4d 31 38 2e 33 34 20 37 2e 38 38 31 34 37 43 31 39 2e 36 34 35 37 20 37 2e 38 37 39 37 38 20 32 30 2e 37 30 33 32 20 38 2e 39 32 39 38 39 20 32 30 2e 37 30 34 39 20 31 30 2e 32 32 36 35 43 32 30 2e 37 30 36 36 20 31 31 2e 35 32 33 31 20 31 39 2e 36 34 39 31 20 31 32 2e 35 37 33 32 20 31 38 2e 33 34 33 34 20 31 32 2e 35 37 34 39 43 31 37 2e 30 33 37 37 20 31 32 2e 35 37 36 36 20 31 35 2e 39 38 30 32 20 31 31 2e 35 32 36 35 20 31 35 2e 39 37 38 35 20 31 30 2e 32 32 39 39 56 31 30 2e 32 32 38 32 43 31 35 2e 39 37 36 38 20 38 2e 39 33 33 32 37 20 31 37 2e 30 33 34 33 20 37 2e 38 38 33 31 36 20 31 38 2e 33 33 38 33 20 37 2e 38 38 31 34 37 48 31 38 2e 33 34 5a 22 20 66 69 6c 6c 3d 22 23 38 34 38 36 Data Ascii: ath opacity="0.5" d="M18.34 7.88147C19.6457 7.87978 20.7032 8.92989 20.7049 10.2265C20.7066 11.5231 19.6491 12.5732 18.3434 12.5749C17.0377 12.5766 15.9802 11.5265 15.9785 10.2299V10.2282C15.9768 8.93327 17.0343 7.88316 18.3383 7.88147H18.34Z" fill="#8486
2024-08-26 21:51:53 UTC	15247	IN	Data Raw: 37 2e 39 38 36 39 34 48 31 38 2e 34 32 30 36 5a 22 20 66 69 6c 6c 3d 22 23 42 30 42 32 42 35 22 2f 3e 0a 3c 70 61 74 68 20 6f 70 61 63 69 74 79 3d 22 30 2e 35 22 20 64 3d 22 4d 31 38 2e 34 32 32 33 20 37 2e 39 38 38 32 38 43 31 39 2e 37 31 39 35 20 37 2e 39 38 38 32 38 20 32 30 2e 37 37 30 32 20 39 2e 30 33 31 36 34 20 32 30 2e 37 37 30 32 20 31 30 2e 33 31 39 38 43 32 30 2e 37 37 30 32 20 31 31 2e 36 30 38 20 31 39 2e 37 31 39 35 20 31 32 2e 36 35 31 33 20 31 38 2e 34 32 32 33 20 31 32 2e 36 35 31 33 43 31 37 2e 31 32 36 38 20 31 32 2e 36 35 31 33 20 31 36 2e 30 37 36 32 20 31 31 2e 36 30 39 36 20 31 36 2e 30 37 34 35 20 31 30 2e 33 32 33 32 43 31 36 2e 30 37 32 38 20 39 2e 30 33 35 30 31 20 31 37 2e 31 32 31 37 20 37 2e 39 38 39 39 37 20 31 38 2e 34 31 Data Ascii: 7.98694H18.4206Z" fill="#B0B2B5"/><path opacity="0.5" d="M18.4223 7.98828C19.7195 7.98828 20.7702 9.03164 20.7702 10.3198C20.7702 11.608 19.7195 12.6513 18.4223 12.6513C17.1268 12.6513 16.0762 11.6096 16.0745 10.3232C16.0728 9.03501 17.1217 7.98997 18.41
2024-08-26 21:51:53 UTC	16384	IN	Data Raw: 36 2e 31 34 35 20 31 31 2e 36 38 30 31 20 31 36 2e 31 34 35 20 31 30 2e 33 39 37 43 31 36 2e 31 34 35 20 39 2e 31 31 33 39 33 20 31 37 2e 31 39 34 20 38 2e 30 37 32 32 37 20 31 38 2e 34 38 36 31 20 38 2e 30 37 32 32 37 5a 22 20 66 69 6c 6c 3d 22 23 43 45 44 30 44 31 22 2f 3e 0a 3c 70 61 74 68 20 6f 70 61 63 69 74 79 3d 22 30 2e 38 36 22 20 64 3d 22 4d 31 38 2e 34 38 37 38 20 38 2e 30 37 34 31 43 31 39 2e 37 37 39 39 20 38 2e 30 37 34 31 20 32 30 2e 38 32 38 39 20 39 2e 31 31 35 37 37 20 32 30 2e 38 32 38 39 20 31 30 2e 33 39 38 39 43 32 30 2e 38 32 38 39 20 31 31 2e 36 38 31 39 20 31 39 2e 37 37 39 39 20 31 32 2e 37 32 33 36 20 31 38 2e 34 38 37 38 20 31 32 2e 37 32 33 36 43 31 37 2e 31 39 35 37 20 31 32 2e 37 32 33 36 20 31 36 2e 31 34 36 37 20 31 31 2e Data Ascii: 6.145 11.6801 16.145 10.397C16.145 9.11393 17.194 8.07227 18.4861 8.07227Z" fill="#CED0D1"/><path opacity="0.86" d="M18.4878 8.0741C19.7799 8.0741 20.8289 9.11577 20.8289 10.3989C20.8289 11.6819 19.7799 12.7236 18.4878 12.7236C17.1957 12.7236 16.1467 11.
2024-08-26 21:51:53 UTC	16384	IN	Data Raw: 31 31 2e 37 36 31 32 20 31 39 2e 38 34 38 33 20 31 32 2e 38 30 32 38 20 31 38 2e 35 35 36 32 20 31 32 2e 38 30 32 38 43 31 37 2e 32 36 34 31 20 31 32 2e 38 30 32 38 20 31 36 2e 32 31 35 31 20 31 31 2e 37 36 31 32 20 31 36 2e 32 31 35 31 20 31 30 2e 34 37 38 31 43 31 36 2e 32 31 33 34 20 39 2e 31 39 34 39 39 20 31 37 2e 32 36 30 37 20 38 2e 31 35 35 30 31 20 31 38 2e 35 35 32 38 20 38 2e 31 35 33 33 32 43 31 38 2e 35 35 34 35 20 38 2e 31 35 33 33 32 20 31 38 2e 35 35 34 35 20 38 2e 31 35 33 33 32 20 31 38 2e 35 35 36 32 20 38 2e 31 35 33 33 32 5a 22 20 66 69 6c 6c 3d 22 23 44 45 44 46 45 30 22 2f 3e 0a 3c 70 61 74 68 20 6f 70 61 63 69 74 79 3d 22 30 2e 35 36 22 20 64 3d 22 4d 31 38 2e 35 35 35 37 20 38 2e 31 35 33 33 32 43 31 39 2e 38 34 39 35 20 38 2e 31 Data Ascii: 11.7612 19.8483 12.8028 18.5562 12.8028C17.2641 12.8028 16.2151 11.7612 16.2151 10.4781C16.2134 9.19499 17.2607 8.15501 18.5528 8.15332C18.5545 8.15332 18.5545 8.15332 18.5562 8.15332Z" fill="#DEDFE0"/><path opacity="0.56" d="M18.5557 8.15332C19.8495 8.1
2024-08-26 21:51:53 UTC	15726	IN	Data Raw: 32 32 20 31 36 2e 32 37 39 33 20 31 31 2e 38 34 30 35 20 31 36 2e 32 37 39 33 20 31 30 2e 35 35 37 34 43 31 36 2e 32 37 39 33 20 39 2e 32 37 34 33 33 20 31 37 2e 33 32 38 33 20 38 2e 32 33 32 36 37 20 31 38 2e 36 32 30 34 20 38 2e 32 33 32 36 37 5a 22 20 66 69 6c 6c 3d 22 23 45 45 45 45 45 46 22 2f 3e 0a 3c 70 61 74 68 20 6f 70 61 63 69 74 79 3d 22 30 2e 32 36 22 20 64 3d 22 4d 31 38 2e 36 32 31 38 20 38 2e 32 33 34 32 35 43 31 39 2e 39 31 33 39 20 38 2e 32 33 34 32 35 20 32 30 2e 39 36 32 39 20 39 2e 32 37 35 39 32 20 32 30 2e 39 36 32 39 20 31 30 2e 35 35 39 43 32 30 2e 39 36 32 39 20 31 31 2e 38 34 32 31 20 31 39 2e 39 31 35 36 20 31 32 2e 38 38 33 38 20 31 38 2e 36 32 31 38 20 31 32 2e 38 38 33 38 43 31 37 2e 33 32 39 37 20 31 32 2e 38 38 33 38 20 31 Data Ascii: 22 16.2793 11.8405 16.2793 10.5574C16.2793 9.27433 17.3283 8.23267 18.6204 8.23267Z" fill="#EEEEEF"/><path opacity="0.26" d="M18.6218 8.23425C19.9139 8.23425 20.9629 9.27592 20.9629 10.559C20.9629 11.8421 19.9156 12.8838 18.6218 12.8838C17.3297 12.8838 1

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:53 UTC	656	OUT	GET /visa.bug.svg HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:54 UTC	576	IN	HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 1561 Connection: close Date: Mon, 26 Aug 2024 21:51:55 GMT x-amz-replication-status: COMPLETED Last-Modified: Thu, 29 Jul 2021 14:30:52 GMT ETag: "7351accf267df64da10b802e00a8467e" x-amz-version-id: GIBp9xwE0boAlHPcZDGBdyrhsCdIZxQW Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Miss from cloudfront Via: 1.1 2fcedcc055e24d7ac99fbc19ed8fc8ec.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: je2uAEqpHRfeNABDKKsB4BmlBMuZ9nirfs2uH_7oxtSkzHn8E6ngig== Vary: Origin
2024-08-26 21:51:54 UTC	1561	IN	Data Raw: 3c 73 76 67 20 77 69 64 74 68 3d 22 33 34 22 20 68 65 69 67 68 74 3d 22 32 32 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 33 34 20 32 32 22 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 3e 0a 3c 70 61 74 68 20 64 3d 22 4d 33 31 2e 37 32 37 35 20 32 31 2e 32 31 35 38 43 33 32 2e 35 30 36 37 20 32 31 2e 32 31 35 38 20 33 33 2e 31 33 34 20 32 30 2e 35 39 35 31 20 33 33 2e 31 33 34 20 31 39 2e 38 31 37 35 56 32 2e 31 38 31 38 43 33 33 2e 31 33 34 20 31 2e 34 30 34 32 34 20 33 32 2e 35 30 36 37 20 30 2e 37 38 33 34 39 36 20 33 31 2e 37 32 37 35 20 30 2e 37 38 33 34 39 36 48 32 2e 31 38 36 39 43 31 2e 34 30 37 36 33 20 30 2e 37 38 33 34 39 36 20 30 2e 37 38 30 33 32 Data Ascii: <svg width="34" height="22" viewBox="0 0 34 22" fill="none" xmlns="http://www.w3.org/2000/svg"><path d="M31.7275 21.2158C32.5067 21.2158 33.134 20.5951 33.134 19.8175V2.1818C33.134 1.40424 32.5067 0.783496 31.7275 0.783496H2.1869C1.40763 0.783496 0.78032

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:53 UTC	654	OUT	GET /truste.svg HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:53 UTC	566	IN	HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 20028 Connection: close Date: Mon, 12 Aug 2024 17:08:17 GMT Last-Modified: Mon, 13 May 2019 07:16:15 GMT ETag: "6dcc0db5446ac677d011c9e531400a08" Cache-Control: public, max-age=31536000 x-amz-version-id: null Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 2fcedcc055e24d7ac99fbc19ed8fc8ec.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: 0ZnwuyV4LaZooYk1qwecCsIxqfublBJ-7WIVDedQbS363XLxFNwR0g== Age: 1226617 Vary: Origin
2024-08-26 21:51:53 UTC	16384	IN	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 0a 3c 73 76 67 20 77 69 64 74 68 3d 22 38 38 70 78 22 20 68 65 69 67 68 74 3d 22 32 38 70 78 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 38 38 20 32 38 22 20 76 65 72 73 69 6f 6e 3d 22 31 2e 31 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 78 6d 6c 6e 73 3a 78 6c 69 6e 6b 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 31 39 39 39 2f 78 6c 69 6e 6b 22 3e 0a 20 20 20 20 3c 21 2d 2d 20 47 65 6e 65 72 61 74 6f 72 3a 20 53 6b 65 74 63 68 20 35 33 2e 32 20 28 37 32 36 34 33 29 20 2d 20 68 74 74 70 73 3a 2f 2f 73 6b 65 74 63 68 61 70 70 2e 63 6f 6d 20 2d 2d 3e 0a 20 20 20 Data Ascii: <?xml version="1.0" encoding="UTF-8"?><svg width="88px" height="28px" viewBox="0 0 88 28" version="1.1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"> ... Generator: Sketch 53.2 (72643) - https://sketchapp.com -->
2024-08-26 21:51:53 UTC	3644	IN	Data Raw: 34 38 2c 31 39 2e 34 34 34 34 20 37 34 2e 30 37 36 38 2c 31 39 2e 35 36 34 34 20 37 34 2e 30 37 36 38 2c 31 39 2e 37 31 33 34 20 4c 37 34 2e 30 37 36 38 2c 31 39 2e 37 32 36 34 20 43 37 34 2e 30 37 36 38 2c 31 39 2e 38 37 35 34 20 37 34 2e 31 33 37 38 2c 31 39 2e 39 39 35 34 20 37 34 2e 32 35 36 38 2c 32 30 2e 30 37 34 34 20 43 37 34 2e 33 37 33 38 2c 32 30 2e 31 35 32 34 20 37 34 2e 35 32 38 38 2c 32 30 2e 31 39 34 34 20 37 34 2e 37 30 37 38 2c 32 30 2e 31 39 34 34 20 43 37 34 2e 38 33 31 38 2c 32 30 2e 31 39 34 34 20 37 34 2e 39 34 32 38 2c 32 30 2e 31 37 36 34 20 37 35 2e 30 34 38 38 2c 32 30 2e 31 34 36 34 20 43 37 35 2e 31 35 33 38 2c 32 30 2e 31 31 36 34 20 37 35 2e 32 34 36 38 2c 32 30 2e 30 36 38 34 20 37 35 2e 33 32 36 38 2c 32 30 2e 30 30 37 34 Data Ascii: 48,19.4444 74.0768,19.5644 74.0768,19.7134 L74.0768,19.7264 C74.0768,19.8754 74.1378,19.9954 74.2568,20.0744 C74.3738,20.1524 74.5288,20.1944 74.7078,20.1944 C74.8318,20.1944 74.9428,20.1764 75.0488,20.1464 C75.1538,20.1164 75.2468,20.0684 75.3268,20.0074

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:53 UTC	695	OUT	GET /7463a610-f637-46e4-b099-b237efa0358e_template.png HTTP/1.1 Host: ips-logos-cdn.ips.sbg.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:54 UTC	448	IN	HTTP/1.1 200 OK Content-Type: image/png Content-Length: 10963 Connection: close Date: Mon, 26 Aug 2024 21:51:55 GMT Last-Modified: Mon, 22 Feb 2021 23:10:40 GMT ETag: "8a9c55ae27ba303b16c5433eaa403a1b" Accept-Ranges: bytes Server: AmazonS3 X-Cache: Miss from cloudfront Via: 1.1 3f52d342c56014599dee37446f6c9f2e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA56-P2 X-Amz-Cf-Id: YG3OWXyK5qnFhxeDg2Gt56rfeo-crV6hAGrIUycNSlJv0lS7Nsimlg==
2024-08-26 21:51:54 UTC	10963	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 ef 00 00 00 c8 08 04 00 00 00 aa d0 7e bc 00 00 00 04 67 41 4d 41 00 00 b1 8f 0b fc 61 05 00 00 00 20 63 48 52 4d 00 00 7a 26 00 00 80 84 00 00 fa 00 00 00 80 e8 00 00 75 30 00 00 ea 60 00 00 3a 98 00 00 17 70 9c ba 51 3c 00 00 00 02 62 4b 47 44 00 ff 87 8f cc bf 00 00 00 09 70 48 59 73 00 00 0b 13 00 00 0b 13 01 00 9a 9c 18 00 00 00 07 74 49 4d 45 07 e5 02 16 17 0a 27 c3 63 93 a6 00 00 29 c6 49 44 41 54 78 da ed 9d 67 60 54 c5 da c7 7f d9 54 92 18 52 08 41 8a a0 54 29 56 04 a5 8b a0 02 2a 16 14 0b 0a 76 bc d8 cb eb 45 45 b1 2b b6 ab 57 45 f4 62 45 10 44 b1 20 02 02 16 50 8a 74 15 42 0d bd 87 00 49 48 cf 79 3f e4 ec ec cc 39 67 77 cf 6e b6 05 f2 9f 2f 67 4f 99 9d 3e cf 3c 35 8a ea a3 2e cd 69 41 63 Data Ascii: PNGIHDR~gAMAa cHRMz&u0`:pQ<bKGDpHYstIME'c)IDATxg`TTRAT)V*vEE+WEbED PtBIHy?9gwn/gO><5.iAc

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:53 UTC	582	OUT	GET /analytics.js/v1/xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy/analytics.min.js HTTP/1.1 Host: cdn.segment.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-08-26 21:51:54 UTC	765	IN	HTTP/1.1 200 OK Content-Type: text/javascript; charset=utf-8 Content-Length: 105589 Connection: close Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 x-amz-replication-status: COMPLETED Last-Modified: Tue, 30 Jul 2024 21:28:33 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: 4mvb9o8UUXh8TqnRkosr5wilSZwqCqiv Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 26 Aug 2024 21:51:55 GMT Cache-Control: public, max-age=120 ETag: "8f973ac4bdf60f81fbdae9b37e78047b" Vary: Accept-Encoding X-Cache: RefreshHit from cloudfront Via: 1.1 26cdacf328fe4eb4e28173938ab3e92c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: AMS54-C1 X-Amz-Cf-Id: O-HvjQIVJms_q3WLdoTEdhymiZnOBvWAyVWOR2gNv-3jWCq_aao_ow==
2024-08-26 21:51:54 UTC	16384	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 2c 65 2c 6e 2c 72 2c 69 3d 7b 38 38 37 38 3a 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 72 3d 74 68 69 73 26 26 74 68 69 73 2e 5f 5f 69 6d 70 6f 72 74 44 65 66 61 75 6c 74 7c 7c 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 74 26 26 74 2e 5f 5f 65 73 4d 6f 64 75 6c 65 3f 74 3a 7b 64 65 66 61 75 6c 74 3a 74 7d 7d 3b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 65 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 3b 76 61 72 20 69 3d 72 28 6e 28 33 32 35 29 29 3b 66 75 6e 63 74 69 6f 6e 20 6f 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 6e 3d 74 68 69 73 2e Data Ascii: !function(){var t,e,n,r,i={8878:function(t,e,n){"use strict";var r=this&&this.__importDefault\|\|function(t){return t&&t.__esModule?t:{default:t}};Object.defineProperty(e,"__esModule",{value:!0});var i=r(n(325));function o(t,e){return function(){var n=this.
2024-08-26 21:51:54 UTC	10463	IN	Data Raw: 2e 69 73 41 72 72 61 79 28 74 29 3f 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 72 65 74 75 72 6e 20 74 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 6e 2c 72 29 7b 74 5b 72 5d 3d 69 28 6e 2c 65 29 7d 29 29 2c 74 7d 28 74 2c 65 29 3a 72 2e 69 73 28 74 2c 65 29 3f 72 2e 70 61 72 73 65 28 74 29 3a 74 7d 74 2e 65 78 70 6f 72 74 73 3d 69 7d 2c 38 32 36 34 3a 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 6e 3d 2f 5e 28 5c 64 7b 34 7d 29 28 3f 3a 2d 3f 28 5c 64 7b 32 7d 29 28 3f 3a 2d 3f 28 5c 64 7b 32 7d 29 29 3f 29 3f 28 3f 3a 28 5b 20 54 5d 29 28 5c 64 7b 32 7d 29 3a 3f 28 5c 64 7b 32 7d 29 28 3f 3a 3a 3f 28 5c 64 7b 32 7d 29 28 3f 3a 5b 2c 5c 2e 5d 28 5c 64 7b 31 2c 7d 29 29 3f 29 3f 28 3f 3a 28 5a 29 Data Ascii: .isArray(t)?function(t,e){return t.forEach((function(n,r){t[r]=i(n,e)})),t}(t,e):r.is(t,e)?r.parse(t):t}t.exports=i},8264:function(t,e){"use strict";var n=/^(\d{4})(?:-?(\d{2})(?:-?(\d{2}))?)?(?:([ T])(\d{2}):?(\d{2})(?::?(\d{2})(?:[,\.](\d{1,}))?)?(?:(Z)
2024-08-26 21:51:54 UTC	16384	IN	Data Raw: 2e 65 78 65 63 28 72 29 3b 69 26 26 69 5b 31 5d 26 26 28 6e 3d 69 5b 31 5d 29 7d 29 29 2c 6e 29 3b 72 65 74 75 72 6e 20 6f 7c 7c 22 68 74 74 70 73 3a 2f 2f 63 64 6e 2e 73 65 67 6d 65 6e 74 2e 63 6f 6d 22 7d 2c 63 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 74 3d 61 28 29 3b 72 65 74 75 72 6e 22 22 2e 63 6f 6e 63 61 74 28 74 2c 22 2f 6e 65 78 74 2d 69 6e 74 65 67 72 61 74 69 6f 6e 73 22 29 7d 3b 66 75 6e 63 74 69 6f 6e 20 6c 28 29 7b 66 6f 72 28 76 61 72 20 74 2c 65 2c 6e 2c 72 3d 6e 75 6c 6c 21 3d 3d 28 74 3d 28 30 2c 6f 2e 4d 29 28 29 29 26 26 76 6f 69 64 20 30 21 3d 3d 74 3f 74 3a 6e 75 6c 6c 3d 3d 3d 28 65 3d 28 30 2c 69 2e 77 49 29 28 29 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 65 3f 76 6f 69 64 20 30 3a 65 2e 5f 77 72 69 74 65 4b 65 79 2c 75 3d 76 6f Data Ascii: .exec(r);i&&i[1]&&(n=i[1])})),n);return o\|\|"https://cdn.segment.com"},c=function(){var t=a();return"".concat(t,"/next-integrations")};function l(){for(var t,e,n,r=null!==(t=(0,o.M)())&&void 0!==t?t:null===(e=(0,i.wI)())\|\|void 0===e?void 0:e._writeKey,u=vo
2024-08-26 21:51:54 UTC	16384	IN	Data Raw: 72 5b 65 5d 3d 32 35 36 2a 4d 61 74 68 2e 72 61 6e 64 6f 6d 28 29 7c 30 3b 65 3d 69 3d 30 7d 66 6f 72 28 3b 65 3c 31 36 3b 65 2b 2b 29 74 3d 72 5b 69 2b 65 5d 2c 6e 2b 3d 36 3d 3d 65 3f 6f 5b 31 35 26 74 7c 36 34 5d 3a 38 3d 3d 65 3f 6f 5b 36 33 26 74 7c 31 32 38 5d 3a 6f 5b 74 5d 2c 31 26 65 26 26 65 3e 31 26 26 65 3c 31 31 26 26 28 6e 2b 3d 22 2d 22 29 3b 72 65 74 75 72 6e 20 69 2b 2b 2c 6e 7d 7d 2c 33 38 30 3a 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 72 28 74 2c 65 2c 6e 29 7b 65 2e 73 70 6c 69 74 26 26 28 65 3d 65 2e 73 70 6c 69 74 28 22 2e 22 29 29 3b 66 6f 72 28 76 61 72 20 72 2c 69 2c 6f 3d 30 2c 73 3d 65 2e 6c 65 6e 67 74 68 2c 75 3d 74 3b 6f 3c 73 26 26 22 5f 5f 70 72 6f 74 Data Ascii: r[e]=256*Math.random()\|0;e=i=0}for(;e<16;e++)t=r[i+e],n+=6==e?o[15&t\|64]:8==e?o[63&t\|128]:o[t],1&e&&e>1&&e<11&&(n+="-");return i++,n}},380:function(t,e,n){"use strict";function r(t,e,n){e.split&&(e=e.split("."));for(var r,i,o=0,s=e.length,u=t;o<s&&"__prot
2024-08-26 21:51:54 UTC	16384	IN	Data Raw: 20 30 21 3d 3d 69 3f 69 3a 21 31 21 3d 3d 28 22 53 65 67 6d 65 6e 74 2e 69 6f 22 3d 3d 3d 74 2e 6e 61 6d 65 7c 7c 65 2e 41 6c 6c 29 7d 29 29 2c 6f 3d 28 6e 3d 22 74 79 70 65 22 2c 72 3d 7b 7d 2c 69 2e 66 6f 72 45 61 63 68 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 69 2c 6f 3d 76 6f 69 64 20 30 3b 69 66 28 22 73 74 72 69 6e 67 22 3d 3d 74 79 70 65 6f 66 20 6e 29 7b 76 61 72 20 73 3d 65 5b 6e 5d 3b 6f 3d 22 73 74 72 69 6e 67 22 21 3d 74 79 70 65 6f 66 20 73 3f 4a 53 4f 4e 2e 73 74 72 69 6e 67 69 66 79 28 73 29 3a 73 7d 65 6c 73 65 20 6e 20 69 6e 73 74 61 6e 63 65 6f 66 20 46 75 6e 63 74 69 6f 6e 26 26 28 6f 3d 6e 28 65 29 29 3b 76 6f 69 64 20 30 21 3d 3d 6f 26 26 28 72 5b 6f 5d 3d 28 30 2c 74 2e 65 76 29 28 28 30 2c 74 2e 65 76 29 28 5b 5d 2c 6e Data Ascii: 0!==i?i:!1!==("Segment.io"===t.name\|\|e.All)})),o=(n="type",r={},i.forEach((function(e){var i,o=void 0;if("string"==typeof n){var s=e[n];o="string"!=typeof s?JSON.stringify(s):s}else n instanceof Function&&(o=n(e));void 0!==o&&(r[o]=(0,t.ev)((0,t.ev)([],n
2024-08-26 21:51:54 UTC	16384	IN	Data Raw: 7d 29 2c 6e 2e 70 72 6f 74 6f 74 79 70 65 2e 74 72 61 63 6b 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 6f 72 28 76 61 72 20 65 3d 5b 5d 2c 6e 3d 30 3b 6e 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 6e 2b 2b 29 65 5b 6e 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 6e 5d 3b 72 65 74 75 72 6e 28 30 2c 74 2e 6d 47 29 28 74 68 69 73 2c 76 6f 69 64 20 30 2c 50 72 6f 6d 69 73 65 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 6e 2c 72 2c 69 2c 6f 2c 73 2c 75 2c 63 2c 6c 3d 74 68 69 73 3b 72 65 74 75 72 6e 28 30 2c 74 2e 4a 68 29 28 74 68 69 73 2c 28 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 6e 3d 6c 74 28 65 29 2c 72 3d 61 2e 61 70 70 6c 79 28 76 6f 69 64 20 30 2c 65 29 2c 69 3d 72 5b 30 5d 2c 6f 3d 72 5b 31 5d 2c 73 3d 72 5b 32 5d 2c 75 3d 72 5b Data Ascii: }),n.prototype.track=function(){for(var e=[],n=0;n<arguments.length;n++)e[n]=arguments[n];return(0,t.mG)(this,void 0,Promise,(function(){var n,r,i,o,s,u,c,l=this;return(0,t.Jh)(this,(function(t){return n=lt(e),r=a.apply(void 0,e),i=r[0],o=r[1],s=r[2],u=r[
2024-08-26 21:51:54 UTC	13206	IN	Data Raw: 72 3a 31 30 2c 66 3d 6e 75 6c 6c 21 3d 3d 28 6f 3d 6e 75 6c 6c 3d 3d 6e 3f 76 6f 69 64 20 30 3a 6e 2e 74 69 6d 65 6f 75 74 29 26 26 76 6f 69 64 20 30 21 3d 3d 6f 3f 6f 3a 35 65 33 3b 66 75 6e 63 74 69 6f 6e 20 64 28 72 29 7b 76 61 72 20 6f 3b 69 66 28 30 21 3d 3d 72 2e 6c 65 6e 67 74 68 29 7b 76 61 72 20 73 3d 6e 75 6c 6c 3d 3d 3d 28 6f 3d 72 5b 30 5d 29 7c 7c 76 6f 69 64 20 30 3d 3d 3d 6f 3f 76 6f 69 64 20 30 3a 6f 2e 77 72 69 74 65 4b 65 79 2c 75 3d 72 2e 6d 61 70 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 6e 3d 65 3b 6e 2e 73 65 6e 74 41 74 3b 72 65 74 75 72 6e 28 30 2c 74 2e 5f 54 29 28 6e 2c 5b 22 73 65 6e 74 41 74 22 5d 29 7d 29 29 3b 72 65 74 75 72 6e 28 30 2c 69 2e 68 29 28 22 68 74 74 70 73 3a 2f 2f 22 2e 63 6f 6e 63 61 74 28 65 2c 22 Data Ascii: r:10,f=null!==(o=null==n?void 0:n.timeout)&&void 0!==o?o:5e3;function d(r){var o;if(0!==r.length){var s=null===(o=r[0])\|\|void 0===o?void 0:o.writeKey,u=r.map((function(e){var n=e;n.sentAt;return(0,t._T)(n,["sentAt"])}));return(0,i.h)("https://".concat(e,"

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:54 UTC	628	OUT	GET /_next/static/chunks/9835.59c20536643b9726.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:54 UTC	609	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 973 Connection: close Date: Mon, 26 Aug 2024 19:35:47 GMT x-amz-replication-status: COMPLETED Last-Modified: Mon, 26 Aug 2024 07:33:15 GMT ETag: "6b64452b69b814fa56db74365d21d6fe" x-amz-server-side-encryption: AES256 x-amz-version-id: IwHIbCu7lj8He3Lq1m5UCoBPTexFYHbw Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 a10d58b5ce965502cc34c5b27682fe22.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: K69diCjtSiEpipXtD3LJMcFbkmXhmvibyO-P4HqzjBCCXFET4MxBcQ== Age: 8168 Vary: Origin
2024-08-26 21:51:54 UTC	973	IN	Data Raw: 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 39 38 33 35 5d 2c 7b 33 39 38 33 35 3a 66 75 6e 63 74 69 6f 6e 28 6c 2c 63 2c 65 29 7b 65 2e 72 28 63 29 3b 65 28 36 37 32 39 34 29 3b 76 61 72 20 61 3d 65 28 35 31 32 34 35 29 2c 73 3d 65 28 38 35 38 39 33 29 3b 63 2e 64 65 66 61 75 6c 74 3d 6c 3d 3e 7b 6c 65 74 7b 77 69 64 74 68 3a 63 3d 32 34 2c 68 65 69 67 68 74 3a 65 3d 32 34 2c 63 6f 6c 6f 72 3a 68 3d 61 2e 63 6f 6c 6f 72 73 2e 77 68 69 74 65 2c 63 6c 61 73 73 4e 61 6d 65 3a 74 3d 22 22 7d 3d 6c 3b 72 65 74 75 72 6e 28 30 2c 73 2e 6a 73 78 29 28 22 73 76 67 22 2c 7b 78 6d 6c 6e 73 3a 22 68 74 Data Ascii: "use strict";(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[9835],{39835:function(l,c,e){e.r(c);e(67294);var a=e(51245),s=e(85893);c.default=l=>{let{width:c=24,height:e=24,color:h=a.colors.white,className:t=""}=l;return(0,s.jsx)("svg",{xmlns:"ht

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:54 UTC	628	OUT	GET /_next/static/chunks/7868.851b65ef7fa1a422.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:54 UTC	632	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 955 Connection: close x-amz-replication-status: COMPLETED Last-Modified: Wed, 21 Aug 2024 12:45:29 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: wmw_LxQRmLXO1be_1b93HLroJx7tUD09 Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 26 Aug 2024 19:35:47 GMT ETag: "54378336344b3de8529083ef5d0707ab" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 a32f966fc5896281eb3de44fd8f57d40.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: F-zuVhpeEWvbGoL5_LElT-Vtd0b_ZBO5FXvkh_oPb4QoFV7GAE3SsQ== Age: 8168 Vary: Origin
2024-08-26 21:51:54 UTC	955	IN	Data Raw: 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 37 38 36 38 5d 2c 7b 37 37 38 36 38 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 6c 2c 63 29 7b 63 2e 72 28 6c 29 3b 63 28 36 37 32 39 34 29 3b 76 61 72 20 69 3d 63 28 35 31 32 34 35 29 2c 72 3d 63 28 38 35 38 39 33 29 3b 6c 2e 64 65 66 61 75 6c 74 3d 65 3d 3e 7b 6c 65 74 7b 77 69 64 74 68 3a 6c 3d 32 34 2c 68 65 69 67 68 74 3a 63 3d 32 34 2c 63 6f 6c 6f 72 3a 73 3d 69 2e 63 6f 6c 6f 72 73 2e 77 68 69 74 65 2c 63 6c 61 73 73 4e 61 6d 65 3a 74 3d 22 22 7d 3d 65 3b 72 65 74 75 72 6e 28 30 2c 72 2e 6a 73 78 29 28 22 73 76 67 22 2c 7b 78 6d 6c 6e 73 3a 22 68 74 Data Ascii: "use strict";(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[7868],{77868:function(e,l,c){c.r(l);c(67294);var i=c(51245),r=c(85893);l.default=e=>{let{width:l=24,height:c=24,color:s=i.colors.white,className:t=""}=e;return(0,r.jsx)("svg",{xmlns:"ht

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:54 UTC	425	OUT	GET /mastercard.bug.svg HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: / Sec-Fetch-Site: none Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:55 UTC	587	IN	HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 1975 Connection: close Date: Mon, 26 Aug 2024 13:26:24 GMT x-amz-replication-status: COMPLETED Last-Modified: Thu, 29 Jul 2021 14:30:53 GMT ETag: "c398ba7b3f1d301e06c7b3b32c2826d1" x-amz-version-id: wuzPI2NSZ7bMYiAyvKuLEta9wNaOXBMS Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 e1e056e45a0f8d6bc22b223900511170.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: Q1CVIlqwKYhARMHK734SeTE26dOK2A4taa6uWczIJArCI7AmEEsgpw== Age: 30331 Vary: Origin
2024-08-26 21:51:55 UTC	1975	IN	Data Raw: 3c 73 76 67 20 77 69 64 74 68 3d 22 33 34 22 20 68 65 69 67 68 74 3d 22 32 32 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 33 34 20 32 32 22 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 3e 0a 3c 70 61 74 68 20 64 3d 22 4d 33 31 2e 37 35 33 32 20 32 31 2e 32 31 39 37 43 33 32 2e 35 33 32 36 20 32 31 2e 32 31 39 37 20 33 33 2e 31 36 20 32 30 2e 35 39 38 39 20 33 33 2e 31 36 20 31 39 2e 38 32 31 32 56 32 2e 31 38 32 30 33 43 33 33 2e 31 36 20 31 2e 34 30 34 33 32 20 33 32 2e 35 33 32 36 20 30 2e 37 38 33 34 35 33 20 33 31 2e 37 35 33 32 20 30 2e 37 38 33 34 35 33 48 32 2e 32 30 36 39 43 31 2e 34 32 37 34 39 20 30 2e 37 38 33 34 35 33 20 30 2e 38 30 30 30 35 35 20 Data Ascii: <svg width="34" height="22" viewBox="0 0 34 22" fill="none" xmlns="http://www.w3.org/2000/svg"><path d="M31.7532 21.2197C32.5326 21.2197 33.16 20.5989 33.16 19.8212V2.18203C33.16 1.40432 32.5326 0.783453 31.7532 0.783453H2.2069C1.42749 0.783453 0.800055

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:54 UTC	628	OUT	GET /_next/static/chunks/1193.3dd404b7ea3c36c8.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:55 UTC	633	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 1308 Connection: close Date: Mon, 26 Aug 2024 19:35:47 GMT x-amz-replication-status: COMPLETED Last-Modified: Mon, 26 Aug 2024 07:33:15 GMT ETag: "f69d3b30a1263332b5a03cd48576c018" x-amz-server-side-encryption: AES256 x-amz-version-id: f9ohrrWfNXVtDUv5dZf7He0iwEaJf5dB Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 edfd22ec6695cdc9d7ac634220af1314.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: KY893mB4uHS70wvLoqh46xdSm8ofiiTpkzBSdJN1pErfXrR3gMbe7w== Age: 8168 Vary: Origin
2024-08-26 21:51:55 UTC	1308	IN	Data Raw: 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 31 31 39 33 5d 2c 7b 36 31 31 39 33 3a 66 75 6e 63 74 69 6f 6e 28 73 2c 65 2c 72 29 7b 72 2e 72 28 65 29 3b 76 61 72 20 74 3d 72 28 39 35 36 32 37 29 2c 6f 3d 72 2e 6e 28 74 29 2c 69 3d 72 28 36 37 32 39 34 29 2c 6e 3d 72 28 35 31 32 34 35 29 2c 6c 3d 72 28 38 35 38 39 33 29 3b 65 2e 64 65 66 61 75 6c 74 3d 73 3d 3e 7b 6c 65 74 7b 77 69 64 74 68 3a 65 3d 31 32 2c 68 65 69 67 68 74 3a 72 3d 31 35 2c 63 6f 6c 6f 72 3a 74 3d 6e 2e 63 6f 6c 6f 72 73 2e 62 6c 61 63 6b 2c 63 6c 61 73 73 4e 61 6d 65 3a 61 3d 22 22 2c 73 74 72 6f 6b 65 57 69 64 74 68 3a 63 Data Ascii: "use strict";(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[1193],{61193:function(s,e,r){r.r(e);var t=r(95627),o=r.n(t),i=r(67294),n=r(51245),l=r(85893);e.default=s=>{let{width:e=12,height:r=15,color:t=n.colors.black,className:a="",strokeWidth:c

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:54 UTC	628	OUT	GET /_next/static/chunks/8948.2692353fb3048aa0.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:55 UTC	629	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 1478 Connection: close x-amz-replication-status: COMPLETED Last-Modified: Wed, 21 Aug 2024 12:45:29 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: 6eqxpcEtlbgQtrg6UY_FIcBTqz87C7Vb Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 26 Aug 2024 21:51:56 GMT ETag: "efa6f902936b7db194d07237f235321c" Vary: Accept-Encoding X-Cache: RefreshHit from cloudfront Via: 1.1 cc0ab20766d57035422a2c4c69fe0620.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: 8VMYJTESe_pQF3zJPfFIQsjTQlInxxYaZZLp4_n4rVOzKhja66Oexw== Vary: Origin
2024-08-26 21:51:55 UTC	1478	IN	Data Raw: 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 38 39 34 38 5d 2c 7b 39 38 39 34 38 3a 66 75 6e 63 74 69 6f 6e 28 74 2c 65 2c 69 29 7b 69 2e 72 28 65 29 3b 69 28 36 37 32 39 34 29 3b 76 61 72 20 73 3d 69 28 38 35 38 39 33 29 3b 65 2e 64 65 66 61 75 6c 74 3d 74 3d 3e 7b 6c 65 74 7b 77 69 64 74 68 3a 65 3d 33 32 2c 68 65 69 67 68 74 3a 69 3d 32 34 7d 3d 74 3b 72 65 74 75 72 6e 28 30 2c 73 2e 6a 73 78 73 29 28 22 73 76 67 22 2c 7b 77 69 64 74 68 3a 65 2c 68 65 69 67 68 74 3a 69 2c 76 69 65 77 42 6f 78 3a 22 30 20 30 20 33 36 20 33 32 22 2c 66 69 6c 6c 3a 22 6e 6f 6e 65 22 2c 78 6d 6c 6e 73 3a 22 68 Data Ascii: "use strict";(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[8948],{98948:function(t,e,i){i.r(e);i(67294);var s=i(85893);e.default=t=>{let{width:e=32,height:i=24}=t;return(0,s.jsxs)("svg",{width:e,height:i,viewBox:"0 0 36 32",fill:"none",xmlns:"h

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Networking

System Summary

Hooking and other Techniques for Hiding and Protection

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Local Storage\leveldb\LOG.old (copy)

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\91d4afd9-d3f7-4a47-bd79-b759307e702e.tmp

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Network\Network Persistent State (copy)

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\000003.log

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG

C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Session Storage\LOG.old (copy)

C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-240826215305Z-172.bmp

C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages

C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal

C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E0F5C59F9FA661F6F4C50B87FEF3A15A

C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E0F5C59F9FA661F6F4C50B87FEF3A15A

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeFnt23.lst.344

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeSysFnt23.lst (copy)

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\IconCacheAcro65536.dat

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\ACROBAT_READER_MASTER_SURFACEID

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Home_View_Surface

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_FirstMile_Right_Sec_Surface

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_READER_LAUNCH_CARD

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Convert_LHP_Banner

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Banner

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Disc_LHP_Retention

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Edit_LHP_Banner

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_Home_LHP_Trial_Banner

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_More_LHP_Banner

C:\Users\user\AppData\Local\Adobe\Acrobat\DC\SOPHIA\Acrobat\Files\DC_Reader_RHP_Banner

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:54 UTC	628	OUT	GET /_next/static/chunks/2378.40683c6fb386355f.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:55 UTC	629	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 2724 Connection: close x-amz-replication-status: COMPLETED Last-Modified: Wed, 21 Aug 2024 12:45:28 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: .UZ6feZcGkL4q_j7f2FITMgLJUsxGz5Y Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 26 Aug 2024 21:51:56 GMT ETag: "7b6efeec50738adaf197572116b3d96a" Vary: Accept-Encoding X-Cache: RefreshHit from cloudfront Via: 1.1 0d94766f433ae64cf30c40acb74fc43e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: -fSg3L-EUwG7o2D2xl3o-O6f84PUgg5WMOkKGTdD2U14dP-eWt_bvg== Vary: Origin
2024-08-26 21:51:55 UTC	2724	IN	Data Raw: 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 32 33 37 38 5d 2c 7b 35 32 33 37 38 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6f 29 7b 6f 2e 72 28 74 29 3b 6f 28 36 37 32 39 34 29 3b 76 61 72 20 72 3d 6f 28 38 35 38 39 33 29 3b 74 2e 64 65 66 61 75 6c 74 3d 65 3d 3e 7b 6c 65 74 7b 77 69 64 74 68 3a 74 3d 34 30 2c 68 65 69 67 68 74 3a 6f 3d 32 34 7d 3d 65 3b 72 65 74 75 72 6e 28 30 2c 72 2e 6a 73 78 73 29 28 22 73 76 67 22 2c 7b 77 69 64 74 68 3a 74 2c 68 65 69 67 68 74 3a 6f 2c 76 69 65 77 42 6f 78 3a 22 30 20 30 20 33 37 20 33 32 22 2c 66 69 6c 6c 3a 22 6e 6f 6e 65 22 2c 78 6d 6c 6e 73 3a 22 68 Data Ascii: "use strict";(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[2378],{52378:function(e,t,o){o.r(t);o(67294);var r=o(85893);t.default=e=>{let{width:t=40,height:o=24}=e;return(0,r.jsxs)("svg",{width:t,height:o,viewBox:"0 0 37 32",fill:"none",xmlns:"h

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:55 UTC	631	OUT	GET /_next/static/chunks/webpack-9cf5d95b8a108cc1.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:55 UTC	634	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 5725 Connection: close Date: Mon, 26 Aug 2024 09:35:32 GMT x-amz-replication-status: COMPLETED Last-Modified: Mon, 26 Aug 2024 07:33:16 GMT ETag: "98154553b25d89781eea0fdfc529667f" x-amz-server-side-encryption: AES256 x-amz-version-id: iQ4CLp.Ze3WlSH8qq7Hoko5k94XEJkTF Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 21a3da42c823b5a4a2d9c4c63248bbd6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: oYG8mKCBme6MFjr5_AlLsTRULmAu-PCCzgNP7Zlm2Jy_LY_A_qzZDg== Age: 44184 Vary: Origin
2024-08-26 21:51:55 UTC	5712	IN	Data Raw: 21 66 75 6e 63 74 69 6f 6e 28 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 65 3d 7b 7d 2c 74 3d 7b 7d 3b 66 75 6e 63 74 69 6f 6e 20 6e 28 72 29 7b 76 61 72 20 66 3d 74 5b 72 5d 3b 69 66 28 76 6f 69 64 20 30 21 3d 3d 66 29 72 65 74 75 72 6e 20 66 2e 65 78 70 6f 72 74 73 3b 76 61 72 20 63 3d 74 5b 72 5d 3d 7b 69 64 3a 72 2c 6c 6f 61 64 65 64 3a 21 31 2c 65 78 70 6f 72 74 73 3a 7b 7d 7d 2c 6f 3d 21 30 3b 74 72 79 7b 65 5b 72 5d 2e 63 61 6c 6c 28 63 2e 65 78 70 6f 72 74 73 2c 63 2c 63 2e 65 78 70 6f 72 74 73 2c 6e 29 2c 6f 3d 21 31 7d 66 69 6e 61 6c 6c 79 7b 6f 26 26 64 65 6c 65 74 65 20 74 5b 72 5d 7d 72 65 74 75 72 6e 20 63 2e 6c 6f 61 64 65 64 3d 21 30 2c 63 2e 65 78 70 6f 72 74 73 7d 6e 2e 6d 3d 65 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 Data Ascii: !function(){"use strict";var e={},t={};function n(r){var f=t[r];if(void 0!==f)return f.exports;var c=t[r]={id:r,loaded:!1,exports:{}},o=!0;try{e[r].call(c.exports,c,c.exports,n),o=!1}finally{o&&delete t[r]}return c.loaded=!0,c.exports}n.m=e,function(){var
2024-08-26 21:51:55 UTC	13	IN	Data Raw: 31 30 38 63 63 31 2e 6a 73 2e 6d 61 70 Data Ascii: 108cc1.js.map

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:55 UTC	602	OUT	GET /v1/projects/xCFNzXfegnqVeUJzI6KkruZL5ZzL7iXy/settings HTTP/1.1 Host: cdn.segment.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Origin: https://connect.intuit.com Sec-Fetch-Site: cross-site Sec-Fetch-Mode: cors Sec-Fetch-Dest: empty Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-08-26 21:51:56 UTC	770	IN	HTTP/1.1 200 OK Content-Type: application/json; charset=utf-8 Content-Length: 2238 Connection: close Date: Mon, 26 Aug 2024 19:35:48 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 x-amz-replication-status: COMPLETED Last-Modified: Thu, 25 Jul 2024 19:17:34 GMT ETag: "26ee0147b7d243991d94b48a2b8b5675" x-amz-server-side-encryption: AES256 Cache-Control: public, max-age=10800 x-amz-version-id: 4hoYBvYQgJthTLgLG5DZEcC2mBG6hFyA Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 46293c8f7848e2378b777a1f48183614.cloudfront.net (CloudFront) X-Amz-Cf-Pop: AMS54-C1 X-Amz-Cf-Id: vArbBlJf7OwV8gnlAchUFZSLoJKVq-n0UZi7bWf8VWuF6F4dbXPAow== Age: 8168
2024-08-26 21:51:56 UTC	2238	IN	Data Raw: 7b 22 69 6e 74 65 67 72 61 74 69 6f 6e 73 22 3a 7b 22 41 6d 70 6c 69 74 75 64 65 22 3a 7b 22 61 70 69 4b 65 79 22 3a 22 65 31 37 38 39 63 38 30 33 61 65 61 35 61 36 65 32 30 64 65 63 61 35 30 38 36 34 37 62 64 66 36 22 2c 22 61 70 70 65 6e 64 46 69 65 6c 64 73 54 6f 45 76 65 6e 74 50 72 6f 70 73 22 3a 7b 7d 2c 22 62 61 74 63 68 45 76 65 6e 74 73 22 3a 66 61 6c 73 65 2c 22 64 65 76 69 63 65 49 64 46 72 6f 6d 55 72 6c 50 61 72 61 6d 22 3a 66 61 6c 73 65 2c 22 65 6e 61 62 6c 65 4c 6f 63 61 74 69 6f 6e 4c 69 73 74 65 6e 69 6e 67 22 3a 74 72 75 65 2c 22 65 76 65 6e 74 55 70 6c 6f 61 64 50 65 72 69 6f 64 4d 69 6c 6c 69 73 22 3a 33 30 30 30 30 2c 22 65 76 65 6e 74 55 70 6c 6f 61 64 54 68 72 65 73 68 6f 6c 64 22 3a 33 30 2c 22 66 6f 72 63 65 48 74 74 70 73 22 3a Data Ascii: {"integrations":{"Amplitude":{"apiKey":"e1789c803aea5a6e20deca508647bdf6","appendFieldsToEventProps":{},"batchEvents":false,"deviceIdFromUrlParam":false,"enableLocationListening":true,"eventUploadPeriodMillis":30000,"eventUploadThreshold":30,"forceHttps":

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:56 UTC	633	OUT	GET /_next/static/chunks/framework-560765ab0625ba27.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:57 UTC	631	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 130057 Connection: close x-amz-replication-status: COMPLETED Last-Modified: Wed, 21 Aug 2024 12:45:29 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: f2OhAgsKpj_eVFsWyQWEmEfMSv5IZ9iB Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 26 Aug 2024 21:51:57 GMT ETag: "575f0dd2d17bbece23c4e3266a51a5c2" Vary: Accept-Encoding X-Cache: RefreshHit from cloudfront Via: 1.1 a10d58b5ce965502cc34c5b27682fe22.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: 1hmnb7etMla4y8bFSHhCKAGIBd0BbXaajXgHM4zdzhJSCd8_Sw6DvA== Vary: Origin
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 39 37 37 34 5d 2c 7b 36 34 34 34 38 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 76 61 72 20 72 3d 6e 28 36 37 32 39 34 29 2c 6c 3d 6e 28 39 36 30 38 36 29 2c 61 3d 6e 28 36 33 38 34 30 29 3b 66 75 6e 63 74 69 6f 6e 20 6f 28 65 29 7b 66 6f 72 28 76 61 72 20 74 3d 22 68 74 74 70 73 3a 2f 2f 72 65 61 63 74 6a 73 2e 6f 72 67 2f 64 6f 63 73 2f 65 72 72 6f 72 2d 64 65 63 6f 64 65 72 2e 68 74 6d 6c 3f 69 6e 76 61 72 69 61 6e 74 3d 22 2b 65 2c 6e 3d 31 3b 6e 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 6e 2b 2b 29 74 2b 3d 22 26 61 72 67 73 Data Ascii: "use strict";(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[9774],{64448:function(e,t,n){var r=n(67294),l=n(96086),a=n(63840);function o(e){for(var t="https://reactjs.org/docs/error-decoder.html?invariant="+e,n=1;n<arguments.length;n++)t+="&args
2024-08-26 21:51:57 UTC	2180	IN	Data Raw: 61 2c 6f 2c 75 2c 69 29 7b 57 65 3d 21 31 2c 48 65 3d 6e 75 6c 6c 2c 24 65 2e 61 70 70 6c 79 28 4b 65 2c 61 72 67 75 6d 65 6e 74 73 29 7d 66 75 6e 63 74 69 6f 6e 20 58 65 28 65 29 7b 76 61 72 20 74 3d 65 2c 6e 3d 65 3b 69 66 28 65 2e 61 6c 74 65 72 6e 61 74 65 29 66 6f 72 28 3b 74 2e 72 65 74 75 72 6e 3b 29 74 3d 74 2e 72 65 74 75 72 6e 3b 65 6c 73 65 7b 65 3d 74 3b 64 6f 7b 30 21 3d 3d 28 31 30 32 36 26 28 74 3d 65 29 2e 66 6c 61 67 73 29 26 26 28 6e 3d 74 2e 72 65 74 75 72 6e 29 2c 65 3d 74 2e 72 65 74 75 72 6e 7d 77 68 69 6c 65 28 65 29 7d 72 65 74 75 72 6e 20 33 3d 3d 3d 74 2e 74 61 67 3f 6e 3a 6e 75 6c 6c 7d 66 75 6e 63 74 69 6f 6e 20 47 65 28 65 29 7b 69 66 28 31 33 3d 3d 3d 65 2e 74 61 67 29 7b 76 61 72 20 74 3d 65 2e 6d 65 6d 6f 69 7a 65 64 53 74 Data Ascii: a,o,u,i){We=!1,He=null,$e.apply(Ke,arguments)}function Xe(e){var t=e,n=e;if(e.alternate)for(;t.return;)t=t.return;else{e=t;do{0!==(1026&(t=e).flags)&&(n=t.return),e=t.return}while(e)}return 3===t.tag?n:null}function Ge(e){if(13===e.tag){var t=e.memoizedSt
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 22 3a 63 61 73 65 22 6c 6f 73 74 70 6f 69 6e 74 65 72 63 61 70 74 75 72 65 22 3a 66 74 2e 64 65 6c 65 74 65 28 74 2e 70 6f 69 6e 74 65 72 49 64 29 7d 7d 66 75 6e 63 74 69 6f 6e 20 76 74 28 65 2c 74 2c 6e 2c 72 2c 6c 2c 61 29 7b 72 65 74 75 72 6e 20 6e 75 6c 6c 3d 3d 3d 65 7c 7c 65 2e 6e 61 74 69 76 65 45 76 65 6e 74 21 3d 3d 61 3f 28 65 3d 68 74 28 74 2c 6e 2c 72 2c 6c 2c 61 29 2c 6e 75 6c 6c 21 3d 3d 74 26 26 28 6e 75 6c 6c 21 3d 3d 28 74 3d 72 6c 28 74 29 29 26 26 6e 74 28 74 29 29 2c 65 29 3a 28 65 2e 65 76 65 6e 74 53 79 73 74 65 6d 46 6c 61 67 73 7c 3d 72 2c 74 3d 65 2e 74 61 72 67 65 74 43 6f 6e 74 61 69 6e 65 72 73 2c 6e 75 6c 6c 21 3d 3d 6c 26 26 2d 31 3d 3d 3d 74 2e 69 6e 64 65 78 4f 66 28 6c 29 26 26 74 2e 70 75 73 68 28 6c 29 2c 65 29 7d 66 75 Data Ascii: ":case"lostpointercapture":ft.delete(t.pointerId)}}function vt(e,t,n,r,l,a){return null===e\|\|e.nativeEvent!==a?(e=ht(t,n,r,l,a),null!==t&&(null!==(t=rl(t))&&nt(t)),e):(e.eventSystemFlags\|=r,t=e.targetContainers,null!==l&&-1===t.indexOf(l)&&t.push(l),e)}fu
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 65 74 3b 69 66 28 75 3d 75 2e 6c 69 73 74 65 6e 65 72 2c 69 21 3d 3d 61 26 26 6c 2e 69 73 50 72 6f 70 61 67 61 74 69 6f 6e 53 74 6f 70 70 65 64 28 29 29 62 72 65 61 6b 20 65 3b 4e 72 28 6c 2c 75 2c 73 29 2c 61 3d 69 7d 65 6c 73 65 20 66 6f 72 28 6f 3d 30 3b 6f 3c 72 2e 6c 65 6e 67 74 68 3b 6f 2b 2b 29 7b 69 66 28 69 3d 28 75 3d 72 5b 6f 5d 29 2e 69 6e 73 74 61 6e 63 65 2c 73 3d 75 2e 63 75 72 72 65 6e 74 54 61 72 67 65 74 2c 75 3d 75 2e 6c 69 73 74 65 6e 65 72 2c 69 21 3d 3d 61 26 26 6c 2e 69 73 50 72 6f 70 61 67 61 74 69 6f 6e 53 74 6f 70 70 65 64 28 29 29 62 72 65 61 6b 20 65 3b 4e 72 28 6c 2c 75 2c 73 29 2c 61 3d 69 7d 7d 7d 69 66 28 51 65 29 74 68 72 6f 77 20 65 3d 71 65 2c 51 65 3d 21 31 2c 71 65 3d 6e 75 6c 6c 2c 65 7d 66 75 6e 63 74 69 6f 6e 20 4c Data Ascii: et;if(u=u.listener,i!==a&&l.isPropagationStopped())break e;Nr(l,u,s),a=i}else for(o=0;o<r.length;o++){if(i=(u=r[o]).instance,s=u.currentTarget,u=u.listener,i!==a&&l.isPropagationStopped())break e;Nr(l,u,s),a=i}}}if(Qe)throw e=qe,Qe=!1,qe=null,e}function L
2024-08-26 21:51:57 UTC	12987	IN	Data Raw: 6e 75 6c 6c 21 3d 3d 74 2e 72 65 66 26 26 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 3d 74 79 70 65 6f 66 20 74 2e 72 65 66 26 26 74 2e 72 65 66 2e 5f 73 74 72 69 6e 67 52 65 66 3d 3d 3d 6c 3f 74 2e 72 65 66 3a 28 74 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 72 2e 72 65 66 73 3b 74 3d 3d 3d 6d 61 26 26 28 74 3d 72 2e 72 65 66 73 3d 7b 7d 29 2c 6e 75 6c 6c 3d 3d 3d 65 3f 64 65 6c 65 74 65 20 74 5b 6c 5d 3a 74 5b 6c 5d 3d 65 7d 2c 74 2e 5f 73 74 72 69 6e 67 52 65 66 3d 6c 2c 74 29 7d 69 66 28 22 73 74 72 69 6e 67 22 21 3d 3d 74 79 70 65 6f 66 20 65 29 74 68 72 6f 77 20 45 72 72 6f 72 28 6f 28 32 38 34 29 29 3b 69 66 28 21 6e 2e 5f 6f 77 6e 65 72 29 74 68 72 6f 77 20 45 72 72 6f 72 28 6f 28 32 39 30 2c 65 29 29 7d 72 65 74 75 72 6e 20 65 7d 66 75 6e Data Ascii: null!==t.ref&&"function"===typeof t.ref&&t.ref._stringRef===l?t.ref:(t=function(e){var t=r.refs;t===ma&&(t=r.refs={}),null===e?delete t[l]:t[l]=e},t._stringRef=l,t)}if("string"!==typeof e)throw Error(o(284));if(!n._owner)throw Error(o(290,e))}return e}fun
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 6c 6c 79 7b 47 61 2e 74 72 61 6e 73 69 74 69 6f 6e 3d 6e 7d 7d 29 29 7d 66 75 6e 63 74 69 6f 6e 20 7a 6f 28 65 2c 74 2c 6e 29 7b 76 61 72 20 72 3d 64 69 28 29 2c 6c 3d 70 69 28 65 29 2c 61 3d 7b 6c 61 6e 65 3a 6c 2c 61 63 74 69 6f 6e 3a 6e 2c 65 61 67 65 72 52 65 64 75 63 65 72 3a 6e 75 6c 6c 2c 65 61 67 65 72 53 74 61 74 65 3a 6e 75 6c 6c 2c 6e 65 78 74 3a 6e 75 6c 6c 7d 2c 6f 3d 74 2e 70 65 6e 64 69 6e 67 3b 69 66 28 6e 75 6c 6c 3d 3d 3d 6f 3f 61 2e 6e 65 78 74 3d 61 3a 28 61 2e 6e 65 78 74 3d 6f 2e 6e 65 78 74 2c 6f 2e 6e 65 78 74 3d 61 29 2c 74 2e 70 65 6e 64 69 6e 67 3d 61 2c 6f 3d 65 2e 61 6c 74 65 72 6e 61 74 65 2c 65 3d 3d 3d 4a 61 7c 7c 6e 75 6c 6c 21 3d 3d 6f 26 26 6f 3d 3d 3d 4a 61 29 72 6f 3d 6e 6f 3d 21 30 3b 65 6c 73 65 7b 69 66 28 30 3d 3d Data Ascii: lly{Ga.transition=n}}))}function zo(e,t,n){var r=di(),l=pi(e),a={lane:l,action:n,eagerReducer:null,eagerState:null,next:null},o=t.pending;if(null===o?a.next=a:(a.next=o.next,o.next=a),t.pending=a,o=e.alternate,e===Ja\|\|null!==o&&o===Ja)ro=no=!0;else{if(0==
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 75 6c 6c 21 3d 3d 6e 3b 29 65 3d 72 2c 28 75 3d 6e 29 2e 66 6c 61 67 73 26 3d 32 2c 75 2e 6e 65 78 74 45 66 66 65 63 74 3d 6e 75 6c 6c 2c 75 2e 66 69 72 73 74 45 66 66 65 63 74 3d 6e 75 6c 6c 2c 75 2e 6c 61 73 74 45 66 66 65 63 74 3d 6e 75 6c 6c 2c 6e 75 6c 6c 3d 3d 3d 28 73 3d 75 2e 61 6c 74 65 72 6e 61 74 65 29 3f 28 75 2e 63 68 69 6c 64 4c 61 6e 65 73 3d 30 2c 75 2e 6c 61 6e 65 73 3d 65 2c 75 2e 63 68 69 6c 64 3d 6e 75 6c 6c 2c 75 2e 6d 65 6d 6f 69 7a 65 64 50 72 6f 70 73 3d 6e 75 6c 6c 2c 75 2e 6d 65 6d 6f 69 7a 65 64 53 74 61 74 65 3d 6e 75 6c 6c 2c 75 2e 75 70 64 61 74 65 51 75 65 75 65 3d 6e 75 6c 6c 2c 75 2e 64 65 70 65 6e 64 65 6e 63 69 65 73 3d 6e 75 6c 6c 2c 75 2e 73 74 61 74 65 4e 6f 64 65 3d 6e 75 6c 6c 29 3a 28 75 2e 63 68 69 6c 64 4c 61 6e Data Ascii: ull!==n;)e=r,(u=n).flags&=2,u.nextEffect=null,u.firstEffect=null,u.lastEffect=null,null===(s=u.alternate)?(u.childLanes=0,u.lanes=e,u.child=null,u.memoizedProps=null,u.memoizedState=null,u.updateQueue=null,u.dependencies=null,u.stateNode=null):(u.childLan
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 72 20 63 3d 75 2e 61 6c 74 65 72 6e 61 74 65 3b 63 3f 28 75 2e 75 70 64 61 74 65 51 75 65 75 65 3d 63 2e 75 70 64 61 74 65 51 75 65 75 65 2c 75 2e 6d 65 6d 6f 69 7a 65 64 53 74 61 74 65 3d 63 2e 6d 65 6d 6f 69 7a 65 64 53 74 61 74 65 2c 75 2e 6c 61 6e 65 73 3d 63 2e 6c 61 6e 65 73 29 3a 28 75 2e 75 70 64 61 74 65 51 75 65 75 65 3d 6e 75 6c 6c 2c 75 2e 6d 65 6d 6f 69 7a 65 64 53 74 61 74 65 3d 6e 75 6c 6c 29 7d 76 61 72 20 66 3d 30 21 3d 3d 28 31 26 44 61 2e 63 75 72 72 65 6e 74 29 2c 64 3d 6f 3b 64 6f 7b 76 61 72 20 70 3b 69 66 28 70 3d 31 33 3d 3d 3d 64 2e 74 61 67 29 7b 76 61 72 20 68 3d 64 2e 6d 65 6d 6f 69 7a 65 64 53 74 61 74 65 3b 69 66 28 6e 75 6c 6c 21 3d 3d 68 29 70 3d 6e 75 6c 6c 21 3d 3d 68 2e 64 65 68 79 64 72 61 74 65 64 3b 65 6c 73 65 7b 76 Data Ascii: r c=u.alternate;c?(u.updateQueue=c.updateQueue,u.memoizedState=c.memoizedState,u.lanes=c.lanes):(u.updateQueue=null,u.memoizedState=null)}var f=0!==(1&Da.current),d=o;do{var p;if(p=13===d.tag){var h=d.memoizedState;if(null!==h)p=null!==h.dehydrated;else{v
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 3d 6c 2e 63 68 69 6c 64 72 65 6e 2c 57 72 28 72 2c 6c 29 3f 75 3d 6e 75 6c 6c 3a 6e 75 6c 6c 21 3d 3d 61 26 26 57 72 28 72 2c 61 29 26 26 28 74 2e 66 6c 61 67 73 7c 3d 31 36 29 2c 24 6f 28 65 2c 74 29 2c 55 6f 28 65 2c 74 2c 75 2c 6e 29 2c 74 2e 63 68 69 6c 64 3b 63 61 73 65 20 36 3a 72 65 74 75 72 6e 20 6e 75 6c 6c 3d 3d 3d 65 26 26 57 61 28 74 29 2c 6e 75 6c 6c 3b 63 61 73 65 20 31 33 3a 72 65 74 75 72 6e 20 5a 6f 28 65 2c 74 2c 6e 29 3b 63 61 73 65 20 34 3a 72 65 74 75 72 6e 20 52 61 28 74 2c 74 2e 73 74 61 74 65 4e 6f 64 65 2e 63 6f 6e 74 61 69 6e 65 72 49 6e 66 6f 29 2c 72 3d 74 2e 70 65 6e 64 69 6e 67 50 72 6f 70 73 2c 6e 75 6c 6c 3d 3d 3d 65 3f 74 2e 63 68 69 6c 64 3d 43 61 28 74 2c 6e 75 6c 6c 2c 72 2c 6e 29 3a 55 6f 28 65 2c 74 2c 72 2c 6e 29 2c Data Ascii: =l.children,Wr(r,l)?u=null:null!==a&&Wr(r,a)&&(t.flags\|=16),$o(e,t),Uo(e,t,u,n),t.child;case 6:return null===e&&Wa(t),null;case 13:return Zo(e,t,n);case 4:return Ra(t,t.stateNode.containerInfo),r=t.pendingProps,null===e?t.child=Ca(t,null,r,n):Uo(e,t,r,n),
2024-08-26 21:51:57 UTC	202	IN	Data Raw: 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 76 61 72 20 74 3d 4c 3b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 6e 3d 4c 3b 4c 3d 74 3b 74 72 79 7b 72 65 74 75 72 6e 20 65 2e 61 70 70 6c 79 28 74 68 69 73 2c 61 72 67 75 6d 65 6e 74 73 29 7d 66 69 6e 61 6c 6c 79 7b 4c 3d 6e 7d 7d 7d 7d 2c 36 33 38 34 30 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 65 2e 65 78 70 6f 72 74 73 3d 6e 28 36 30 30 35 33 29 7d 7d 5d 29 3b 0a 2f 2f 23 20 73 6f 75 72 63 65 4d 61 70 70 69 6e 67 55 52 4c 3d 66 72 61 6d 65 77 6f 72 6b 2d 35 36 30 37 36 35 61 62 30 36 32 35 62 61 32 37 2e 6a 73 2e 6d 61 70 Data Ascii: =function(e){var t=L;return function(){var n=L;L=t;try{return e.apply(this,arguments)}finally{L=n}}}},63840:function(e,t,n){e.exports=n(60053)}}]);//# sourceMappingURL=framework-560765ab0625ba27.js.map

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:56 UTC	628	OUT	GET /_next/static/chunks/main-593e743601aca717.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:56 UTC	634	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 75858 Connection: close Date: Mon, 26 Aug 2024 19:35:49 GMT x-amz-replication-status: COMPLETED Last-Modified: Mon, 26 Aug 2024 07:33:15 GMT ETag: "650f21ac4fd9546e505724abe1db85e7" x-amz-server-side-encryption: AES256 x-amz-version-id: QGsF.kHbnWCKHqr._b_UBDx0uufaw0kZ Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 27f665df26bde4a7226480b4a2890ff8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: TIpyo3vNKJQGHmkWbAHnpZGf1rUk2KZobu0QOmNoFU5GSCM9njrnLw== Age: 8168 Vary: Origin
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 31 37 39 5d 2c 7b 36 30 39 33 32 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 72 28 65 2c 74 2c 72 2c 6e 2c 6f 2c 61 2c 69 29 7b 74 72 79 7b 76 61 72 20 73 3d 65 5b 61 5d 28 69 29 2c 6c 3d 73 2e 76 61 6c 75 65 7d 63 61 74 63 68 28 75 29 7b 72 65 74 75 72 6e 20 76 6f 69 64 20 72 28 75 29 7d 73 2e 64 6f 6e 65 3f 74 28 6c 29 3a 50 72 6f 6d 69 73 65 2e 72 65 73 6f 6c 76 65 28 6c 29 2e 74 68 65 6e 28 6e 2c 6f 29 7d 74 2e 5a 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 Data Ascii: (self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[179],{60932:function(e,t){"use strict";function r(e,t,r,n,o,a,i){try{var s=e[a](i),l=s.value}catch(u){return void r(u)}s.done?t(l):Promise.resolve(l).then(n,o)}t.Z=function(e){return function(){var
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 6c 74 26 26 6e 75 6c 6c 21 3d 3d 74 2e 64 65 66 61 75 6c 74 29 26 26 22 75 6e 64 65 66 69 6e 65 64 22 3d 3d 3d 74 79 70 65 6f 66 20 74 2e 64 65 66 61 75 6c 74 2e 5f 5f 65 73 4d 6f 64 75 6c 65 26 26 28 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2e 64 65 66 61 75 6c 74 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 2c 4f 62 6a 65 63 74 2e 61 73 73 69 67 6e 28 74 2e 64 65 66 61 75 6c 74 2c 74 29 2c 65 2e 65 78 70 6f 72 74 73 3d 74 2e 64 65 66 61 75 6c 74 29 7d 2c 38 38 35 34 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 72 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 Data Ascii: lt&&null!==t.default)&&"undefined"===typeof t.default.__esModule&&(Object.defineProperty(t.default,"__esModule",{value:!0}),Object.assign(t.default,t),e.exports=t.default)},8854:function(e,t,r){"use strict";Object.defineProperty(t,"__esModule",{value:!0})
2024-08-26 21:51:56 UTC	10748	IN	Data Raw: 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 2c 74 2e 6d 61 74 63 68 65 73 4d 69 64 64 6c 65 77 61 72 65 3d 54 2c 74 2e 69 73 4c 6f 63 61 6c 55 52 4c 3d 6b 2c 74 2e 69 6e 74 65 72 70 6f 6c 61 74 65 41 73 3d 44 2c 74 2e 72 65 73 6f 6c 76 65 48 72 65 66 3d 42 2c 74 2e 63 72 65 61 74 65 4b 65 79 3d 4b 2c 74 2e 64 65 66 61 75 6c 74 3d 76 6f 69 64 20 30 3b 76 61 72 20 6e 3d 72 28 36 30 39 33 32 29 2e 5a 2c 6f 3d 72 28 36 34 39 35 29 2e 5a 2c 61 3d 72 28 39 32 36 34 38 29 2e 5a 2c 69 3d 72 28 39 31 35 39 38 29 2e 5a 2c 73 3d 72 28 32 34 39 36 39 29 2c 6c 3d 72 28 31 35 33 32 33 29 2c 75 3d 72 28 34 39 38 39 29 2c 63 3d 72 28 37 32 31 38 39 29 2c 64 3d 69 28 72 28 38 30 36 37 36 29 29 2c 66 3d 72 28 37 37 34 38 29 2c 68 3d 72 28 39 36 32 35 29 2c 70 Data Ascii: Module",{value:!0}),t.matchesMiddleware=T,t.isLocalURL=k,t.interpolateAs=D,t.resolveHref=B,t.createKey=K,t.default=void 0;var n=r(60932).Z,o=r(6495).Z,a=r(92648).Z,i=r(91598).Z,s=r(24969),l=r(15323),u=r(4989),c=r(72189),d=i(r(80676)),f=r(7748),h=r(9625),p
2024-08-26 21:51:56 UTC	1540	IN	Data Raw: 61 74 28 76 2e 75 6e 73 74 61 62 6c 65 5f 73 63 72 69 70 74 4c 6f 61 64 65 72 28 29 29 2e 66 6f 72 45 61 63 68 28 28 65 3d 3e 7b 63 2e 68 61 6e 64 6c 65 43 6c 69 65 6e 74 53 63 72 69 70 74 4c 6f 61 64 28 65 2e 70 72 6f 70 73 29 7d 29 29 7d 69 66 28 28 66 7c 7c 6d 29 26 26 64 29 7b 69 66 28 64 2e 70 61 67 65 50 72 6f 70 73 26 26 64 2e 70 61 67 65 50 72 6f 70 73 2e 5f 5f 4e 5f 52 45 44 49 52 45 43 54 29 7b 61 2e 6c 6f 63 61 6c 65 3d 21 31 3b 63 6f 6e 73 74 20 74 3d 64 2e 70 61 67 65 50 72 6f 70 73 2e 5f 5f 4e 5f 52 45 44 49 52 45 43 54 3b 69 66 28 74 2e 73 74 61 72 74 73 57 69 74 68 28 22 2f 22 29 26 26 21 31 21 3d 3d 64 2e 70 61 67 65 50 72 6f 70 73 2e 5f 5f 4e 5f 52 45 44 49 52 45 43 54 5f 42 41 53 45 5f 50 41 54 48 29 7b 63 6f 6e 73 74 20 72 3d 67 2e 70 Data Ascii: at(v.unstable_scriptLoader()).forEach((e=>{c.handleClientScriptLoad(e.props)}))}if((f\|\|m)&&d){if(d.pageProps&&d.pageProps.__N_REDIRECT){a.locale=!1;const t=d.pageProps.__N_REDIRECT;if(t.startsWith("/")&&!1!==d.pageProps.__N_REDIRECT_BASE_PATH){const r=g.p
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 73 2e 6c 65 6e 67 74 68 3e 33 26 26 76 6f 69 64 20 30 21 3d 3d 61 72 67 75 6d 65 6e 74 73 5b 33 5d 3f 61 72 67 75 6d 65 6e 74 73 5b 33 5d 3a 7b 7d 3b 22 70 75 73 68 53 74 61 74 65 22 3d 3d 3d 65 26 26 6d 2e 67 65 74 55 52 4c 28 29 3d 3d 3d 72 7c 7c 28 74 68 69 73 2e 5f 73 68 61 6c 6c 6f 77 3d 6e 2e 73 68 61 6c 6c 6f 77 2c 77 69 6e 64 6f 77 2e 68 69 73 74 6f 72 79 5b 65 5d 28 7b 75 72 6c 3a 74 2c 61 73 3a 72 2c 6f 70 74 69 6f 6e 73 3a 6e 2c 5f 5f 4e 3a 21 30 2c 6b 65 79 3a 74 68 69 73 2e 5f 6b 65 79 3d 22 70 75 73 68 53 74 61 74 65 22 21 3d 3d 65 3f 74 68 69 73 2e 5f 6b 65 79 3a 4b 28 29 7d 2c 22 22 2c 72 29 29 7d 68 61 6e 64 6c 65 52 6f 75 74 65 49 6e 66 6f 45 72 72 6f 72 28 65 2c 74 2c 72 2c 6f 2c 61 2c 69 29 7b 76 61 72 20 73 3d 74 68 69 73 3b 72 65 74 Data Ascii: s.length>3&&void 0!==arguments[3]?arguments[3]:{};"pushState"===e&&m.getURL()===r\|\|(this._shallow=n.shallow,window.history[e]({url:t,as:r,options:n,__N:!0,key:this._key="pushState"!==e?this._key:K()},"",r))}handleRouteInfoError(e,t,r,o,a,i){var s=this;ret
2024-08-26 21:51:56 UTC	14418	IN	Data Raw: 5c 57 2f 67 2c 22 22 29 2c 6c 3d 21 31 3b 72 65 74 75 72 6e 28 30 3d 3d 3d 73 2e 6c 65 6e 67 74 68 7c 7c 73 2e 6c 65 6e 67 74 68 3e 33 30 29 26 26 28 6c 3d 21 30 29 2c 69 73 4e 61 4e 28 70 61 72 73 65 49 6e 74 28 73 2e 73 6c 69 63 65 28 30 2c 31 29 29 29 7c 7c 28 6c 3d 21 30 29 2c 6c 26 26 28 73 3d 72 28 29 29 2c 6e 5b 73 5d 3d 74 2c 61 3f 6f 3f 60 28 3f 3a 2f 28 3f 3c 24 7b 73 7d 3e 2e 2b 3f 29 29 3f 60 3a 60 2f 28 3f 3c 24 7b 73 7d 3e 2e 2b 3f 29 60 3a 60 2f 28 3f 3c 24 7b 73 7d 3e 5b 5e 2f 5d 2b 3f 29 60 7d 72 65 74 75 72 6e 60 2f 24 7b 6f 2e 65 73 63 61 70 65 53 74 72 69 6e 67 52 65 67 65 78 70 28 65 29 7d 60 7d 29 29 2e 6a 6f 69 6e 28 22 22 29 2c 72 6f 75 74 65 4b 65 79 73 3a 6e 7d 7d 7d 2c 34 33 32 35 38 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b Data Ascii: \W/g,""),l=!1;return(0===s.length\|\|s.length>30)&&(l=!0),isNaN(parseInt(s.slice(0,1)))\|\|(l=!0),l&&(s=r()),n[s]=t,a?o?`(?:/(?<${s}>.+?))?`:`/(?<${s}>.+?)`:`/(?<${s}>[^/]+?)`}return`/${o.escapeStringRegexp(e)}`})).join(""),routeKeys:n}}},43258:function(e,t){

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:56 UTC	634	OUT	GET /_next/static/chunks/pages/_app-7ffd0050aefebb07.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:56 UTC	637	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 1107591 Connection: close Date: Mon, 26 Aug 2024 09:35:32 GMT x-amz-replication-status: COMPLETED Last-Modified: Mon, 26 Aug 2024 07:33:15 GMT ETag: "9abda097fe93efc2c07fc7ced1f49a63" x-amz-server-side-encryption: AES256 x-amz-version-id: 66rdXoWjQSjL3_9iJPI70frUXbrSv84F Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 f99b5b46e77cfe9c3413f99dc8a4088c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: 9eocpfehayynDvAh85WbojSxUcFh3bsBLFFKJcwvvoMPuJCJJlJuNg== Age: 44185 Vary: Origin
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 32 38 38 38 2c 32 37 34 31 5d 2c 7b 32 35 36 38 37 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 64 28 74 2c 7b 6b 47 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 72 7d 7d 29 3b 66 75 6e 63 74 69 6f 6e 20 72 28 65 2c 74 2c 6e 29 7b 69 66 28 76 6f 69 64 20 30 3d 3d 3d 6e 26 26 28 6e 3d 45 72 72 6f 72 29 2c 21 65 29 74 68 72 6f 77 20 6e 65 77 20 6e 28 74 29 7d 7d 2c 39 35 39 35 37 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 66 75 6e 63 74 69 6f 6e 20 72 28 65 2c 74 29 7b 76 61 72 20 Data Ascii: (self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[2888,2741],{25687:function(e,t,n){"use strict";n.d(t,{kG:function(){return r}});function r(e,t,n){if(void 0===n&&(n=Error),!e)throw new n(t)}},95957:function(e,t,n){"use strict";function r(e,t){var
2024-08-26 21:51:56 UTC	2180	IN	Data Raw: 6e 29 7d 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 72 65 74 75 72 6e 20 65 2e 73 6c 69 63 65 28 6e 2c 6e 2b 74 2e 6c 65 6e 67 74 68 29 3d 3d 3d 74 7d 2c 71 3d 55 3f 53 74 72 69 6e 67 2e 66 72 6f 6d 43 6f 64 65 50 6f 69 6e 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 66 6f 72 28 76 61 72 20 65 3d 5b 5d 2c 74 3d 30 3b 74 3c 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 3b 74 2b 2b 29 65 5b 74 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 74 5d 3b 66 6f 72 28 76 61 72 20 6e 2c 72 3d 22 22 2c 6f 3d 65 2e 6c 65 6e 67 74 68 2c 69 3d 30 3b 6f 3e 69 3b 29 7b 69 66 28 28 6e 3d 65 5b 69 2b 2b 5d 29 3e 31 31 31 34 31 31 31 29 74 68 72 6f 77 20 52 61 6e 67 65 45 72 72 6f 72 28 6e 2b 22 20 69 73 20 6e 6f 74 20 61 20 76 61 6c 69 64 20 63 6f 64 65 20 70 6f 69 6e 74 22 29 3b Data Ascii: n)}:function(e,t,n){return e.slice(n,n+t.length)===t},q=U?String.fromCodePoint:function(){for(var e=[],t=0;t<arguments.length;t++)e[t]=arguments[t];for(var n,r="",o=e.length,i=0;o>i;){if((n=e[i++])>1114111)throw RangeError(n+" is not a valid code point");
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 63 6c 6f 6e 65 50 6f 73 69 74 69 6f 6e 28 29 29 7d 29 7d 7d 7d 72 65 74 75 72 6e 7b 76 61 6c 3a 69 2c 65 72 72 3a 6e 75 6c 6c 7d 7d 2c 65 2e 70 72 6f 74 6f 74 79 70 65 2e 70 61 72 73 65 54 61 67 3d 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 3d 74 68 69 73 2e 63 6c 6f 6e 65 50 6f 73 69 74 69 6f 6e 28 29 3b 74 68 69 73 2e 62 75 6d 70 28 29 3b 76 61 72 20 69 3d 74 68 69 73 2e 70 61 72 73 65 54 61 67 4e 61 6d 65 28 29 3b 69 66 28 74 68 69 73 2e 62 75 6d 70 53 70 61 63 65 28 29 2c 74 68 69 73 2e 62 75 6d 70 49 66 28 22 2f 3e 22 29 29 72 65 74 75 72 6e 7b 76 61 6c 3a 7b 74 79 70 65 3a 6f 2e 6c 69 74 65 72 61 6c 2c 76 61 6c 75 65 3a 22 3c 22 2e 63 6f 6e 63 61 74 28 69 2c 22 2f 3e 22 29 2c 6c 6f 63 61 74 69 6f 6e 3a 4c 28 6e 2c 74 68 69 73 2e 63 6c Data Ascii: clonePosition())})}}}return{val:i,err:null}},e.prototype.parseTag=function(e,t){var n=this.clonePosition();this.bump();var i=this.parseTagName();if(this.bumpSpace(),this.bumpIf("/>"))return{val:{type:o.literal,value:"<".concat(i,"/>"),location:L(n,this.cl
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 2c 6f 2e 5a 54 29 28 74 2c 65 29 2c 74 7d 28 6c 29 2c 64 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 66 75 6e 63 74 69 6f 6e 20 74 28 74 2c 6e 29 7b 76 61 72 20 6f 3d 65 2e 63 61 6c 6c 28 74 68 69 73 2c 72 2e 4d 49 53 53 49 4e 47 5f 54 52 41 4e 53 4c 41 54 49 4f 4e 2c 27 4d 69 73 73 69 6e 67 20 6d 65 73 73 61 67 65 3a 20 22 27 2e 63 6f 6e 63 61 74 28 74 2e 69 64 2c 27 22 20 66 6f 72 20 6c 6f 63 61 6c 65 20 22 27 29 2e 63 6f 6e 63 61 74 28 6e 2c 27 22 2c 20 75 73 69 6e 67 20 27 29 2e 63 6f 6e 63 61 74 28 74 2e 64 65 66 61 75 6c 74 4d 65 73 73 61 67 65 3f 22 64 65 66 61 75 6c 74 20 6d 65 73 73 61 67 65 22 3a 22 69 64 22 2c 22 20 61 73 20 66 61 6c 6c 62 61 63 6b 2e 22 29 29 7c 7c 74 68 69 73 3b 72 65 74 75 72 6e 20 6f 2e 64 65 73 63 72 69 70 74 6f 72 3d 74 2c 6f Data Ascii: ,o.ZT)(t,e),t}(l),d=function(e){function t(t,n){var o=e.call(this,r.MISSING_TRANSLATION,'Missing message: "'.concat(t.id,'" for locale "').concat(n,'", using ').concat(t.defaultMessage?"default message":"id"," as fallback."))\|\|this;return o.descriptor=t,o
2024-08-26 21:51:56 UTC	12987	IN	Data Raw: 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 6e 2c 72 2c 6f 2c 69 2c 61 2c 73 2c 64 2c 70 3b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 76 61 72 20 6e 2c 72 2c 6f 2c 69 2c 61 3d 7b 6c 61 62 65 6c 3a 30 2c 73 65 6e 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 69 66 28 31 26 6f 5b 30 5d 29 74 68 72 6f 77 20 6f 5b 31 5d 3b 72 65 74 75 72 6e 20 6f 5b 31 5d 7d 2c 74 72 79 73 3a 5b 5d 2c 6f 70 73 3a 5b 5d 7d 3b 72 65 74 75 72 6e 20 69 3d 7b 6e 65 78 74 3a 73 28 30 29 2c 74 68 72 6f 77 3a 73 28 31 29 2c 72 65 74 75 72 6e 3a 73 28 32 29 7d 2c 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 26 26 28 69 5b 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 5d 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 68 69 73 7d Data Ascii: function(){var n,r,o,i,a,s,d,p;return function(e,t){var n,r,o,i,a={label:0,sent:function(){if(1&o[0])throw o[1];return o[1]},trys:[],ops:[]};return i={next:s(0),throw:s(1),return:s(2)},"function"==typeof Symbol&&(i[Symbol.iterator]=function(){return this}
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 3d 7b 51 42 4f 3a 7b 74 69 6d 65 6f 75 74 3a 32 65 33 2c 61 73 73 65 74 41 6c 69 61 73 3a 7b 22 49 6e 74 75 69 74 2e 61 63 63 6f 75 6e 74 69 6e 67 2e 63 6f 72 65 2e 71 62 6f 77 65 62 61 70 70 22 3a 7b 74 69 6d 65 6f 75 74 3a 31 35 30 30 2c 76 65 6e 64 6f 72 73 3a 5b 22 54 4d 58 22 5d 7d 7d 7d 2c 47 65 6e 4f 53 3a 7b 74 69 6d 65 6f 75 74 3a 33 65 33 2c 70 72 6f 63 65 73 73 53 65 73 73 69 6f 6e 3a 21 30 2c 63 6f 6e 74 69 6e 75 6f 75 73 50 72 6f 66 69 6c 69 6e 67 3a 7b 65 6e 61 62 6c 65 64 3a 21 30 2c 6d 61 78 44 75 72 61 74 69 6f 6e 3a 33 36 65 35 7d 7d 2c 43 72 65 64 69 74 4b 61 72 6d 61 3a 7b 74 69 6d 65 6f 75 74 3a 33 65 33 7d 2c 54 75 72 62 6f 54 61 78 3a 7b 74 69 6d 65 6f 75 74 3a 31 35 30 30 7d 2c 50 61 79 6d 65 6e 74 73 3a 7b 61 73 73 65 74 41 6c 69 Data Ascii: ={QBO:{timeout:2e3,assetAlias:{"Intuit.accounting.core.qbowebapp":{timeout:1500,vendors:["TMX"]}}},GenOS:{timeout:3e3,processSession:!0,continuousProfiling:{enabled:!0,maxDuration:36e5}},CreditKarma:{timeout:3e3},TurboTax:{timeout:1500},Payments:{assetAli
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 6e 28 29 7b 72 65 74 75 72 6e 20 6e 65 77 20 45 28 74 68 69 73 2e 5f 62 6f 64 79 49 6e 69 74 2c 7b 73 74 61 74 75 73 3a 74 68 69 73 2e 73 74 61 74 75 73 2c 73 74 61 74 75 73 54 65 78 74 3a 74 68 69 73 2e 73 74 61 74 75 73 54 65 78 74 2c 68 65 61 64 65 72 73 3a 6e 65 77 20 68 28 74 68 69 73 2e 68 65 61 64 65 72 73 29 2c 75 72 6c 3a 74 68 69 73 2e 75 72 6c 7d 29 7d 2c 45 2e 65 72 72 6f 72 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 65 3d 6e 65 77 20 45 28 6e 75 6c 6c 2c 7b 73 74 61 74 75 73 3a 32 30 30 2c 73 74 61 74 75 73 54 65 78 74 3a 22 22 7d 29 3b 72 65 74 75 72 6e 20 65 2e 6f 6b 3d 21 31 2c 65 2e 73 74 61 74 75 73 3d 30 2c 65 2e 74 79 70 65 3d 22 65 72 72 6f 72 22 2c 65 7d 3b 76 61 72 20 6b 3d 5b 33 30 31 2c 33 30 32 2c 33 30 33 2c 33 30 37 2c 33 Data Ascii: n(){return new E(this._bodyInit,{status:this.status,statusText:this.statusText,headers:new h(this.headers),url:this.url})},E.error=function(){var e=new E(null,{status:200,statusText:""});return e.ok=!1,e.status=0,e.type="error",e};var k=[301,302,303,307,3
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 6e 3d 74 2e 64 69 73 70 61 74 63 68 2c 72 3d 74 2e 67 65 74 53 74 61 74 65 3b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 6f 29 7b 72 65 74 75 72 6e 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 3d 74 79 70 65 6f 66 20 6f 3f 6f 28 6e 2c 72 2c 65 29 3a 74 28 6f 29 7d 7d 7d 7d 76 61 72 20 61 65 3d 69 65 28 29 3b 61 65 2e 77 69 74 68 45 78 74 72 61 41 72 67 75 6d 65 6e 74 3d 69 65 3b 76 61 72 20 73 65 3d 61 65 2c 63 65 3d 28 6e 28 33 34 31 35 35 29 2c 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 65 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 6e 29 7b 72 65 74 75 72 6e 20 65 3d 4f 62 6a 65 63 74 2e 73 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 7c 7c 7b 5f 5f 70 72 6f 74 6f 5f 5f 3a 5b 5d 7d 69 6e 73 74 61 6e 63 65 6f 66 Data Ascii: n=t.dispatch,r=t.getState;return function(t){return function(o){return"function"===typeof o?o(n,r,e):t(o)}}}}var ae=ie();ae.withExtraArgument=ie;var se=ae,ce=(n(34155),function(){var e=function(t,n){return e=Object.setPrototypeOf\|\|{__proto__:[]}instanceof
2024-08-26 21:51:56 UTC	2256	IN	Data Raw: 61 6d 65 2c 6e 29 3a 65 2e 73 65 74 41 74 74 72 69 62 75 74 65 28 22 63 6c 61 73 73 22 2c 74 28 65 2e 63 6c 61 73 73 4e 61 6d 65 26 26 65 2e 63 6c 61 73 73 4e 61 6d 65 2e 62 61 73 65 56 61 6c 7c 7c 22 22 2c 6e 29 29 7d 7d 2c 32 34 34 32 39 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 72 3d 6e 28 34 30 32 31 30 29 28 22 25 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 25 22 2c 21 30 29 7c 7c 21 31 3b 69 66 28 72 29 74 72 79 7b 72 28 7b 7d 2c 22 61 22 2c 7b 76 61 6c 75 65 3a 31 7d 29 7d 63 61 74 63 68 28 6f 29 7b 72 3d 21 31 7d 65 2e 65 78 70 6f 72 74 73 3d 72 7d 2c 35 33 39 38 31 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 65 2e 65 78 70 6f 72 74 73 Data Ascii: ame,n):e.setAttribute("class",t(e.className&&e.className.baseVal\|\|"",n))}},24429:function(e,t,n){"use strict";var r=n(40210)("%Object.defineProperty%",!0)\|\|!1;if(r)try{r({},"a",{value:1})}catch(o){r=!1}e.exports=r},53981:function(e){"use strict";e.exports
2024-08-26 21:51:56 UTC	14128	IN	Data Raw: 61 74 63 68 28 74 29 7b 7d 7d 2c 66 3d 4f 62 6a 65 63 74 2e 67 65 74 4f 77 6e 50 72 6f 70 65 72 74 79 44 65 73 63 72 69 70 74 6f 72 3b 69 66 28 66 29 74 72 79 7b 66 28 7b 7d 2c 22 22 29 7d 63 61 74 63 68 28 4c 29 7b 66 3d 6e 75 6c 6c 7d 76 61 72 20 68 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 74 68 72 6f 77 20 6e 65 77 20 6c 7d 2c 6d 3d 66 3f 66 75 6e 63 74 69 6f 6e 28 29 7b 74 72 79 7b 72 65 74 75 72 6e 20 68 7d 63 61 74 63 68 28 65 29 7b 74 72 79 7b 72 65 74 75 72 6e 20 66 28 61 72 67 75 6d 65 6e 74 73 2c 22 63 61 6c 6c 65 65 22 29 2e 67 65 74 7d 63 61 74 63 68 28 74 29 7b 72 65 74 75 72 6e 20 68 7d 7d 7d 28 29 3a 68 2c 79 3d 6e 28 34 31 34 30 35 29 28 29 2c 67 3d 6e 28 32 38 31 38 35 29 28 29 2c 62 3d 4f 62 6a 65 63 74 2e 67 65 74 50 72 6f 74 6f 74 79 70 65 Data Ascii: atch(t){}},f=Object.getOwnPropertyDescriptor;if(f)try{f({},"")}catch(L){f=null}var h=function(){throw new l},m=f?function(){try{return h}catch(e){try{return f(arguments,"callee").get}catch(t){return h}}}():h,y=n(41405)(),g=n(28185)(),b=Object.getPrototype

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:56 UTC	628	OUT	GET /_next/static/chunks/6859-0e318ca24b4b6137.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:56 UTC	634	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 28981 Connection: close x-amz-replication-status: COMPLETED Last-Modified: Wed, 21 Aug 2024 12:45:29 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: K41aRPv3Ny_sCjCt6EZaOben0mb.U0Fz Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 26 Aug 2024 19:35:49 GMT ETag: "37eb804273791af5f1a8acac5775fd06" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 03d509e8374e9f42668961b5e0201348.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: NdRUyLwFd3uM6SajjXWh5ExE5b1IdzHxA7o_tKBKD9d42UYkswdQrw== Age: 8168 Vary: Origin
2024-08-26 21:51:56 UTC	16384	IN	Data Raw: 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 36 38 35 39 5d 2c 7b 31 38 36 31 33 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 72 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 76 61 72 20 6e 3d 72 28 33 34 31 35 35 29 2c 73 3d 72 28 32 31 38 37 36 29 2e 42 75 66 66 65 72 2c 69 3d 72 28 39 33 30 29 2c 6f 3d 72 28 33 33 32 33 29 3b 63 6f 6e 73 74 20 61 3d 5b 22 73 74 72 61 74 65 67 79 22 2c 22 73 72 63 22 2c 22 63 68 69 6c 64 72 65 6e 22 2c 22 64 61 6e 67 65 72 6f 75 73 6c 79 53 65 74 49 6e 6e 65 72 48 54 4d 4c 22 5d 2c 6c 3d 5b 22 73 74 72 61 74 65 67 79 22 5d 2c 63 3d 5b 22 63 72 6f 73 73 4f 72 69 67 69 6e 22 2c 22 6e 6f 6e 63 65 22 5d Data Ascii: (self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[6859],{18613:function(e,t,r){"use strict";var n=r(34155),s=r(21876).Buffer,i=r(930),o=r(3323);const a=["strategy","src","children","dangerouslySetInnerHTML"],l=["strategy"],c=["crossOrigin","nonce"]
2024-08-26 21:51:56 UTC	12176	IN	Data Raw: 6c 65 6d 65 6e 74 28 43 2c 6e 75 6c 6c 2c 5f 2e 64 65 66 61 75 6c 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 4d 2c 6e 75 6c 6c 29 2c 5f 2e 64 65 66 61 75 6c 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 22 62 6f 64 79 22 2c 6e 75 6c 6c 2c 5f 2e 64 65 66 61 75 6c 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 62 2c 6e 75 6c 6c 29 2c 5f 2e 64 65 66 61 75 6c 74 2e 63 72 65 61 74 65 45 6c 65 6d 65 6e 74 28 50 2c 6e 75 6c 6c 29 29 29 7d 7d 2c 37 31 36 34 37 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 74 2c 22 5f 5f 65 73 4d 6f 64 75 6c 65 22 2c 7b 76 61 6c 75 65 3a 21 30 7d 29 2c 74 2e 45 44 47 45 5f 55 4e 53 55 50 50 4f 52 54 45 44 5f 4e 4f 44 45 Data Ascii: lement(C,null,_.default.createElement(M,null),_.default.createElement("body",null,_.default.createElement(b,null),_.default.createElement(P,null)))}},71647:function(e,t){"use strict";Object.defineProperty(t,"__esModule",{value:!0}),t.EDGE_UNSUPPORTED_NODE
2024-08-26 21:51:56 UTC	421	IN	Data Raw: 45 53 43 41 50 45 5f 52 45 47 45 58 3d 6e 7d 2c 35 30 37 33 33 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 72 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 74 2e 53 75 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 65 2e 6d 61 74 63 68 28 2f 5c 3f 61 6d 70 3d 28 79 7c 79 65 73 7c 74 72 75 65 7c 31 29 2f 29 26 26 28 65 3d 65 2e 72 65 70 6c 61 63 65 28 2f 5c 3f 61 6d 70 3d 28 79 7c 79 65 73 7c 74 72 75 65 7c 31 29 26 3f 2f 2c 22 3f 22 29 29 3b 65 2e 6d 61 74 63 68 28 2f 26 61 6d 70 3d 28 79 7c 79 65 73 7c 74 72 75 65 7c 31 29 2f 29 26 26 28 65 3d 65 2e 72 65 70 6c 61 63 65 28 2f 26 61 6d 70 3d 28 79 7c 79 65 73 7c 74 72 75 65 7c 31 29 2f 2c 22 22 29 29 3b 72 65 74 75 72 6e 20 65 3d 65 2e 72 65 70 6c 61 63 65 28 2f 5c 3f 24 2f 2c 22 22 29 7d 3b 76 61 72 20 6e 2c 73 3d Data Ascii: ESCAPE_REGEX=n},50733:function(e,t,r){"use strict";t.Su=function(e){e.match(/\?amp=(y\|yes\|true\|1)/)&&(e=e.replace(/\?amp=(y\|yes\|true\|1)&?/,"?"));e.match(/&amp=(y\|yes\|true\|1)/)&&(e=e.replace(/&amp=(y\|yes\|true\|1)/,""));return e=e.replace(/\?$/,"")};var n,s=

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:56 UTC	628	OUT	GET /_next/static/chunks/7437-06ca1f4ba7151c25.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:57 UTC	630	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 32453 Connection: close x-amz-replication-status: COMPLETED Last-Modified: Wed, 21 Aug 2024 12:45:29 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: ogUi9byfqNg_xR0fbjEhVSvMlbvpAIuX Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 26 Aug 2024 21:51:58 GMT ETag: "bc4b4556dc57165c07f4d357fb5ac867" Vary: Accept-Encoding X-Cache: RefreshHit from cloudfront Via: 1.1 03d509e8374e9f42668961b5e0201348.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: 6VN29wa3pDZGJeseDF0bAmBBUONMIytoDkIpz-3EBX7TcCEmCXJfZw== Vary: Origin
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 37 34 33 37 5d 2c 7b 36 30 31 33 39 3a 66 75 6e 63 74 69 6f 6e 28 74 29 7b 66 75 6e 63 74 69 6f 6e 20 65 28 74 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 74 7d 7d 76 61 72 20 72 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 7d 3b 72 2e 74 68 61 74 52 65 74 75 72 6e 73 3d 65 2c 72 2e 74 68 61 74 52 65 74 75 72 6e 73 46 61 6c 73 65 3d 65 28 21 31 29 2c 72 2e 74 68 61 74 52 65 74 75 72 6e 73 54 72 75 65 3d 65 28 21 30 29 2c 72 2e 74 68 61 74 52 65 74 75 72 6e 73 4e 75 6c 6c 3d 65 28 6e 75 6c 6c 29 2c 72 2e 74 68 61 74 52 65 Data Ascii: "use strict";(self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[7437],{60139:function(t){function e(t){return function(){return t}}var r=function(){};r.thatReturns=e,r.thatReturnsFalse=e(!1),r.thatReturnsTrue=e(!0),r.thatReturnsNull=e(null),r.thatRe
2024-08-26 21:51:57 UTC	2180	IN	Data Raw: 57 72 3d 4c 72 3f 4c 72 2e 74 6f 53 74 72 69 6e 67 3a 76 6f 69 64 20 30 3b 76 61 72 20 24 72 3d 66 75 6e 63 74 69 6f 6e 20 74 28 65 29 7b 69 66 28 22 73 74 72 69 6e 67 22 3d 3d 74 79 70 65 6f 66 20 65 29 72 65 74 75 72 6e 20 65 3b 69 66 28 71 74 28 65 29 29 72 65 74 75 72 6e 20 54 72 28 65 2c 74 29 2b 22 22 3b 69 66 28 42 72 28 65 29 29 72 65 74 75 72 6e 20 57 72 3f 57 72 2e 63 61 6c 6c 28 65 29 3a 22 22 3b 76 61 72 20 72 3d 65 2b 22 22 3b 72 65 74 75 72 6e 22 30 22 3d 3d 72 26 26 31 2f 65 3d 3d 2d 49 6e 66 69 6e 69 74 79 3f 22 2d 30 22 3a 72 7d 3b 76 61 72 20 48 72 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 6e 75 6c 6c 3d 3d 74 3f 22 22 3a 24 72 28 74 29 7d 3b 76 61 72 20 71 72 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 Data Ascii: Wr=Lr?Lr.toString:void 0;var $r=function t(e){if("string"==typeof e)return e;if(qt(e))return Tr(e,t)+"";if(Br(e))return Wr?Wr.call(e):"";var r=e+"";return"0"==r&&1/e==-Infinity?"-0":r};var Hr=function(t){return null==t?"":$r(t)};var qr=function(t){return
2024-08-26 21:51:57 UTC	13889	IN	Data Raw: 2e 73 65 74 53 75 62 6d 69 74 74 69 6e 67 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 2e 64 69 64 4d 6f 75 6e 74 26 26 72 2e 73 65 74 53 74 61 74 65 28 7b 69 73 53 75 62 6d 69 74 74 69 6e 67 3a 74 7d 29 7d 2c 72 2e 76 61 6c 69 64 61 74 65 46 69 65 6c 64 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 72 65 74 75 72 6e 20 72 2e 73 65 74 53 74 61 74 65 28 7b 69 73 56 61 6c 69 64 61 74 69 6e 67 3a 21 30 7d 29 2c 72 2e 72 75 6e 53 69 6e 67 6c 65 46 69 65 6c 64 4c 65 76 65 6c 56 61 6c 69 64 61 74 69 6f 6e 28 74 2c 61 6e 28 72 2e 73 74 61 74 65 2e 76 61 6c 75 65 73 2c 74 29 29 2e 74 68 65 6e 28 28 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 72 2e 64 69 64 4d 6f 75 6e 74 26 26 72 2e 73 65 74 53 74 61 74 65 28 7b 65 72 72 6f 72 73 3a 75 6e 28 72 2e 73 74 61 74 Data Ascii: .setSubmitting=function(t){r.didMount&&r.setState({isSubmitting:t})},r.validateField=function(t){return r.setState({isValidating:!0}),r.runSingleFieldLevelValidation(t,an(r.state.values,t)).then((function(e){return r.didMount&&r.setState({errors:un(r.stat

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:57 UTC	586	OUT	GET /analytics-next/bundles/ajs-destination.bundle.ed53a26b6edc80c65d73.js HTTP/1.1 Host: cdn.segment.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-08-26 21:51:57 UTC	776	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 9270 Connection: close Date: Mon, 08 Jul 2024 20:05:56 GMT Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD Access-Control-Max-Age: 3000 x-amz-replication-status: COMPLETED Last-Modified: Mon, 08 Jul 2024 20:00:46 GMT ETag: "00e9c65cbba11c07c4bf4a6e2727b8ea" x-amz-server-side-encryption: AES256 Cache-Control: public,max-age=31536000,immutable x-amz-version-id: VMM6nD2md61eMExywfZJQ7likEsXISCj Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 2e0227ef3f0af98f7b4e1f8452f59f84.cloudfront.net (CloudFront) X-Amz-Cf-Pop: AMS54-C1 X-Amz-Cf-Id: QOwWTAzxF3c0N72THBQW6qeHIg7t71gPtT7dLHTTK1ZZjuvsevWF-w== Age: 4239962
2024-08-26 21:51:57 UTC	9270	IN	Data Raw: 22 75 73 65 20 73 74 72 69 63 74 22 3b 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 73 65 67 6d 65 6e 74 5f 61 6e 61 6c 79 74 69 63 73 5f 6e 65 78 74 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 73 65 67 6d 65 6e 74 5f 61 6e 61 6c 79 74 69 63 73 5f 6e 65 78 74 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 34 36 34 5d 2c 7b 39 32 35 34 3a 66 75 6e 63 74 69 6f 6e 28 74 2c 6e 2c 69 29 7b 66 75 6e 63 74 69 6f 6e 20 65 28 74 2c 6e 29 7b 76 61 72 20 69 2c 65 3b 72 65 74 75 72 6e 22 62 6f 6f 6c 65 61 6e 22 3d 3d 74 79 70 65 6f 66 28 6e 75 6c 6c 3d 3d 6e 3f 76 6f 69 64 20 30 3a 6e 2e 65 6e 61 62 6c 65 64 29 3f 6e 2e 65 6e 61 62 6c 65 64 3a 6e 75 6c 6c 3d 3d 3d 28 65 3d 6e 75 6c 6c 3d 3d 3d 28 69 3d 6e 75 6c 6c 3d 3d 74 3f 76 6f 69 64 20 30 3a 74 Data Ascii: "use strict";(self.webpackChunk_segment_analytics_next=self.webpackChunk_segment_analytics_next\|\|[]).push([[464],{9254:function(t,n,i){function e(t,n){var i,e;return"boolean"==typeof(null==n?void 0:n.enabled)?n.enabled:null===(e=null===(i=null==t?void 0:t

Timestamp	Bytes transferred	Direction	Data
2024-08-26 21:51:57 UTC	628	OUT	GET /_next/static/chunks/5439-f4c5699a82de3c8e.js HTTP/1.1 Host: static.cns-icn-prod.a.intuit.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: / Sec-Fetch-Site: same-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: script Referer: https://connect.intuit.com/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9 Cookie: ivid=7433f882-c0c8-4798-9504-cb03ce974154
2024-08-26 21:51:57 UTC	635	IN	HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 253985 Connection: close Date: Mon, 26 Aug 2024 19:35:51 GMT x-amz-replication-status: COMPLETED Last-Modified: Mon, 26 Aug 2024 07:33:15 GMT ETag: "1e5daeaf41220ceff890f155747e27b6" x-amz-server-side-encryption: AES256 x-amz-version-id: lo9e9rZdFtMaegllgXgmFxohbxs4ug9U Accept-Ranges: bytes Server: AmazonS3 Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 eb1a8c1b1275e33a016e623478052110.cloudfront.net (CloudFront) X-Amz-Cf-Pop: FRA2-C2 X-Amz-Cf-Id: 8RqxHs9Jh1Y6aZuqGH923kTZm4HEaomNq5o7rsf2UExNj7Vp5f6ZkQ== Age: 8167 Vary: Origin
2024-08-26 21:51:57 UTC	8949	IN	Data Raw: 28 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 3d 73 65 6c 66 2e 77 65 62 70 61 63 6b 43 68 75 6e 6b 5f 4e 5f 45 7c 7c 5b 5d 29 2e 70 75 73 68 28 5b 5b 35 34 33 39 5d 2c 7b 32 34 36 35 32 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 65 2e 65 78 70 6f 72 74 73 3d 7b 6e 75 6d 62 65 72 3a 6e 28 33 37 39 39 29 2c 65 78 70 69 72 61 74 69 6f 6e 44 61 74 65 3a 6e 28 36 34 32 30 33 29 2c 65 78 70 69 72 61 74 69 6f 6e 4d 6f 6e 74 68 3a 6e 28 34 30 37 38 36 29 2c 65 78 70 69 72 61 74 69 6f 6e 59 65 61 72 3a 6e 28 37 33 37 38 36 29 2c 63 76 76 3a 6e 28 36 30 36 29 2c 70 6f 73 74 61 6c 43 6f 64 65 3a 6e 28 36 36 39 33 37 29 2c 63 72 65 64 69 74 43 61 72 64 54 79 70 65 3a 6e 28 31 31 30 33 38 29 7d 7d 2c Data Ascii: (self.webpackChunk_N_E=self.webpackChunk_N_E\|\|[]).push([[5439],{24652:function(e,t,n){"use strict";e.exports={number:n(3799),expirationDate:n(64203),expirationMonth:n(40786),expirationYear:n(73786),cvv:n(606),postalCode:n(66937),creditCardType:n(11038)}},
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 3a 22 7b 7b 63 6f 75 6e 74 7d 7d 20 64 61 79 73 22 7d 2c 61 62 6f 75 74 58 57 65 65 6b 73 3a 7b 6f 6e 65 3a 22 61 62 6f 75 74 20 31 20 77 65 65 6b 22 2c 6f 74 68 65 72 3a 22 61 62 6f 75 74 20 7b 7b 63 6f 75 6e 74 7d 7d 20 77 65 65 6b 73 22 7d 2c 78 57 65 65 6b 73 3a 7b 6f 6e 65 3a 22 31 20 77 65 65 6b 22 2c 6f 74 68 65 72 3a 22 7b 7b 63 6f 75 6e 74 7d 7d 20 77 65 65 6b 73 22 7d 2c 61 62 6f 75 74 58 4d 6f 6e 74 68 73 3a 7b 6f 6e 65 3a 22 61 62 6f 75 74 20 31 20 6d 6f 6e 74 68 22 2c 6f 74 68 65 72 3a 22 61 62 6f 75 74 20 7b 7b 63 6f 75 6e 74 7d 7d 20 6d 6f 6e 74 68 73 22 7d 2c 78 4d 6f 6e 74 68 73 3a 7b 6f 6e 65 3a 22 31 20 6d 6f 6e 74 68 22 2c 6f 74 68 65 72 3a 22 7b 7b 63 6f 75 6e 74 7d 7d 20 6d 6f 6e 74 68 73 22 7d 2c 61 62 6f 75 74 58 59 65 61 72 73 3a Data Ascii: :"{{count}} days"},aboutXWeeks:{one:"about 1 week",other:"about {{count}} weeks"},xWeeks:{one:"1 week",other:"{{count}} weeks"},aboutXMonths:{one:"about 1 month",other:"about {{count}} months"},xMonths:{one:"1 month",other:"{{count}} months"},aboutXYears:
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 7b 22 75 73 65 20 73 74 72 69 63 74 22 3b 6e 2e 72 28 74 29 2c 6e 2e 64 28 74 2c 7b 64 65 66 61 75 6c 74 3a 66 75 6e 63 74 69 6f 6e 28 29 7b 72 65 74 75 72 6e 20 75 7d 7d 29 3b 76 61 72 20 72 3d 6e 28 38 34 33 31 34 29 2c 6f 3d 6e 28 31 39 30 31 33 29 2c 61 3d 6e 28 38 33 39 34 36 29 2c 69 3d 6e 28 31 33 38 38 32 29 3b 66 75 6e 63 74 69 6f 6e 20 75 28 65 2c 74 29 7b 76 61 72 20 6e 2c 75 2c 63 2c 73 2c 6c 2c 66 2c 70 2c 64 3b 28 30 2c 69 2e 5a 29 28 31 2c 61 72 67 75 6d 65 6e 74 73 29 3b 76 61 72 20 68 3d 28 30 2c 72 2e 6a 29 28 29 2c 79 3d 28 30 2c 61 2e 5a 29 28 6e 75 6c 6c 21 3d 3d 28 6e 3d 6e 75 6c 6c 21 3d 3d 28 75 3d 6e 75 6c 6c 21 3d 3d 28 63 3d 6e 75 6c 6c 21 3d 3d 28 73 3d 6e 75 6c 6c 3d 3d 3d 74 7c 7c 76 6f 69 64 20 30 3d 3d 3d 74 3f 76 6f 69 64 Data Ascii: {"use strict";n.r(t),n.d(t,{default:function(){return u}});var r=n(84314),o=n(19013),a=n(83946),i=n(13882);function u(e,t){var n,u,c,s,l,f,p,d;(0,i.Z)(1,arguments);var h=(0,r.j)(),y=(0,a.Z)(null!==(n=null!==(u=null!==(c=null!==(s=null===t\|\|void 0===t?void
2024-08-26 21:51:57 UTC	3339	IN	Data Raw: 6f 3d 6e 28 31 33 38 38 32 29 3b 66 75 6e 63 74 69 6f 6e 20 61 28 65 29 7b 72 65 74 75 72 6e 20 61 3d 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 26 26 22 73 79 6d 62 6f 6c 22 3d 3d 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 2e 69 74 65 72 61 74 6f 72 3f 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 74 79 70 65 6f 66 20 65 7d 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 26 26 22 66 75 6e 63 74 69 6f 6e 22 3d 3d 3d 74 79 70 65 6f 66 20 53 79 6d 62 6f 6c 26 26 65 2e 63 6f 6e 73 74 72 75 63 74 6f 72 3d 3d 3d 53 79 6d 62 6f 6c 26 26 65 21 3d 3d 53 79 6d 62 6f 6c 2e 70 72 6f 74 6f 74 79 70 65 3f 22 73 79 6d 62 6f 6c 22 3a 74 79 70 65 6f 66 20 65 7d 2c 61 28 65 29 7d 66 75 6e 63 74 69 6f 6e 20 69 28 Data Ascii: o=n(13882);function a(e){return a="function"===typeof Symbol&&"symbol"===typeof Symbol.iterator?function(e){return typeof e}:function(e){return e&&"function"===typeof Symbol&&e.constructor===Symbol&&e!==Symbol.prototype?"symbol":typeof e},a(e)}function i(
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 6e 20 44 28 65 2c 5b 7b 6b 65 79 3a 22 76 61 6c 69 64 61 74 65 22 2c 76 61 6c 75 65 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 21 30 7d 7d 5d 29 2c 65 7d 28 29 2c 53 3d 66 75 6e 63 74 69 6f 6e 28 65 29 7b 64 28 6e 2c 65 29 3b 76 61 72 20 74 3d 79 28 6e 29 3b 66 75 6e 63 74 69 6f 6e 20 6e 28 65 2c 72 2c 6f 2c 61 2c 69 29 7b 76 61 72 20 75 3b 72 65 74 75 72 6e 20 77 28 74 68 69 73 2c 6e 29 2c 28 75 3d 74 2e 63 61 6c 6c 28 74 68 69 73 29 29 2e 76 61 6c 75 65 3d 65 2c 75 2e 76 61 6c 69 64 61 74 65 56 61 6c 75 65 3d 72 2c 75 2e 73 65 74 56 61 6c 75 65 3d 6f 2c 75 2e 70 72 69 6f 72 69 74 79 3d 61 2c 69 26 26 28 75 2e 73 75 62 50 72 69 6f 72 69 74 79 3d 69 29 2c 75 7d 72 65 74 75 72 6e 20 44 28 6e 2c 5b 7b 6b 65 79 3a 22 76 61 6c 69 64 61 74 Data Ascii: n D(e,[{key:"validate",value:function(e,t){return!0}}]),e}(),S=function(e){d(n,e);var t=y(n);function n(e,r,o,a,i){var u;return w(this,n),(u=t.call(this)).value=e,u.validateValue=r,u.setValue=o,u.priority=a,i&&(u.subPriority=i),u}return D(n,[{key:"validat
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 69 61 6c 69 73 65 64 20 2d 20 73 75 70 65 72 28 29 20 68 61 73 6e 27 74 20 62 65 65 6e 20 63 61 6c 6c 65 64 22 29 3b 72 65 74 75 72 6e 20 65 7d 66 75 6e 63 74 69 6f 6e 20 68 74 28 65 29 7b 72 65 74 75 72 6e 20 68 74 3d 4f 62 6a 65 63 74 2e 73 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 3f 4f 62 6a 65 63 74 2e 67 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 2e 5f 5f 70 72 6f 74 6f 5f 5f 7c 7c 4f 62 6a 65 63 74 2e 67 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 28 65 29 7d 2c 68 74 28 65 29 7d 66 75 6e 63 74 69 6f 6e 20 79 74 28 65 2c 74 2c 6e 29 7b 72 65 74 75 72 6e 20 74 20 69 6e 20 65 3f 4f 62 6a 65 63 74 2e 64 65 66 69 6e 65 50 72 6f 70 65 72 74 79 28 65 2c 74 2c 7b 76 61 6c 75 65 3a 6e 2c 65 6e 75 6d 65 72 Data Ascii: ialised - super() hasn't been called");return e}function ht(e){return ht=Object.setPrototypeOf?Object.getPrototypeOf:function(e){return e.__proto__\|\|Object.getPrototypeOf(e)},ht(e)}function yt(e,t,n){return t in e?Object.defineProperty(e,t,{value:n,enumer
2024-08-26 21:51:57 UTC	2996	IN	Data Raw: 70 72 6f 74 6f 74 79 70 65 3d 4f 62 6a 65 63 74 2e 63 72 65 61 74 65 28 74 26 26 74 2e 70 72 6f 74 6f 74 79 70 65 2c 7b 63 6f 6e 73 74 72 75 63 74 6f 72 3a 7b 76 61 6c 75 65 3a 65 2c 77 72 69 74 61 62 6c 65 3a 21 30 2c 63 6f 6e 66 69 67 75 72 61 62 6c 65 3a 21 30 7d 7d 29 2c 74 26 26 77 6e 28 65 2c 74 29 7d 28 61 2c 65 29 3b 76 61 72 20 74 2c 6e 2c 72 2c 6f 3d 67 6e 28 61 29 3b 66 75 6e 63 74 69 6f 6e 20 61 28 29 7b 76 61 72 20 65 3b 76 6e 28 74 68 69 73 2c 61 29 3b 66 6f 72 28 76 61 72 20 74 3d 61 72 67 75 6d 65 6e 74 73 2e 6c 65 6e 67 74 68 2c 6e 3d 6e 65 77 20 41 72 72 61 79 28 74 29 2c 72 3d 30 3b 72 3c 74 3b 72 2b 2b 29 6e 5b 72 5d 3d 61 72 67 75 6d 65 6e 74 73 5b 72 5d 3b 72 65 74 75 72 6e 20 53 6e 28 6b 6e 28 65 3d 6f 2e 63 61 6c 6c 2e 61 70 70 6c Data Ascii: prototype=Object.create(t&&t.prototype,{constructor:{value:e,writable:!0,configurable:!0}}),t&&wn(e,t)}(a,e);var t,n,r,o=gn(a);function a(){var e;vn(this,a);for(var t=arguments.length,n=new Array(t),r=0;r<t;r++)n[r]=arguments[r];return Sn(kn(e=o.call.appl
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 72 65 74 75 72 6e 20 64 65 28 74 2e 6c 65 6e 67 74 68 2c 65 29 7d 7d 7d 2c 7b 6b 65 79 3a 22 76 61 6c 69 64 61 74 65 22 2c 76 61 6c 75 65 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 29 7b 72 65 74 75 72 6e 20 76 65 28 65 2e 67 65 74 55 54 43 46 75 6c 6c 59 65 61 72 28 29 29 3f 74 3e 3d 31 26 26 74 3c 3d 33 36 36 3a 74 3e 3d 31 26 26 74 3c 3d 33 36 35 7d 7d 2c 7b 6b 65 79 3a 22 73 65 74 22 2c 76 61 6c 75 65 3a 66 75 6e 63 74 69 6f 6e 28 65 2c 74 2c 6e 29 7b 72 65 74 75 72 6e 20 65 2e 73 65 74 55 54 43 4d 6f 6e 74 68 28 30 2c 6e 29 2c 65 2e 73 65 74 55 54 43 48 6f 75 72 73 28 30 2c 30 2c 30 2c 30 29 2c 65 7d 7d 5d 29 26 26 45 6e 28 74 2e 70 72 6f 74 6f 74 79 70 65 2c 6e 29 2c 72 26 26 45 6e 28 74 2c 72 29 2c 61 7d 28 50 29 2c 41 6e 3d 6e 28 38 34 33 31 34 29 3b Data Ascii: return de(t.length,e)}}},{key:"validate",value:function(e,t){return ve(e.getUTCFullYear())?t>=1&&t<=366:t>=1&&t<=365}},{key:"set",value:function(e,t,n){return e.setUTCMonth(0,n),e.setUTCHours(0,0,0,0),e}}])&&En(t.prototype,n),r&&En(t,r),a}(P),An=n(84314);
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 3d 3d 74 79 70 65 6f 66 20 74 3f 5a 72 28 65 29 3a 74 7d 66 75 6e 63 74 69 6f 6e 20 5a 72 28 65 29 7b 69 66 28 76 6f 69 64 20 30 3d 3d 3d 65 29 74 68 72 6f 77 20 6e 65 77 20 52 65 66 65 72 65 6e 63 65 45 72 72 6f 72 28 22 74 68 69 73 20 68 61 73 6e 27 74 20 62 65 65 6e 20 69 6e 69 74 69 61 6c 69 73 65 64 20 2d 20 73 75 70 65 72 28 29 20 68 61 73 6e 27 74 20 62 65 65 6e 20 63 61 6c 6c 65 64 22 29 3b 72 65 74 75 72 6e 20 65 7d 66 75 6e 63 74 69 6f 6e 20 48 72 28 65 29 7b 72 65 74 75 72 6e 20 48 72 3d 4f 62 6a 65 63 74 2e 73 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 3f 4f 62 6a 65 63 74 2e 67 65 74 50 72 6f 74 6f 74 79 70 65 4f 66 3a 66 75 6e 63 74 69 6f 6e 28 65 29 7b 72 65 74 75 72 6e 20 65 2e 5f 5f 70 72 6f 74 6f 5f 5f 7c 7c 4f 62 6a 65 63 74 2e 67 65 74 50 Data Ascii: ==typeof t?Zr(e):t}function Zr(e){if(void 0===e)throw new ReferenceError("this hasn't been initialised - super() hasn't been called");return e}function Hr(e){return Hr=Object.setPrototypeOf?Object.getPrototypeOf:function(e){return e.__proto__\|\|Object.getP
2024-08-26 21:51:57 UTC	16384	IN	Data Raw: 3d 74 79 70 65 6f 66 20 50 72 6f 78 79 29 72 65 74 75 72 6e 21 30 3b 74 72 79 7b 72 65 74 75 72 6e 20 42 6f 6f 6c 65 61 6e 2e 70 72 6f 74 6f 74 79 70 65 2e 76 61 6c 75 65 4f 66 2e 63 61 6c 6c 28 52 65 66 6c 65 63 74 2e 63 6f 6e 73 74 72 75 63 74 28 42 6f 6f 6c 65 61 6e 2c 5b 5d 2c 28 66 75 6e 63 74 69 6f 6e 28 29 7b 7d 29 29 29 2c 21 30 7d 63 61 74 63 68 28 65 29 7b 72 65 74 75 72 6e 21 31 7d 7d 28 29 3b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 29 7b 76 61 72 20 6e 2c 72 3d 69 61 28 65 29 3b 69 66 28 74 29 7b 76 61 72 20 6f 3d 69 61 28 74 68 69 73 29 2e 63 6f 6e 73 74 72 75 63 74 6f 72 3b 6e 3d 52 65 66 6c 65 63 74 2e 63 6f 6e 73 74 72 75 63 74 28 72 2c 61 72 67 75 6d 65 6e 74 73 2c 6f 29 7d 65 6c 73 65 20 6e 3d 72 2e 61 70 70 6c 79 28 74 68 69 73 Data Ascii: =typeof Proxy)return!0;try{return Boolean.prototype.valueOf.call(Reflect.construct(Boolean,[],(function(){}))),!0}catch(e){return!1}}();return function(){var n,r=ia(e);if(t){var o=ia(this).constructor;n=Reflect.construct(r,arguments,o)}else n=r.apply(this