Windows Analysis Report
https://inst.ar-workflow.net/lt/2251799867188510/JQR2lo4Cc_NHJq47gFNl3

Phishing

Source: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-payments

HTTP Parser: Total embedded SVG size: 120729

Source: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-payments	HTTP Parser: No favicon
Source: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-payments	HTTP Parser: No favicon

Compliance

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.16:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.16:50079 version: TLS 1.2

Networking

Source: global traffic

TCP traffic: 192.168.2.16:49830 -> 1.1.1.1:53

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

HTTP traffic: Redirect from: inst.ar-workflow.net to https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-payments

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 4.245.163.56
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108

Source: global traffic	HTTP traffic detected: GET /lt/2251799867188510/JQR2lo4Cc_NHJq47gFNl3 HTTP/1.1Host: inst.ar-workflow.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /blog/outsmart-the-mortgage-companies-controlling-your-payments HTTP/1.1Host: arworkflow.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/template_assets/177487480661/1725422087547/AR-Theme-2024/css/layout.min.css HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/template_assets/177481859409/1726496422419/AR-Theme-2024/css/style.min.css HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/template_assets/178036665861/1727108138341/AR-Theme-2024/css/animate.min.css HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/template_assets/178030220046/1725962487825/AR-Theme-2024/css/custom-animations.min.css HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/template_assets/178475130641/1726402328276/AR-Theme-2024/css/inner-page-optional.min.css HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hub/-1/hub_generated/module_assets/-2712622/1729872025158/module_-2712622_Site_search_input.min.css HTTP/1.1Host: cdn2.hubspot.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hub/-1/hub_generated/module_assets/-2712622/1729872024481/module_-2712622_Site_search_input.min.js HTTP/1.1Host: cdn2.hubspot.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/6.6.0/css/all.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://arworkflow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: styleAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /in.js HTTP/1.1Host: platform.linkedin.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/cos-i18n/static-1.53/bundles/project.js HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/module_assets/177879754259/1729173955460/module_177879754259_Header.min.js HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/module_assets/178513499533/1727357736126/module_178513499533_Blog-Sidebar.min.js HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hub/-1/hub_generated/module_assets/-2712622/1729872024481/module_-2712622_Site_search_input.min.js HTTP/1.1Host: cdn2.hubspot.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/cos-i18n/static-1.53/bundles/project.js HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/module_assets/178513499533/1727357736126/module_178513499533_Blog-Sidebar.min.js HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/module_assets/177879754259/1729173955460/module_177879754259_Header.min.js HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /ajax/libs/wow/1.1.2/wow.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://arworkflow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /in.js HTTP/1.1Host: platform.linkedin.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/wow/1.1.2/wow.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content-cwv-embed/static-1.1293/embed.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs/scriptloader/23934932.js HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /content-cwv-embed/static-1.1293/embed.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs/scriptloader/23934932.js HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/HubspotToolsMenu/static-1.354/js/index.js HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://arworkflow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs/hsstatic/HubspotToolsMenu/static-1.354/js/index.js HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/template_assets/178035676041/1727342357050/AR-Theme-2024/js/script.min.js HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /hs-fs/hub/23934932/hub_generated/template_assets/178035676041/1727342357050/AR-Theme-2024/js/script.min.js HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=mZVVZ+Btc5G9dnX&MD=ev5AWm7x HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /hubfs/banner-shape-1.png HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /hs-fs/hubfs/Cover-1.png?width=1920&height=1080&name=Cover-1.png HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /widget.js HTTP/1.1Host: app.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs-fs/hubfs/2.1.png?width=1920&height=1080&name=2.1.png HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /web-interactives-embed.js HTTP/1.1Host: js.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://arworkflow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fb.js HTTP/1.1Host: js.hsadspixel.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /content-tools-menu/api/v1/tools-menu/has-permission-json?portalId=23934932 HTTP/1.1Host: app.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://arworkflow.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analytics/1730184300000/23934932.js HTTP/1.1Host: js.hs-analytics.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v2/23934932/banner.js HTTP/1.1Host: js.hs-banner.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collectedforms.js HTTP/1.1Host: js.hscollectedforms.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://arworkflow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/6.6.0/webfonts/fa-brands-400.woff2 HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://arworkflow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.6.0/css/all.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_GB/sdk.js HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widgets.js HTTP/1.1Host: platform.twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /conversations-embed.js HTTP/1.1Host: js.usemessages.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fb.js HTTP/1.1Host: js.hsadspixel.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hubfs/banner-shape-1.png HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /web-interactives-embed.js HTTP/1.1Host: js.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=E4BdkrAAva6bL7ljphlgGLeBwUeIffPI8w.lOkkR1bY-1730184577-1.0.1.1-O.W9PAjBc4Q6AyvRnvdnE3yuZLHClLdoP6QCyOQPyXktm.skr4jxk_0V3Ey5pP9ETrTDzpfIaF9.M17oMM8pWQ; _cfuvid=Z6lgpqmYVlv7ypYG6lYD.8Az9vZx4Hni61Bu146ZqD4-1730184577294-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /web-interactives/public/v1/embed/combinedConfigs?portalId=23934932&currentUrl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&contentId=180952696982 HTTP/1.1Host: cta-service-cms2.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://arworkflow.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collectedforms.js HTTP/1.1Host: js.hscollectedforms.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /analytics/1730184300000/23934932.js HTTP/1.1Host: js.hs-analytics.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widget.js HTTP/1.1Host: app.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collected-forms/v1/config/json?portalId=23934932&utk= HTTP/1.1Host: forms.hscollectedforms.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: application/json, text/plain, */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://arworkflow.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v2/23934932/banner.js HTTP/1.1Host: js.hs-banner.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /v2/cf-location HTTP/1.1Host: js.hs-banner.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://arworkflow.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=23934932 HTTP/1.1Host: api.hubapi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://arworkflow.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_GB/sdk.js?hash=47cf37bf738cfb7e9e1439453992e7e5 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://arworkflow.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_GB/sdk.js HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs-fs/hubfs/2.1.png?width=1920&height=1080&name=2.1.png HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /656e09cfb1fb741dd239.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /923fcc461af36b78bb0e.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widgets.js HTTP/1.1Host: platform.twitter.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widgets/widget_iframe.2f70fb173b9000da126c79afe2098f02.html?origin=https%3A%2F%2Farworkflow.com HTTP/1.1Host: platform.twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=config-loaded-success&value=1 HTTP/1.1Host: perf-na1.hsforms.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /collected-forms/v1/config/json?portalId=23934932&utk= HTTP/1.1Host: forms.hscollectedforms.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /web-interactives/public/v1/embed/combinedConfigs?portalId=23934932&currentUrl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&contentId=180952696982 HTTP/1.1Host: cta-service-cms2.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=E4BdkrAAva6bL7ljphlgGLeBwUeIffPI8w.lOkkR1bY-1730184577-1.0.1.1-O.W9PAjBc4Q6AyvRnvdnE3yuZLHClLdoP6QCyOQPyXktm.skr4jxk_0V3Ey5pP9ETrTDzpfIaF9.M17oMM8pWQ; _cfuvid=Z6lgpqmYVlv7ypYG6lYD.8Az9vZx4Hni61Bu146ZqD4-1730184577294-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /_hcms/livechat/widget?portalId=23934932&conversations-embed=static-1.18435&mobile=false&messagesUtk=5a606edb54274a14a60cdad6488289ee&traceId=5a606edb54274a14a60cdad6488289ee HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0X-HubSpot-Messages-Uri: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /conversations-embed.js HTTP/1.1Host: js.usemessages.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs-fs/hubfs/Cover-1.png?width=1920&height=1080&name=Cover-1.png HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /v2/cf-location HTTP/1.1Host: js.hs-banner.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=23934932 HTTP/1.1Host: api.hubapi.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /656e09cfb1fb741dd239.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /e73162c54c75739f51aa.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /923fcc461af36b78bb0e.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /embed/v3/counters.gif?key=config-loaded-success&value=1 HTTP/1.1Host: perf-na1.hsforms.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=.CvE05l4rgRDKH6CR41oXLAWcMebJSzuXR8pKM7YscI-1730184579-1.0.1.1-DLCTwXSSFZW66LVlq44K2hc5E3MvvqHj3UcSnrFO7yMo1HIn.b1pLUXTNer8u8K7RT7Tr5k2dwcAo6Av2aRSfA; _cfuvid=_91KNMF_B3iBiFXqcT4cps7D7hbgw1NTxCSbnimeVKA-1730184579150-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /_hcms/livechat/widget?portalId=23934932&conversations-embed=static-1.18435&mobile=false&messagesUtk=5a606edb54274a14a60cdad6488289ee&traceId=5a606edb54274a14a60cdad6488289ee HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561
Source: global traffic	HTTP traffic detected: GET /en_GB/sdk.js?hash=47cf37bf738cfb7e9e1439453992e7e5 HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /conversations-visitor/23934932/threads/utk/5a606edb54274a14a60cdad6488289ee?uuid=c832a4f937624fb99271b01bd9b2e240&mobile=false&mobileSafari=false&hideWelcomeMessage=false&hstc=&domain=arworkflow.com&inApp53=false&messagesUtk=5a606edb54274a14a60cdad6488289ee&url=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&inline=false&isFullscreen=false&globalCookieOptOut=&isFirstVisitorSession=true&isAttachmentDisabled=false&isInitialInputFocusDisabled=false&enableWidgetCookieBanner=false&isInCMS=true&hideScrollToButton=true&isIOSMobile=false HTTP/1.1Host: app.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=E4BdkrAAva6bL7ljphlgGLeBwUeIffPI8w.lOkkR1bY-1730184577-1.0.1.1-O.W9PAjBc4Q6AyvRnvdnE3yuZLHClLdoP6QCyOQPyXktm.skr4jxk_0V3Ey5pP9ETrTDzpfIaF9.M17oMM8pWQ; _cfuvid=Z6lgpqmYVlv7ypYG6lYD.8Az9vZx4Hni61Bu146ZqD4-1730184577294-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /tag/o4qtj2rn0f?ref=gtm2 HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/ZWLWYSKCEZCYLDJQ6YYCBH/roundtrip.js HTTP/1.1Host: s.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widget/gi4hufxh HTTP/1.1Host: widget.intercom.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings?session_id=29bafbb5cd520cc264b3a73a9fb0575b49410c1e HTTP/1.1Host: syndication.twitter.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://platform.twitter.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://platform.twitter.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /e73162c54c75739f51aa.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /8c2b272dbba8ee1a3487.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /conversations-visitor-ui/static-1.20154/sass/visitor.css HTTP/1.1Host: static.hsappstatic.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://app.hubspot.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /head-dlb/static-1.1160/bundle.production.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://app.hubspot.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://app.hubspot.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/16671866030?random=1730184579040&cv=11&fst=1730184579040&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4ao0za200zb897561895&gcd=13r3r3r3r5l1&dma=0&tag_exp=101533421~101823848~101925629&u_w=1280&u_h=1024&url=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&hn=www.googleadservices.com&frm=0&tiba=Outsmart%20The%20Mortgage%20Companies%20Controlling%20Your%20Payments&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=474054201.1730184578&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEIucrNAQiJ080BGMvYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tag/o4qtj2rn0f?ref=gtm2 HTTP/1.1Host: www.clarity.msConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CLID=7c3a0fb796e94d3cbfd3e8b065b6473a.20241029.20251029
Source: global traffic	HTTP traffic detected: GET /hubspot-dlb/static-1.1019/bundle.production.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://app.hubspot.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://app.hubspot.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /conversations-visitor-ui/static-1.20884/bundles/visitor.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://app.hubspot.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://app.hubspot.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /93f8d496fd04dfebb2d0.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /settings?session_id=29bafbb5cd520cc264b3a73a9fb0575b49410c1e HTTP/1.1Host: syndication.twitter.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /5d8ad1d5ce912f828b32.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /21e16d56ee6dec1e3533.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /head-dlb/static-1.1160/bundle.production.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /9ecb6724a5154f4f8dfe.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/ga/rul?tid=G-L3R6ZK487J&gacid=1081222419.1730184580&gtm=45je4ao0v9195778753z8897561895za200zb897561895&dma=0&gcs=G111&gcd=13r3r3r3r5l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=101533422~101823848~101878898~101878942~101925629&z=548078898 HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEIucrNAQiJ080BGMvYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1d47e7a555210ba4efbe.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widget/gi4hufxh HTTP/1.1Host: widget.intercom.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/0.7.49/clarity.js HTTP/1.1Host: www.clarity.msConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CLID=7c3a0fb796e94d3cbfd3e8b065b6473a.20241029.20251029
Source: global traffic	HTTP traffic detected: GET /8c2b272dbba8ee1a3487.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/16671866030/?random=1730184579040&cv=11&fst=1730184579040&bg=ffffff&guid=ON&async=1&gtm=45be4ao0za200zb897561895&gcd=13r3r3r3r5l1&dma=0&tag_exp=101533421~101823848~101925629&u_w=1280&u_h=1024&url=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&hn=www.googleadservices.com&frm=0&tiba=Outsmart%20The%20Mortgage%20Companies%20Controlling%20Your%20Payments&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=474054201.1730184578&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEIucrNAQiJ080BGMvYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /2c4c1c56ed0dc24d2aa1.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /j/ZWLWYSKCEZCYLDJQ6YYCBH/roundtrip.js HTTP/1.1Host: s.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /hubspot-dlb/static-1.1019/bundle.production.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/ga/rul?tid=G-YRY62SQ4X5&gacid=1081222419.1730184580&gtm=45je4ao0v9128917778z8897561895za200zb897561895&dma=0&gcs=G111&gcd=13r3r3r3r5l1&npa=0&pscdl=noapi&aip=1&fledge=1&frm=0&tag_exp=101533422~101823848~101925629&z=999774649 HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEIucrNAQiJ080BGMvYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /93f8d496fd04dfebb2d0.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /9704e2352970d44be2e7.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /5d8ad1d5ce912f828b32.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /5a02e2251cf25fa5d1a0.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/0.7.49/clarity.js HTTP/1.1Host: www.clarity.msConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CLID=7c3a0fb796e94d3cbfd3e8b065b6473a.20241029.20251029
Source: global traffic	HTTP traffic detected: GET /21e16d56ee6dec1e3533.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /signals/config/1459699124861574?v=2.9.174&r=stable&domain=arworkflow.com&hme=ead923021ccd3483ef3b9b04703d0a78b943fbdc01e8d7cec21c5059f1f4a5e9&ex_m=70%2C121%2C107%2C111%2C61%2C4%2C100%2C69%2C16%2C97%2C89%2C51%2C54%2C172%2C175%2C187%2C183%2C184%2C186%2C29%2C101%2C53%2C77%2C185%2C167%2C170%2C180%2C181%2C188%2C131%2C41%2C189%2C190%2C34%2C143%2C15%2C50%2C194%2C193%2C133%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C93%2C17%2C14%2C96%2C92%2C91%2C108%2C52%2C110%2C39%2C109%2C30%2C94%2C26%2C168%2C171%2C140%2C86%2C56%2C84%2C33%2C73%2C0%2C95%2C32%2C28%2C82%2C83%2C88%2C47%2C46%2C87%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C102%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C104%2C103%2C105%2C98%2C10%2C20%2C3%2C38%2C74%2C19%2C5%2C90%2C81%2C44%2C35%2C85%2C2%2C36%2C63%2C42%2C106%2C45%2C79%2C68%2C112%2C60%2C59%2C31%2C99%2C58%2C55%2C49%2C78%2C72%2C24%2C113 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /frame.c56adb59.js HTTP/1.1Host: js.intercomcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /9ecb6724a5154f4f8dfe.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/16671866030/?random=1730184579040&cv=11&fst=1730181600000&bg=ffffff&guid=ON&async=1&gtm=45be4ao0za200zb897561895&gcd=13r3r3r3r5l1&dma=0&tag_exp=101533421~101823848~101925629&u_w=1280&u_h=1024&url=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&hn=www.googleadservices.com&frm=0&tiba=Outsmart%20The%20Mortgage%20Companies%20Controlling%20Your%20Payments&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=474054201.1730184578&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCa7L7djSCByk5vl6eQmz7fa300wzbXgHhLdggXziwabwd6LHr_7dxm&random=2562305309&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEIucrNAQiJ080BGMvYzQEY642lFw==Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vendor.802859e7.js HTTP/1.1Host: js.intercomcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1d47e7a555210ba4efbe.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/16671866030/?random=1730184579040&cv=11&fst=1730184579040&bg=ffffff&guid=ON&async=1&gtm=45be4ao0za200zb897561895&gcd=13r3r3r3r5l1&dma=0&tag_exp=101533421~101823848~101925629&u_w=1280&u_h=1024&url=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&hn=www.googleadservices.com&frm=0&tiba=Outsmart%20The%20Mortgage%20Companies%20Controlling%20Your%20Payments&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=474054201.1730184578&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEIucrNAQiJ080BGMvYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUlIaAFHi-HbTVAJA1ARIZJ-gOizYvBu_toJo04b2sfl4GbyJRYQBXaZJNwG
Source: global traffic	HTTP traffic detected: GET /2c4c1c56ed0dc24d2aa1.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/check/ZWLWYSKCEZCYLDJQ6YYCBH?flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&_s=11c206c713005b0e5b8a422d4b30686d&_b=2 HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /9704e2352970d44be2e7.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/webinar/16736/page-data.json HTTP/1.1Host: arworkflow.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://arworkflow.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /conversations-visitor-ui/static-1.20884/bundles/visitor.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /5a02e2251cf25fa5d1a0.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /conversations-visitor-ui/static-1.9449/audio/notification.mp3 HTTP/1.1Host: static.hsappstatic.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept-Encoding: identity;q=1, *;q=0sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: audioReferer: https://app.hubspot.com/Accept-Language: en-US,en;q=0.9Range: bytes=0-
Source: global traffic	HTTP traffic detected: GET /conversations-visitor-ui/static-1.20866/i18n-data-data-locales-en-us.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://app.hubspot.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://app.hubspot.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1644d07d107c9cae76df.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/16671866030/?random=1730184579040&cv=11&fst=1730181600000&bg=ffffff&guid=ON&async=1&gtm=45be4ao0za200zb897561895&gcd=13r3r3r3r5l1&dma=0&tag_exp=101533421~101823848~101925629&u_w=1280&u_h=1024&url=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&hn=www.googleadservices.com&frm=0&tiba=Outsmart%20The%20Mortgage%20Companies%20Controlling%20Your%20Payments&did=dZTQ1Zm&gdid=dZTQ1Zm&npa=0&pscdl=noapi&auid=474054201.1730184578&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCa7L7djSCByk5vl6eQmz7fa300wzbXgHhLdggXziwabwd6LHr_7dxm&random=2562305309&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CIu2yQEIprbJAQipncoBCLbgygEIlKHLAQj2mM0BCIWgzQEIucrNAQiJ080BGMvYzQEY642lFw==Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /segment/ZWLWYSKCEZCYLDJQ6YYCBH/XKBLRDIYQ5FWFO6ZXXABGZ?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&cookie=&adroll_s_ref=&keyw=&p0=20579&adroll_external_data=&xa4=1&adroll_version=2.0 HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://arworkflow.comSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /cm/b/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /cm/experian/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /cm/g/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /pxl/iframe_content.html?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: x.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /cm/index/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /cm/l/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /consent/check/ZWLWYSKCEZCYLDJQ6YYCBH?flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&_s=11c206c713005b0e5b8a422d4b30686d&_b=2 HTTP/1.1Host: d.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /signals/config/1459699124861574?v=2.9.174&r=stable&domain=arworkflow.com&hme=ead923021ccd3483ef3b9b04703d0a78b943fbdc01e8d7cec21c5059f1f4a5e9&ex_m=70%2C121%2C107%2C111%2C61%2C4%2C100%2C69%2C16%2C97%2C89%2C51%2C54%2C172%2C175%2C187%2C183%2C184%2C186%2C29%2C101%2C53%2C77%2C185%2C167%2C170%2C180%2C181%2C188%2C131%2C41%2C189%2C190%2C34%2C143%2C15%2C50%2C194%2C193%2C133%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C93%2C17%2C14%2C96%2C92%2C91%2C108%2C52%2C110%2C39%2C109%2C30%2C94%2C26%2C168%2C171%2C140%2C86%2C56%2C84%2C33%2C73%2C0%2C95%2C32%2C28%2C82%2C83%2C88%2C47%2C46%2C87%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C102%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C104%2C103%2C105%2C98%2C10%2C20%2C3%2C38%2C74%2C19%2C5%2C90%2C81%2C44%2C35%2C85%2C2%2C36%2C63%2C42%2C106%2C45%2C79%2C68%2C112%2C60%2C59%2C31%2C99%2C58%2C55%2C49%2C78%2C72%2C24%2C113 HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /conversations-visitor-ui/static-1.20866/i18n-data-data-locales-en-us.js HTTP/1.1Host: static.hsappstatic.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /page-data/webinar/16736/page-data.json HTTP/1.1Host: arworkflow.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=1459699124861574&ev=Lead&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184583188&sw=1280&sh=1024&v=2.9.174&r=stable&a=tmgoogletagmanager&ec=1&o=4126&fbp=fb.1.1730184583185.335433430224490723&cs_est=true&est_source=1188539805541237&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&es=automatic&tm=3&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=1459699124861574&ev=Lead&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184583188&sw=1280&sh=1024&v=2.9.174&r=stable&a=tmgoogletagmanager&ec=1&o=4126&fbp=fb.1.1730184583185.335433430224490723&cs_est=true&est_source=1188539805541237&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&es=automatic&tm=3&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, triggerReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /frame.c56adb59.js HTTP/1.1Host: js.intercomcdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /vendor.802859e7.js HTTP/1.1Host: js.intercomcdn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=1459699124861574&ev=PageView&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184583190&sw=1280&sh=1024&v=2.9.174&r=stable&a=tmgoogletagmanager&ec=0&o=4126&fbp=fb.1.1730184583185.335433430224490723&cs_est=true&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=1459699124861574&ev=PageView&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184583190&sw=1280&sh=1024&v=2.9.174&r=stable&a=tmgoogletagmanager&ec=0&o=4126&fbp=fb.1.1730184583185.335433430224490723&cs_est=true&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger;navigation-sourceReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1644d07d107c9cae76df.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /idsync/ex/receive?partner_id=3521&partner_device_id=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&gdpr=0&gdpr_consent= HTTP/1.1Host: pixel.tapad.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /segment/ZWLWYSKCEZCYLDJQ6YYCBH/XKBLRDIYQ5FWFO6ZXXABGZ?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&cookie=&adroll_s_ref=&keyw=&p0=20579&adroll_external_data=&xa4=1&adroll_version=2.0 HTTP/1.1Host: d.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /api/1/store/?sentry_version=7&sentry_client=raven-js%2F3.19.1&sentry_key=&isPageEvent=true HTTP/1.1Host: exceptions.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=E4BdkrAAva6bL7ljphlgGLeBwUeIffPI8w.lOkkR1bY-1730184577-1.0.1.1-O.W9PAjBc4Q6AyvRnvdnE3yuZLHClLdoP6QCyOQPyXktm.skr4jxk_0V3Ey5pP9ETrTDzpfIaF9.M17oMM8pWQ; _cfuvid=Z6lgpqmYVlv7ypYG6lYD.8Az9vZx4Hni61Bu146ZqD4-1730184577294-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /sync?dsp_id=44&user_id=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=105&external_user_id=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&expiration=1761720585 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_sc&google_nid=artb&google_hm=mrlQLY4gOjsmY796n7-T-Q HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUl54XIh1e7-NpslS4gCtQUNBX5jqo_wn4Lb5ZzRro6tYVyPytPXVXozvlS1
Source: global traffic	HTTP traffic detected: GET /377928.gif?partner_uid=9ab9502d8e203a3b2663bf7a9fbf93f9 HTTP/1.1Host: idsync.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /igs?advertisable=ZWLWYSKCEZCYLDJQ6YYCBH&fpc=ecaa00522efe734e1ee8791edd902009 HTTP/1.1Host: x.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://x.adroll.com/pxl/iframe_content.html?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBHAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /cm/n/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /tr/?id=1459699124861574&ev=Lead&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184583188&sw=1280&sh=1024&v=2.9.174&r=stable&a=tmgoogletagmanager&ec=1&o=4126&fbp=fb.1.1730184583185.335433430224490723&cs_est=true&est_source=1188539805541237&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&es=automatic&tm=3&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /messenger/web/launcher_settings HTTP/1.1Host: api-iam.intercom.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /idsync/ex/receive/check?partner_id=3521&partner_device_id=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&gdpr=0&gdpr_consent= HTTP/1.1Host: pixel.tapad.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TapAd_TS=1730184586115; TapAd_DID=2d0f04cf-5a32-4911-bfc3-b23daa0f6cd3
Source: global traffic	HTTP traffic detected: GET /tr/?id=1459699124861574&ev=PageView&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184583190&sw=1280&sh=1024&v=2.9.174&r=stable&a=tmgoogletagmanager&ec=0&o=4126&fbp=fb.1.1730184583185.335433430224490723&cs_est=true&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=1459699124861574&ev=Lead&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184583188&sw=1280&sh=1024&v=2.9.174&r=stable&a=tmgoogletagmanager&ec=1&o=4126&fbp=fb.1.1730184583185.335433430224490723&cs_est=true&est_source=1188539805541237&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&es=automatic&tm=3&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /signals/config/1203525713178953?v=2.9.174&r=stable&domain=arworkflow.com&hme=ead923021ccd3483ef3b9b04703d0a78b943fbdc01e8d7cec21c5059f1f4a5e9&ex_m=70%2C121%2C107%2C111%2C61%2C4%2C100%2C69%2C16%2C97%2C89%2C51%2C54%2C172%2C175%2C187%2C183%2C184%2C186%2C29%2C101%2C53%2C77%2C185%2C167%2C170%2C180%2C181%2C188%2C131%2C41%2C189%2C190%2C34%2C143%2C15%2C50%2C194%2C193%2C133%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C93%2C17%2C14%2C96%2C92%2C91%2C108%2C52%2C110%2C39%2C109%2C30%2C94%2C26%2C168%2C171%2C140%2C86%2C56%2C84%2C33%2C73%2C0%2C95%2C32%2C28%2C82%2C83%2C88%2C47%2C46%2C87%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C102%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C104%2C103%2C105%2C98%2C10%2C20%2C3%2C38%2C74%2C19%2C5%2C90%2C81%2C44%2C35%2C85%2C2%2C36%2C63%2C42%2C106%2C45%2C79%2C68%2C112%2C60%2C59%2C31%2C99%2C58%2C55%2C49%2C78%2C72%2C24%2C113%2C200%2C199%2C201%2C206%2C207%2C208%2C204%2C196%2C132%2C134%2C163%2C195%2C197%2C122%2C157%2C145%2C151%2C129%2C232%2C116%2C126%2C127%2C233%2C165%2C119%2C235%2C166%2C136%2C123%2C154%2C148%2C114%2C128 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /attribution/trigger?fpc=ecaa00522efe734e1ee8791edd902009&advertisable_eid=ZWLWYSKCEZCYLDJQ6YYCBH&conversion_type=PageView&conversion_value=0.0&currency=USC&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments HTTP/1.1Host: x.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=105&external_user_id=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&expiration=1761720585&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=ZyCFisAoIn0AAD.SAWIX7QAA; CMPS=2636; CMPRO=2636
Source: global traffic	HTTP traffic detected: GET /messenger/web/ping HTTP/1.1Host: api-iam.intercom.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pubsub/5-qDgxHR9nyQrqaI7KKPCixIHEzSXqAovpj6TJQvQW9XFkUQFxIBm3ch5Gtgt4__oCHp13AQVTXW0TfBpJM-9X1OsUu0OPrjjxTQeB?X-Nexus-New-Client=true&X-Nexus-Version=0.14.0&user_role=visitor HTTP/1.1Host: nexus-websocket-a.intercom.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://arworkflow.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: +XSZGoyA9p5v2bRCfU7CgA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=1459699124861574&ev=PageView&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184583190&sw=1280&sh=1024&v=2.9.174&r=stable&a=tmgoogletagmanager&ec=0&o=4126&fbp=fb.1.1730184583185.335433430224490723&cs_est=true&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /1000.gif?memo=CMiIFxIrCicIARDqIhogOWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjkQABoNCIqLgrkGEgUI6AcQAEIASgA HTTP/1.1Host: idsync.rlcdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: rlas3=cAwHiAfZxDAxZKKSjj6OKG0dT3xIClEpDrfHu5a73NM=; pxrc=CAA=
Source: global traffic	HTTP traffic detected: GET /63d758d13f0b5081e9f5.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /v1/visitors HTTP/1.1Host: api.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /cm/g/in HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?dsp_id=44&user_id=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=0b327e64-4fa0-4c38-8014-7d639e5680f1; c=1730184586; tuuid_lu=1730184586
Source: global traffic	HTTP traffic detected: GET /igs?advertisable=ZWLWYSKCEZCYLDJQ6YYCBH&fpc=ecaa00522efe734e1ee8791edd902009 HTTP/1.1Host: x.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1
Source: global traffic	HTTP traffic detected: GET /track/cmf/generic?ttd_pid=tapad&ttd_tpi=1&ttd_puid=2d0f04cf-5a32-4911-bfc3-b23daa0f6cd3%252C%252C&gdpr=0&gdpr_consent= HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=105&external_user_id=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&expiration=1761720585&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=ZyCFisAoIn0AAD.SAWIX7QAA; CMPS=2636; CMPRO=2636
Source: global traffic	HTTP traffic detected: GET /api/sync?pid=5324&it=1&iv=47b52ec275fd6d4024890d0cb5844372647c424c08c8a504bfcc716912e09665791426b5417dce21&_=2 HTTP/1.1Host: pippio.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm/o/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584
Source: global traffic	HTTP traffic detected: GET /attribution/trigger?fpc=ecaa00522efe734e1ee8791edd902009&advertisable_eid=ZWLWYSKCEZCYLDJQ6YYCBH&conversion_type=PageView&conversion_value=0.0&currency=USC&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments HTTP/1.1Host: x.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-a_1730184584; receive-cookie-deprecation=1; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /17c15bf95b9b42fa3e9d.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /38e1d07eeaf7e90ac25a.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /cm/outbrain/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584
Source: global traffic	HTTP traffic detected: GET /cm/g/in HTTP/1.1Host: d.adroll.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584
Source: global traffic	HTTP traffic detected: GET /63d758d13f0b5081e9f5.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /cm/pubmatic/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?dsp_id=44&user_id=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk HTTP/1.1Host: x.bidswitch.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=0b327e64-4fa0-4c38-8014-7d639e5680f1; c=1730184586; tuuid_lu=1730184587
Source: global traffic	HTTP traffic detected: GET /tr/?id=1203525713178953&ev=PageView&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184586511&cd[segment_eid]=TUT3HTY75FAUPFVVDGKZ3S&sw=1280&sh=1024&v=2.9.174&r=stable&ec=0&o=4125&fbp=fb.1.1730184583185.335433430224490723&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /signals/config/1203525713178953?v=2.9.174&r=stable&domain=arworkflow.com&hme=ead923021ccd3483ef3b9b04703d0a78b943fbdc01e8d7cec21c5059f1f4a5e9&ex_m=70%2C121%2C107%2C111%2C61%2C4%2C100%2C69%2C16%2C97%2C89%2C51%2C54%2C172%2C175%2C187%2C183%2C184%2C186%2C29%2C101%2C53%2C77%2C185%2C167%2C170%2C180%2C181%2C188%2C131%2C41%2C189%2C190%2C34%2C143%2C15%2C50%2C194%2C193%2C133%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C93%2C17%2C14%2C96%2C92%2C91%2C108%2C52%2C110%2C39%2C109%2C30%2C94%2C26%2C168%2C171%2C140%2C86%2C56%2C84%2C33%2C73%2C0%2C95%2C32%2C28%2C82%2C83%2C88%2C47%2C46%2C87%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C102%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C104%2C103%2C105%2C98%2C10%2C20%2C3%2C38%2C74%2C19%2C5%2C90%2C81%2C44%2C35%2C85%2C2%2C36%2C63%2C42%2C106%2C45%2C79%2C68%2C112%2C60%2C59%2C31%2C99%2C58%2C55%2C49%2C78%2C72%2C24%2C113%2C200%2C199%2C201%2C206%2C207%2C208%2C204%2C196%2C132%2C134%2C163%2C195%2C197%2C122%2C157%2C145%2C151%2C129%2C232%2C116%2C126%2C127%2C233%2C165%2C119%2C235%2C166%2C136%2C123%2C154%2C148%2C114%2C128 HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmb/generic?ttd_pid=tapad&ttd_tpi=1&ttd_puid=2d0f04cf-5a32-4911-bfc3-b23daa0f6cd3%252C%252C&gdpr=0&gdpr_consent= HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=b111dbe4-ff0a-4601-9716-4d1a0d6f3808; TDCPM=CAEYBSgCMgsI4pWRxpP8uz0QBTgB
Source: global traffic	HTTP traffic detected: GET /w/1.0/sd?id=537103138&val=9ab9502d8e203a3b2663bf7a9fbf93f9&gdpr=0&gdpr_consent= HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm/r/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584
Source: global traffic	HTTP traffic detected: GET /17c15bf95b9b42fa3e9d.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=1203525713178953&ev=PageView&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184586511&cd[segment_eid]=TUT3HTY75FAUPFVVDGKZ3S&sw=1280&sh=1024&v=2.9.174&r=stable&ec=0&o=4125&fbp=fb.1.1730184583185.335433430224490723&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookie-sync?p=adroll&uid=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1Host: sync.outbrain.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /idsync/ex/receive?partner_id=1830&partner_device_id=b111dbe4-ff0a-4601-9716-4d1a0d6f3808&ttd_puid=2d0f04cf-5a32-4911-bfc3-b23daa0f6cd3%2C%2C HTTP/1.1Host: pixel.tapad.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TapAd_TS=1730184586115; TapAd_DID=2d0f04cf-5a32-4911-bfc3-b23daa0f6cd3; TapAd_3WAY_SYNCS=
Source: global traffic	HTTP traffic detected: GET /38e1d07eeaf7e90ac25a.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /93683fb58639dbd5c6ff.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /w/1.0/sd?cc=1&id=537103138&val=9ab9502d8e203a3b2663bf7a9fbf93f9&gdpr=0&gdpr_consent= HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=02a6c050-a8c5-48cc-99b0-517240d53bbc|1730184589
Source: global traffic	HTTP traffic detected: GET /a1f1302f24b3d16e81a0.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /tr/?id=1203525713178953&ev=PageView&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184586511&cd[segment_eid]=TUT3HTY75FAUPFVVDGKZ3S&sw=1280&sh=1024&v=2.9.174&r=stable&ec=0&o=4125&fbp=fb.1.1730184583185.335433430224490723&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzMDYmdGw9MTI5NjAw&piggybackCookie=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&gdpr=0&gdpr_consent=BOOoKswOOoKswA2ABBENAkwAAAAXyACACYAIIA HTTP/1.1Host: image2.pubmatic.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm/taboola/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584
Source: global traffic	HTTP traffic detected: GET /ups/55980/sync?_origin=1&uid=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&gdpr=0&gdpr_consent=BOOla_OOOla_OA2ABBENAkwAAAAXyACAAyAIIA HTTP/1.1Host: ups.analytics.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /w/1.0/sd?cc=1&id=537103138&val=9ab9502d8e203a3b2663bf7a9fbf93f9&gdpr=0&gdpr_consent= HTTP/1.1Host: us-u.openx.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=02a6c050-a8c5-48cc-99b0-517240d53bbc|1730184589
Source: global traffic	HTTP traffic detected: GET /idsync/ex/receive?partner_id=1830&partner_device_id=b111dbe4-ff0a-4601-9716-4d1a0d6f3808&ttd_puid=2d0f04cf-5a32-4911-bfc3-b23daa0f6cd3%2C%2C HTTP/1.1Host: pixel.tapad.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TapAd_TS=1730184586115; TapAd_DID=2d0f04cf-5a32-4911-bfc3-b23daa0f6cd3; TapAd_3WAY_SYNCS=1!7278
Source: global traffic	HTTP traffic detected: GET /cookie-sync?p=adroll&uid=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&gdpr=0&gdpr_consent=&us_privacy=1--- HTTP/1.1Host: sync.outbrain.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm/triplelift/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=1203525713178953&ev=PageView&dl=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&rl=&if=false&ts=1730184586511&cd[segment_eid]=TUT3HTY75FAUPFVVDGKZ3S&sw=1280&sh=1024&v=2.9.174&r=stable&ec=0&o=4125&fbp=fb.1.1730184583185.335433430224490723&ler=empty&cdl=API_unavailable&it=1730184579956&coo=false&dpo=LDU&dpoco=0&dpost=0&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d9d033bf19acf275b34b.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /cm/x/out?adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945&flg=1&pv=6352149833.761422&arrfrr=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&advertisable=ZWLWYSKCEZCYLDJQ6YYCBH HTTP/1.1Host: d.adroll.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: receive-cookie-deprecation=1; receive-cookie-deprecation=1; __adroll=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584; __adroll_shared=9ab9502d8e203a3b2663bf7a9fbf93f9-g_1730184587-a_1730184584
Source: global traffic	HTTP traffic detected: GET /e50e143af3381e43817f.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTMzMDYmdGw9MTI5NjAw&piggybackCookie=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&gdpr=0&gdpr_consent=BOOoKswOOoKswA2ABBENAkwAAAAXyACACYAIIA HTTP/1.1Host: image2.pubmatic.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: KRTBCOOKIE_10=22808-OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&KRTB&22883-OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&KRTB&23504-OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&KRTB&23615-OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk; PugT=1730184589
Source: global traffic	HTTP traffic detected: GET /8b2fb5df0644d70c3cd4.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /93683fb58639dbd5c6ff.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /a1f1302f24b3d16e81a0.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /sg/adroll-network/1/rtb-h?taboola_hm=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk HTTP/1.1Host: sync.taboola.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ups/55980/sync?_origin=1&uid=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&gdpr=0&gdpr_consent=BOOla_OOOla_OA2ABBENAkwAAAAXyACAAyAIIA&verify=true HTTP/1.1Host: ups.analytics.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBI6FIGcCECDSaYIQWC-SufMUoNXHOG0FEgEBAQHXIWcqZ9xS0iMA_eMAAA&S=AQAAApcJvUNCX28MmnlZ8sQSyA4
Source: global traffic	HTTP traffic detected: GET /xuid?mid=4714&xuid=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&dongle=c85e HTTP/1.1Host: eb2.3lift.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /d9d033bf19acf275b34b.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /setuid?entity=172&code=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /e50e143af3381e43817f.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /8b2fb5df0644d70c3cd4.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /29a9b9d0350db7dc1163.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /6aa82f50a80c62dc43ef.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /1ae9b2590786c6087e57.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /fa82d510778f38b80e3d.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /46dbe3cc90126c1b8d1d.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /images/Logo/SVG/logo_light_steel_blue.svg HTTP/1.1Host: static.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /8ab8bfa6454fb7aed715.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /xuid?ld=1&mid=4714&xuid=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&dongle=c85e&gdpr=0&cmp_cs=&us_privacy= HTTP/1.1Host: eb2.3lift.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tluidp=1943101940230370322296; tluid=1943101940230370322296
Source: global traffic	HTTP traffic detected: GET /bounce?%2Fsetuid%3Fentity%3D172%26code%3DOWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XANDR_PANID=md-qcJcNUiZi_mA7a1svobLkChfMt5sZ1hlj8S2-qUoNIiO6f0-FI4wLW61NywdURQlQ9adqKsXvo6cQkK0aGLUT4WW1rTWLUeL9TdYy29s.; receive-cookie-deprecation=1; uuid2=8238838219720522441
Source: global traffic	HTTP traffic detected: GET /webinar/16736/register/fast-form/?source=ARW&widgetType=FloatIn HTTP/1.1Host: arworkflow.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /29a9b9d0350db7dc1163.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /e54c6d92df11f7d25d89.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /6aa82f50a80c62dc43ef.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /1ae9b2590786c6087e57.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /fa82d510778f38b80e3d.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /46dbe3cc90126c1b8d1d.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /8ab8bfa6454fb7aed715.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /images/Logo/SVG/logo_light_steel_blue.svg HTTP/1.1Host: static.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /hub/23934932/hubfs/Untitled%20design.png?width=108&height=108 HTTP/1.1Host: 23934932.fs1.hubspotusercontent-na1.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://app.hubspot.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /xuid?ld=1&mid=4714&xuid=OWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk&dongle=c85e&gdpr=0&cmp_cs=&us_privacy= HTTP/1.1Host: eb2.3lift.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tluid=1943101940230370322296
Source: global traffic	HTTP traffic detected: GET /hub/23934932/hubfs/Untitled%20design.png?width=108&height=108 HTTP/1.1Host: 23934932.fs1.hubspotusercontent-na1.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /e54c6d92df11f7d25d89.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /bounce?%2Fsetuid%3Fentity%3D172%26code%3DOWFiOTUwMmQ4ZTIwM2EzYjI2NjNiZjdhOWZiZjkzZjk HTTP/1.1Host: ib.adnxs.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uuid2=8238838219720522441; anj=dTM7k!M4/rD>6NRF']wIg2GTzB3E=:!@wnfH1Ya.O4]7Q=E?ai2cqu3`.rX!hr4-__j]3V`76wXj(]5h32K*10/Zw3%>sk5!S=K^ra_Sp(j#iP(Md+>)fy-)1n`lX
Source: global traffic	HTTP traffic detected: GET /widget.js HTTP/1.1Host: app.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=23934932&pi=180952696982&ct=blog-post&ccu=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&cpi=180952696982&cgi=178474633574&lpi=180952696982&lvi=180952696982&lvc=en&pu=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&t=Outsmart+The+Mortgage+Companies+Controlling+Your+Payments&cts=1730184594711&vi=fe61f55585d101da8915c6b2d8cb9f51&nc=true&u=174299517.fe61f55585d101da8915c6b2d8cb9f51.1730184594706.1730184594706.1730184594706.1&b=174299517.1.1730184594706&cc=15 HTTP/1.1Host: track.hubspot.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=E4BdkrAAva6bL7ljphlgGLeBwUeIffPI8w.lOkkR1bY-1730184577-1.0.1.1-O.W9PAjBc4Q6AyvRnvdnE3yuZLHClLdoP6QCyOQPyXktm.skr4jxk_0V3Ey5pP9ETrTDzpfIaF9.M17oMM8pWQ; _cfuvid=Z6lgpqmYVlv7ypYG6lYD.8Az9vZx4Hni61Bu146ZqD4-1730184577294-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /hubfs/ar-favion-192x192.png HTTP/1.1Host: arworkflow.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561; _gcl_au=1.1.474054201.1730184578; _ga_L3R6ZK487J=GS1.1.1730184580.1.0.1730184580.60.0.0; _ga=GA1.1.1081222419.1730184580; _ga_YRY62SQ4X5=GS1.1.1730184580.1.0.1730184580.60.0.1020750187; _clck=1pjypu0%7C2%7Cfqf%7C0%7C1763; __adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945; __ar_v4=%7CZWLWYSKCEZCYLDJQ6YYCBH%3A20241028%3A1%7CXKBLRDIYQ5FWFO6ZXXABGZ%3A20241028%3A1; _clsk=is91ab%7C1730184583042%7C1%7C1%7Cx.clarity.ms%2Fcollect; _fbp=fb.1.1730184583185.335433430224490723; messagesUtk=5a606edb54274a14a60cdad6488289ee; intercom-id-gi4hufxh=6502c459-0692-43c6-8fdd-2e9231c68b13; intercom-session-gi4hufxh=; intercom-device-id-gi4hufxh=b929b6ac-de82-4493-ab22-ca48a5b58e75; __hstc=174299517.fe61f55585d101da8915c6b2d8cb9f51.1730184594706.1730184594706.1730184594706.1; hubspotutk=fe61f55585d101da8915c6b2d8cb9f51; __hssrc=1; __hssc=174299517.1.1730184594706
Source: global traffic	HTTP traffic detected: GET /widget.js HTTP/1.1Host: app.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7DIf-None-Match: "3f95bab4a241c498ccb9454f47ce9a64"If-Modified-Since: Tue, 15 Oct 2024 13:23:36 GMT
Source: global traffic	HTTP traffic detected: GET /656e09cfb1fb741dd239.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /923fcc461af36b78bb0e.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /hubfs/ar-favion-192x192.png HTTP/1.1Host: arworkflow.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=QadNfVFCObY3b8PRaXvQgB3.7pHrQK0VGfwjqxk3NvQ-1730184561-1.0.1.1-L8j28C8KRFGfNTNvborgj95TzAzNuvl4T2B1u2D.H3lz5P_hWgd4rQ2RQsFBhbJfQMryCntQXAA7ASiUgIa7EQ; __cfruid=3a750b999db241996b6c423a31037c1692bcbc70-1730184561; _gcl_au=1.1.474054201.1730184578; _ga_L3R6ZK487J=GS1.1.1730184580.1.0.1730184580.60.0.0; _ga=GA1.1.1081222419.1730184580; _ga_YRY62SQ4X5=GS1.1.1730184580.1.0.1730184580.60.0.1020750187; _clck=1pjypu0%7C2%7Cfqf%7C0%7C1763; __adroll_fpc=ecaa00522efe734e1ee8791edd902009-1730184582945; __ar_v4=%7CZWLWYSKCEZCYLDJQ6YYCBH%3A20241028%3A1%7CXKBLRDIYQ5FWFO6ZXXABGZ%3A20241028%3A1; _clsk=is91ab%7C1730184583042%7C1%7C1%7Cx.clarity.ms%2Fcollect; _fbp=fb.1.1730184583185.335433430224490723; messagesUtk=5a606edb54274a14a60cdad6488289ee; intercom-id-gi4hufxh=6502c459-0692-43c6-8fdd-2e9231c68b13; intercom-session-gi4hufxh=; intercom-device-id-gi4hufxh=b929b6ac-de82-4493-ab22-ca48a5b58e75; __hstc=174299517.fe61f55585d101da8915c6b2d8cb9f51.1730184594706.1730184594706.1730184594706.1; hubspotutk=fe61f55585d101da8915c6b2d8cb9f51; __hssrc=1; __hssc=174299517.1.1730184594706
Source: global traffic	HTTP traffic detected: GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=471034161&v=1.1&a=23934932&pi=180952696982&ct=blog-post&ccu=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&cpi=180952696982&cgi=178474633574&lpi=180952696982&lvi=180952696982&lvc=en&pu=https%3A%2F%2Farworkflow.com%2Fblog%2Foutsmart-the-mortgage-companies-controlling-your-payments&t=Outsmart+The+Mortgage+Companies+Controlling+Your+Payments&cts=1730184594711&vi=fe61f55585d101da8915c6b2d8cb9f51&nc=true&u=174299517.fe61f55585d101da8915c6b2d8cb9f51.1730184594706.1730184594706.1730184594706.1&b=174299517.1.1730184594706&cc=15 HTTP/1.1Host: track.hubspot.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __cf_bm=E4BdkrAAva6bL7ljphlgGLeBwUeIffPI8w.lOkkR1bY-1730184577-1.0.1.1-O.W9PAjBc4Q6AyvRnvdnE3yuZLHClLdoP6QCyOQPyXktm.skr4jxk_0V3Ey5pP9ETrTDzpfIaF9.M17oMM8pWQ; _cfuvid=Z6lgpqmYVlv7ypYG6lYD.8Az9vZx4Hni61Bu146ZqD4-1730184577294-0.0.1.1-604800000
Source: global traffic	HTTP traffic detected: GET /e73162c54c75739f51aa.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /8c2b272dbba8ee1a3487.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /93f8d496fd04dfebb2d0.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /63d758d13f0b5081e9f5.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /5d8ad1d5ce912f828b32.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /21e16d56ee6dec1e3533.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /9ecb6724a5154f4f8dfe.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /17c15bf95b9b42fa3e9d.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /a4e23de01b94dcd76f89.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /2b3bd20945269bfbb610.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /ca28a7d3f337b71205c8.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /a4e23de01b94dcd76f89.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /page-data/webinar/16736/page-data.json HTTP/1.1Host: arworkflow.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.ewebinar.com/webinar/16736/register/fast-form/?source=ARW&widgetType=FloatInAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /2b3bd20945269bfbb610.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /ca28a7d3f337b71205c8.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /1644d07d107c9cae76df.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /page-data/webinar/16736/page-data.json HTTP/1.1Host: arworkflow.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7DIf-None-Match: "264f926da7bfbe5f1d1167c3ee6ceab6"If-Modified-Since: Fri, 25 Oct 2024 12:21:55 GMT
Source: global traffic	HTTP traffic detected: GET /38e1d07eeaf7e90ac25a.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /e5270a3bb2b4a3dc87c1.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /0b596b4f38d7ee327bd9.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /c60cca29f3fa10f32e73.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /v1/visitors HTTP/1.1Host: api.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /217d00f0468002348fb5.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /901960e617c2225bb3ba.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-paymentsAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /images/Logo/SVG/logo_light_steel_blue.svg HTTP/1.1Host: static.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /93683fb58639dbd5c6ff.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /a1f1302f24b3d16e81a0.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /d9d033bf19acf275b34b.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /e50e143af3381e43817f.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /c60cca29f3fa10f32e73.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /901960e617c2225bb3ba.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /e5270a3bb2b4a3dc87c1.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /8b2fb5df0644d70c3cd4.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /0b596b4f38d7ee327bd9.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /c57e9fdb230e3ff338d4.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /217d00f0468002348fb5.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /29a9b9d0350db7dc1163.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /6aa82f50a80c62dc43ef.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /1ae9b2590786c6087e57.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /fa82d510778f38b80e3d.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /46dbe3cc90126c1b8d1d.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /v1/attendees/country HTTP/1.1Host: api.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://arworkflow.ewebinar.comSec-Fetch-Site: same-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c57e9fdb230e3ff338d4.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /8ab8bfa6454fb7aed715.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=mZVVZ+Btc5G9dnX&MD=ev5AWm7x HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /v1/attendees/country HTTP/1.1Host: api.ewebinar.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /e54c6d92df11f7d25d89.widget.js HTTP/1.1Host: assets-prod.ewebinar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://arworkflow.ewebinar.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=%7B%22visitorId%22%3A%223a67e989-dad4-485a-9b86-0b928d9c329b%22%7D
Source: global traffic	HTTP traffic detected: GET /messenger/web/metrics HTTP/1.1Host: api-iam.intercom.ioConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pubsub/5-qDgxHR9nyQrqaI7KKPCixIHEzSXqAovpj6TJQvQW9XFkUQFxIBm3ch5Gtgt4__oCHp13AQVTXW0TfBpJM-9X1OsUu0OPrjjxTQeB?X-Nexus-New-Client=true&X-Nexus-Version=0.14.0&user_role=visitor HTTP/1.1Host: nexus-websocket-a.intercom.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://arworkflow.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: xpTvcbdKXr2Me2jhSWq+4Q==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /pubsub/5-qDgxHR9nyQrqaI7KKPCixIHEzSXqAovpj6TJQvQW9XFkUQFxIBm3ch5Gtgt4__oCHp13AQVTXW0TfBpJM-9X1OsUu0OPrjjxTQeB?X-Nexus-New-Client=true&X-Nexus-Version=0.14.0&user_role=visitor HTTP/1.1Host: nexus-websocket-a.intercom.ioConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://arworkflow.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: JsU1SdgTaLXl2TnwLiL7Qg==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits

Source: chromecache_255.1.dr, chromecache_379.1.dr	String found in binary or memory: var fb_track_src = "https://www.facebook.com/tr/?id=1203525713178953" + equals www.facebook.com (Facebook)
Source: chromecache_407.1.dr	String found in binary or memory: <a href="https://www.facebook.com/arworkflow"><i class="fab fa-facebook-f"></i></a> equals www.facebook.com (Facebook)
Source: chromecache_407.1.dr	String found in binary or memory: <a href="https://www.linkedin.com/company/arworkflow"><i class="fab fa-linkedin"></i></a> equals www.linkedin.com (Linkedin)
Source: chromecache_420.1.dr, chromecache_448.1.dr	String found in binary or memory: * License: https://www.facebook.com/legal/license/t3hOLs8wlXy/ equals www.facebook.com (Facebook)
Source: chromecache_306.1.dr, chromecache_339.1.dr, chromecache_263.1.dr, chromecache_371.1.dr	String found in binary or memory: Math.round(q);t["gtm.videoElapsedTime"]=Math.round(f);t["gtm.videoPercent"]=r;t["gtm.videoVisible"]=u;return t},rk:function(){e=pb()},zd:function(){d()}}};var Yb=ka(["data-gtm-yt-inspected-"]),qD=["www.youtube.com","www.youtube-nocookie.com"],rD,sD=!1; equals www.youtube.com (Youtube)
Source: chromecache_348.1.dr, chromecache_306.1.dr, chromecache_271.1.dr, chromecache_339.1.dr, chromecache_378.1.dr, chromecache_272.1.dr, chromecache_263.1.dr, chromecache_371.1.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=XA(a,c,e);S(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return S(122),!0;if(d&&f){for(var m=Ab(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},$A=function(){var a=[],b=function(c){return db(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_306.1.dr, chromecache_339.1.dr, chromecache_263.1.dr, chromecache_371.1.dr	String found in binary or memory: if(!(e||f||g||k.length||m.length))return;var p={Ah:e,yh:f,zh:g,ii:k,ji:m,Pe:n,Ib:b},q=C.YT;if(q)return q.ready&&q.ready(d),b;var r=C.onYouTubeIframeAPIReady;C.onYouTubeIframeAPIReady=function(){r&&r();d()};F(function(){for(var u=E.getElementsByTagName("script"),v=u.length,t=0;t<v;t++){var w=u[t].getAttribute("src");if(BD(w,"iframe_api")||BD(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!sD&&zD(x[A],p.Pe))return oc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_348.1.dr, chromecache_432.1.dr, chromecache_271.1.dr, chromecache_378.1.dr, chromecache_272.1.dr, chromecache_343.1.dr	String found in binary or memory: return b}oD.F="internal.enableAutoEventOnTimer";var Yb=ka(["data-gtm-yt-inspected-"]),qD=["www.youtube.com","www.youtube-nocookie.com"],rD,sD=!1; equals www.youtube.com (Youtube)
Source: chromecache_460.1.dr	String found in binary or memory: return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var b=f.getFbeventsModules("signalsFBEventsGetTier"),c=d();function d(){try{if(a.trustedTypes&&a.trustedTypes.createPolicy){var b=a.trustedTypes;return b.createPolicy("facebook.com/signals/iwl",{createScriptURL:function(a){var b=new URL(a);b=b.hostname.endsWith(".facebook.com")&&b.pathname=="/signals/iwl.js";if(!b)throw new Error("Disallowed script URL");return a}})}}catch(a){}return null}e.exports=function(a,d){d=b(d);d=d==null?"www.facebook.com":"www."+d+".facebook.com";d="https://"+d+"/signals/iwl.js?pixel_id="+a;if(c!=null)return c.createScriptURL(d);else return d}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_460.1.dr	String found in binary or memory: return function(f,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=/^https:\/\/www\.([A-Za-z0-9\.]+)\.facebook\.com\/tr\/?$/,b=["https://www.facebook.com/tr","https://www.facebook.com/tr/"];e.exports=function(c){if(b.indexOf(c)!==-1)return null;var d=a.exec(c);if(d==null)throw new Error("Malformed tier: "+c);return d[1]}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_460.1.dr	String found in binary or memory: return function(f,g,h,i){var j={exports:{}};j.exports;(function(){"use strict";var a={ENDPOINT:"https://www.facebook.com/tr/",INSTAGRAM_TRIGGER_ATTRIBUTION:"https://www.instagram.com/tr/",AEM_ENDPOINT:"https://www.facebook.com/.well-known/aggregated-event-measurement/",GPS_ENDPOINT:"https://www.facebook.com/privacy_sandbox/pixel/register/trigger/",TOPICS_API_ENDPOINT:"https://www.facebook.com/privacy_sandbox/topics/registration/"};j.exports=a})();return j.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_348.1.dr, chromecache_306.1.dr, chromecache_271.1.dr, chromecache_339.1.dr, chromecache_378.1.dr, chromecache_272.1.dr, chromecache_263.1.dr, chromecache_371.1.dr	String found in binary or memory: var DC=function(a,b,c,d,e){var f=uA("fsl",c?"nv.mwt":"mwt",0),g;g=c?uA("fsl","nv.ids",[]):uA("fsl","ids",[]);if(!g.length)return!0;var k=zA(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);S(121);if(m==="https://www.facebook.com/tr/")return S(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!gz(k,iz(b, equals www.facebook.com (Facebook)
Source: chromecache_249.1.dr	String found in binary or memory: var PAYLOAD = {"ENV":{"widget":{"alumni_url":"https://www.linkedin.com/cws/alumni","followmember_url":"https://www.linkedin.com/cws/followmember","settings_url":"https://www.linkedin.com/cws/settings","share_url":"https://www.linkedin.com/cws/share","share_counter_url":"https://www.linkedin.com/countserv/count/share","company_url":"https://www.linkedin.com/cws/company/profile","member_profile_url":"https://www.linkedin.com/cws/member/public_profile","full_member_profile_url":"https://www.linkedin.com/cws/member/full_profile","referral_center_url":"https://www.linkedin.com/cws/referral","apply_url":"https://www.linkedin.com/cws/job/apply","mail_url":"https://www.linkedin.com/cws/mail","apply_counter_url":"https://www.linkedin.com/countserv/count/job-apply","company_insider_url":"https://www.linkedin.com/cws/company/insider","sfdc_member_url":"https://www.linkedin.com/cws/sfdc/member","sfdc_company_url":"https://www.linkedin.com/cws/sfdc/company","sfdc_signal_url":"https://www.linkedin.com/cws/sfdc/signal","cap_recruiter_member_url":"https://www.linkedin.com/cws/cap/recruiter_member","jymbii_url":"https://www.linkedin.com/cws/jymbii","today_url":"https://www.linkedin.com/cws/today/today","login_url":"https://www.linkedin.com/cws/login","alumni_facet_url":"https://www.linkedin.com/college/alumni-facet-extension","csap_beacon_url":"https://www.linkedin.com/cws/csap/beacon","recommend_product_url":"https://www.linkedin.com/biz/{COMPANY_ID}/product?prdId={PRODUCT_ID}","recommend_product_counter_url":"https://www.linkedin.com/biz/api/recommendation/count?type=PDCT&id={PRODUCT_ID}&callback={CALLBACK}"}},"extensions":{"Login":"https://platform.linkedin.com/xdoor/extensions/Login.js","Wizard":"https://platform.linkedin.com/xdoor/extensions/Wizard.js","Debug":"https://platform.linkedin.com/xdoor/extensions/Debug.js","FollowCompany":"https://www.linkedin.com/pages-extensions/FollowCompany.js"},"options":{"urls.relay":"https://platform.linkedin.com/xdoor/widgets/relay.html","urls.apiProxy":"https://api.linkedin.com/xdoor/widgets/api/proxy.html","urls.signin":"https://www.linkedin.com/uas/connect/user-signin","urls.logout":"https://www.linkedin.com/uas/connect/logout","urls.authorize":"https://www.linkedin.com/uas/oauth2/authorize","urls.www.linkedin.com":"https://www.linkedin.com","urls.userSession":"https://www.linkedin.com/xdoor/widgets/user/session.html","urls.pkceAuthorization":"https://www.linkedin.com/oauth/web-pkce/authorization","urls.oauthRedirect":"https://platform.linkedin.com/xdoor/widgets/oauth-redirect.html"},"i18n":{"share":{"ar_AE":" equals www.linkedin.com (Linkedin)
Source: chromecache_420.1.dr, chromecache_448.1.dr	String found in binary or memory: window.FB&&window.FB.__buffer&&(window.__buffer=babelHelpers["extends"]({},window.FB.__buffer)); } }).call(global);})();} catch (__fb_err) {var __fb_i = new Image();__fb_i.crossOrigin = 'anonymous';__fb_i.dataset.testid = 'fbSDKErrorReport';__fb_i.src='https://www.facebook.com/platform/scribe_endpoint.php/?c=jssdk_error&m='+encodeURIComponent('{"error":"LOAD", "extra": {"name":"'+__fb_err.name+'","line":"'+(__fb_err.lineNumber||__fb_err.line)+'","script":"'+(__fb_err.fileName||__fb_err.sourceURL||__fb_err.script||"sdk.js")+'","stack":"'+(__fb_err.stackTrace||__fb_err.stack)+'","revision":"1017748526","namespace":"FB","message":"'+__fb_err.message+'"}}');document.body.appendChild(__fb_i);} equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: inst.ar-workflow.net
Source: global traffic	DNS traffic detected: DNS query: arworkflow.com
Source: global traffic	DNS traffic detected: DNS query: cdn2.hubspot.net
Source: global traffic	DNS traffic detected: DNS query: t.cometlytrack.com
Source: global traffic	DNS traffic detected: DNS query: platform.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: static.hsappstatic.net
Source: global traffic	DNS traffic detected: DNS query: app.ewebinar.com
Source: global traffic	DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic	DNS traffic detected: DNS query: platform.twitter.com
Source: global traffic	DNS traffic detected: DNS query: js.hs-analytics.net
Source: global traffic	DNS traffic detected: DNS query: js.hsadspixel.net
Source: global traffic	DNS traffic detected: DNS query: js.hs-banner.com
Source: global traffic	DNS traffic detected: DNS query: js.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: js.hscollectedforms.net
Source: global traffic	DNS traffic detected: DNS query: app.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: js.usemessages.com
Source: global traffic	DNS traffic detected: DNS query: assets-prod.ewebinar.com
Source: global traffic	DNS traffic detected: DNS query: cta-service-cms2.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: forms.hscollectedforms.net
Source: global traffic	DNS traffic detected: DNS query: api.hubapi.com
Source: global traffic	DNS traffic detected: DNS query: perf-na1.hsforms.com
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: widget.intercom.io
Source: global traffic	DNS traffic detected: DNS query: www.clarity.ms
Source: global traffic	DNS traffic detected: DNS query: s.adroll.com
Source: global traffic	DNS traffic detected: DNS query: syndication.twitter.com
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: analytics.google.com
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: js.intercomcdn.com
Source: global traffic	DNS traffic detected: DNS query: d.adroll.com
Source: global traffic	DNS traffic detected: DNS query: stats.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: x.clarity.ms
Source: global traffic	DNS traffic detected: DNS query: arworkflow.ewebinar.com
Source: global traffic	DNS traffic detected: DNS query: x.adroll.com
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: exceptions.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: api-iam.intercom.io
Source: global traffic	DNS traffic detected: DNS query: api.ewebinar.com
Source: global traffic	DNS traffic detected: DNS query: pixel.tapad.com
Source: global traffic	DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: x.bidswitch.net
Source: global traffic	DNS traffic detected: DNS query: dsum-sec.casalemedia.com
Source: global traffic	DNS traffic detected: DNS query: idsync.rlcdn.com
Source: global traffic	DNS traffic detected: DNS query: nexus-websocket-a.intercom.io
Source: global traffic	DNS traffic detected: DNS query: pixel.rubiconproject.com
Source: global traffic	DNS traffic detected: DNS query: match.adsrvr.org
Source: global traffic	DNS traffic detected: DNS query: pippio.com
Source: global traffic	DNS traffic detected: DNS query: us-u.openx.net
Source: global traffic	DNS traffic detected: DNS query: sync.outbrain.com
Source: global traffic	DNS traffic detected: DNS query: image2.pubmatic.com
Source: global traffic	DNS traffic detected: DNS query: ups.analytics.yahoo.com
Source: global traffic	DNS traffic detected: DNS query: sync.taboola.com
Source: global traffic	DNS traffic detected: DNS query: eb2.3lift.com
Source: global traffic	DNS traffic detected: DNS query: ib.adnxs.com
Source: global traffic	DNS traffic detected: DNS query: static.ewebinar.com
Source: global traffic	DNS traffic detected: DNS query: 23934932.fs1.hubspotusercontent-na1.net
Source: global traffic	DNS traffic detected: DNS query: track.hubspot.com
Source: global traffic	DNS traffic detected: DNS query: c.clarity.ms
Source: global traffic	DNS traffic detected: DNS query: metrics-fe-na1.hubspot.com

Source: unknown

HTTP traffic detected: POST /report/v4?s=CCRzPDH0d3tr0l3J6Ei45tbujw8YRMsP2q9xsBB8gs4A5qb%2FhZNJlHN2bHCEvrp6Dkvf%2FF3VjxmOLoIJmSysvmupViRUdf6sRscaUSBD4jBBxSAdnpBdnkz6LfgugQCx HTTP/1.1Host: a.nel.cloudflare.comConnection: keep-aliveContent-Length: 538Content-Type: application/reports+jsonUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic

HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 29 Oct 2024 06:49:47 GMTContent-Type: text/html; charset=utf-8Content-Length: 12Connection: closeServer: nginxCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Referrer-Policy: no-referrerStrict-Transport-Security: max-age=15552000; includeSubDomainsX-Content-Type-Options: nosniffX-DNS-Prefetch-Control: offX-Download-Options: noopenX-Frame-Options: SAMEORIGINX-Permitted-Cross-Domain-Policies: noneX-XSS-Protection: 0ETag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"

Source: global traffic

HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 29 Oct 2024 06:50:05 GMTContent-Type: text/html; charset=utf-8Content-Length: 12Connection: closeServer: nginxCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Referrer-Policy: no-referrerStrict-Transport-Security: max-age=15552000; includeSubDomainsX-Content-Type-Options: nosniffX-DNS-Prefetch-Control: offX-Download-Options: noopenX-Frame-Options: SAMEORIGINX-Permitted-Cross-Domain-Policies: noneX-XSS-Protection: 0ETag: W/"c-dAuDFQrdjS3hezqxDTNgW7AOlYk"

Source: chromecache_255.1.dr, chromecache_379.1.dr	String found in binary or memory: http://a.adroll.com
Source: chromecache_300.1.dr, chromecache_443.1.dr	String found in binary or memory: http://bit.ly/raven-secret-key
Source: chromecache_477.1.dr	String found in binary or memory: http://daneden.me/animate
Source: chromecache_453.1.dr, chromecache_249.1.dr, chromecache_240.1.dr	String found in binary or memory: http://feross.org
Source: chromecache_270.1.dr, chromecache_313.1.dr	String found in binary or memory: http://hubs.ly/H0702_H0
Source: chromecache_268.1.dr, chromecache_374.1.dr, chromecache_259.1.dr, chromecache_409.1.dr	String found in binary or memory: http://www.hubspot.com
Source: chromecache_407.1.dr	String found in binary or memory: https://23934932.fs1.hubspotusercontent-na1.net/hubfs/23934932/Cover-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://23934932.fs1.hubspotusercontent-na1.net/hubfs/23934932/JPG%201-1.jpg
Source: chromecache_371.1.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://api.linkedin.com/xdoor/widgets/api/proxy.html
Source: chromecache_407.1.dr	String found in binary or memory: https://app.arworkflow.com/login
Source: chromecache_407.1.dr	String found in binary or memory: https://app.arworkflow.com/signup
Source: chromecache_407.1.dr, chromecache_317.1.dr	String found in binary or memory: https://app.ewebinar.com/widget.js
Source: chromecache_407.1.dr	String found in binary or memory: https://app.hubspot.com
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://arworkflow.com/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/./blog/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/about-us/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/aging-report/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/5-steps-to-building-a-rock-solid-collections-process
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/author/admin
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/dealing-with-a-deadbeat-how-disaster-restoration-contractors-can-get-pay
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/getting-them-to-agree-to-pay-you
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-payments
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/outsmart-the-mortgage-companies-controlling-your-payments?hs_amp=true
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/rss.xml
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/tag/payments
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/blog/the-perils-of-price-reduction-submitting-bills-that-get-paid
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/calls/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/customer-stories
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/dashboard-3
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/dashboard-3/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/emails/
Source: chromecache_375.1.dr	String found in binary or memory: https://arworkflow.com/get-paid-faster
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hub/23934932/hub_generated/module_assets/177879754259/1729173955460/mod
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hub/23934932/hub_generated/module_assets/178513499533/1727357736126/mod
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hub/23934932/hub_generated/template_assets/177481859409/1726496422419/A
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hub/23934932/hub_generated/template_assets/177487480661/1725422087547/A
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hub/23934932/hub_generated/template_assets/178030220046/1725962487825/A
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hub/23934932/hub_generated/template_assets/178035676041/1727342357050/A
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hub/23934932/hub_generated/template_assets/178036665861/1727108138341/A
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hub/23934932/hub_generated/template_assets/178475130641/1726402328276/A
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/2.1.png?width=1920&height=1080&name=2.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/2.1.png?width=2880&height=1620&name=2.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/2.1.png?width=3840&height=2160&name=2.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/2.1.png?width=4800&height=2700&name=2.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/2.1.png?width=5760&height=3240&name=2.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/2.1.png?width=960&height=540&name=2.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/3.1.png?width=1920&height=1080&name=3.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/3.1.png?width=2880&height=1620&name=3.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/3.1.png?width=3840&height=2160&name=3.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/3.1.png?width=4800&height=2700&name=3.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/3.1.png?width=5760&height=3240&name=3.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/3.1.png?width=960&height=540&name=3.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/4.1.png?width=1920&height=1080&name=4.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/4.1.png?width=2880&height=1620&name=4.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/4.1.png?width=3840&height=2160&name=4.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/4.1.png?width=4800&height=2700&name=4.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/4.1.png?width=5760&height=3240&name=4.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/4.1.png?width=960&height=540&name=4.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/5.1.png?width=1920&height=1080&name=5.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/5.1.png?width=2880&height=1620&name=5.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/5.1.png?width=3840&height=2160&name=5.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/5.1.png?width=4800&height=2700&name=5.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/5.1.png?width=5760&height=3240&name=5.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/5.1.png?width=960&height=540&name=5.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/6.1.png?width=1920&height=1080&name=6.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/6.1.png?width=2880&height=1620&name=6.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/6.1.png?width=3840&height=2160&name=6.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/6.1.png?width=4800&height=2700&name=6.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/6.1.png?width=5760&height=3240&name=6.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/6.1.png?width=960&height=540&name=6.1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/7.1-1.png?width=1920&height=1080&name=7.1-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/7.1-1.png?width=2880&height=1620&name=7.1-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/7.1-1.png?width=3840&height=2160&name=7.1-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/7.1-1.png?width=4800&height=2700&name=7.1-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/7.1-1.png?width=5760&height=3240&name=7.1-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/7.1-1.png?width=960&height=540&name=7.1-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/Cover-1.png?width=1920&height=1080&name=Cover-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/Cover-1.png?width=2880&height=1620&name=Cover-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/Cover-1.png?width=3840&height=2160&name=Cover-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/Cover-1.png?width=4800&height=2700&name=Cover-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/Cover-1.png?width=5760&height=3240&name=Cover-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/Cover-1.png?width=960&height=540&name=Cover-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/ar-favion-192x192.png?width=12&height=12&name=ar-favion-1
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/ar-favion-192x192.png?width=23&height=23&name=ar-favion-1
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/ar-favion-192x192.png?width=35&height=35&name=ar-favion-1
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/ar-favion-192x192.png?width=46&height=46&name=ar-favion-1
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/ar-favion-192x192.png?width=58&height=58&name=ar-favion-1
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hs-fs/hubfs/ar-favion-192x192.png?width=69&height=69&name=ar-favion-1
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hubfs/Cover-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hubfs/ar-favion-192x192.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hubfs/ar-logo.svg
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/hubfs/banner-shape-1.png
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/invoices/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/payments/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/pricing/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/privacy-policy/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/sms/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/terms-of-condition/
Source: chromecache_407.1.dr	String found in binary or memory: https://arworkflow.com/workflow/
Source: chromecache_375.1.dr	String found in binary or memory: https://arworkflow.ewebinar.com
Source: chromecache_375.1.dr	String found in binary or memory: https://arworkflow.ewebinar.com/webinar/16736
Source: chromecache_375.1.dr	String found in binary or memory: https://arworkflow.ewebinar.com/webinar/get-paid-21-days-faster-webinar-16736
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://arworkflow.ewebinar.com/webinar/get-paid-21-days-faster-webinar-16736/join
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://arworkflow.ewebinar.com/webinar/get-paid-21-days-faster-webinar-16736/replay
Source: chromecache_375.1.dr	String found in binary or memory: https://arworkflow.ewebinar.com/webinar/get-paid-21-days-faster-webinar-16736?session=replay&showfor
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/favicon-32x32.png?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/favicon.svg?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/icons/icon-144x144.png?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/icons/icon-192x192.png?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/icons/icon-256x256.png?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/icons/icon-384x384.png?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/icons/icon-48x48.png?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/icons/icon-512x512.png?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/icons/icon-72x72.png?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_317.1.dr	String found in binary or memory: https://assets-prod.ewebinar.com/icons/icon-96x96.png?v=c3bf3dfb7dd5b1f7fa4ef4dfe886d668
Source: chromecache_348.1.dr, chromecache_306.1.dr, chromecache_432.1.dr, chromecache_271.1.dr, chromecache_339.1.dr, chromecache_378.1.dr, chromecache_272.1.dr, chromecache_263.1.dr, chromecache_343.1.dr, chromecache_371.1.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_407.1.dr	String found in binary or memory: https://cdn2.hubspot.net/hub/-1/hub_generated/module_assets/-2712622/1729872024481/module_-2712622_S
Source: chromecache_407.1.dr	String found in binary or memory: https://cdn2.hubspot.net/hub/-1/hub_generated/module_assets/-2712622/1729872025158/module_-2712622_S
Source: chromecache_433.1.dr, chromecache_282.1.dr	String found in binary or memory: https://cdn2.hubspot.net/hub/23934932/hub_generated/template_assets/178035676041/1727342357050/AR-Th
Source: chromecache_407.1.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.6.0/css/all.min.css
Source: chromecache_407.1.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.6.0/js/all.min.js
Source: chromecache_407.1.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js
Source: chromecache_407.1.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/wow/1.1.2/wow.min.js
Source: chromecache_462.1.dr, chromecache_460.1.dr	String found in binary or memory: https://connect.facebook.net/
Source: chromecache_432.1.dr, chromecache_343.1.dr	String found in binary or memory: https://connect.facebook.net/en_US/fbevents.js
Source: chromecache_462.1.dr, chromecache_460.1.dr	String found in binary or memory: https://connect.facebook.net/log/fbevents_telemetry/
Source: chromecache_407.1.dr	String found in binary or memory: https://cp.hubspot.com
Source: chromecache_255.1.dr, chromecache_379.1.dr	String found in binary or memory: https://d.adroll.com/p
Source: chromecache_407.1.dr	String found in binary or memory: https://ewebinar.com?utm_source=widget
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/drafts/ewebinar/57164/sections.imageWithText.imageMediaUrl-1678127922155-
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/drafts/ewebinar/57164/sections.imageWithText.imageMediaUrl-1678133299726-
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/drafts/ewebinar/57164/sections.imageWithText.imageMediaUrl-1678133403489-
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/drafts/ewebinar/57164/sections.imageWithText.imageMediaUrl-1678133547744-
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/drafts/ewebinar/58310/sections.imageWithText.imageMediaUrl-1679140959130-
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/drafts/ewebinar/58594/sections.imageWithText.imageMediaUrl-1679492749885-
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/ewebinar/57164/logo-1678134839648
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/ewebinar/57164/logo-1678134839648?ixlib=js-2.3.2&fit=clip&w=150&h=60&dpr=
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/ewebinar/57164/sections.imageWithText.imageMediaUrl-1678127922155?ixlib=j
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/ewebinar/57164/sections.imageWithText.imageMediaUrl-1678133299726?ixlib=j
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/ewebinar/57164/sections.imageWithText.imageMediaUrl-1678133403489?ixlib=j
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/ewebinar/57164/sections.imageWithText.imageMediaUrl-1678133547744?ixlib=j
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/ewebinar/58310/sections.imageWithText.imageMediaUrl-1679140959130?ixlib=j
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/ewebinar/58594/sections.imageWithText.imageMediaUrl-1679492749885?ixlib=j
Source: chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/team/2736/logo-1678126985832
Source: chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/team/2736/logo-1678126985832?ixlib=js-2.3.2&fit=clip&w=150&h=60&dpr=2&&s=
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/team/2736/scrapedMainMedia-1679401280864
Source: chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/team/2736/scrapedMainMedia-1679401280864?ixlib=js-2.3.2&fit=clip&w=300&h=
Source: chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/user/6302/profile-1678147700031
Source: chromecache_375.1.dr	String found in binary or memory: https://ewebinar.imgix.net/user/6302/profile-1678147700031?ixlib=js-2.3.2&fit=facearea&w=100&h=100&d
Source: chromecache_316.1.dr	String found in binary or memory: https://exceptions.hubspot.com/1
Source: chromecache_424.1.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_424.1.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_401.1.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Poppins:ital
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmmono/v14/aFTU7PB1QTsUX8KYthSQBLyM.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmmono/v14/aFTU7PB1QTsUX8KYthqQBA.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmsans/v15/rP2Wp2ywxg089UriCZaSExd86J3t9jz86MvyyKK58VXh.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmsans/v15/rP2Wp2ywxg089UriCZaSExd86J3t9jz86MvyyKy58Q.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmsans/v15/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K4.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/dmsans/v15/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu6-K6h9Q.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-cSZMZ-Y.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-ciZMZ-Y.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-cyZMZ-Y.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-eCZMZ-Y.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZV8f6lvg.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZVcf6lvg.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZVsf6lvg.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2)
Source: chromecache_261.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZXMf6lvg.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1JlFc-K.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1JlFc-K.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1JlFc-K.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJnecmNE.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLufntAKPY.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrLPTucHtA.woff2)
Source: chromecache_266.1.dr	String found in binary or memory: https://fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrLPTufntAKPY.woff2)
Source: chromecache_288.1.dr, chromecache_485.1.dr	String found in binary or memory: https://git.hubteam.com/HubSpot/I18n/issues/59
Source: chromecache_288.1.dr, chromecache_485.1.dr	String found in binary or memory: https://git.hubteam.com/HubSpot/faast-ui/issues/248
Source: chromecache_323.1.dr, chromecache_340.1.dr	String found in binary or memory: https://github.com/microsoft/clarity
Source: chromecache_343.1.dr	String found in binary or memory: https://google.com
Source: chromecache_343.1.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_420.1.dr, chromecache_448.1.dr	String found in binary or memory: https://itunes.apple.com/us/app/messenger/id454638411
Source: chromecache_374.1.dr, chromecache_259.1.dr	String found in binary or memory: https://js-na1.hs-scripts.com/23934932.js
Source: chromecache_270.1.dr, chromecache_313.1.dr	String found in binary or memory: https://js.hs-analytics.net/analytics/1730184300000/23934932.js
Source: chromecache_268.1.dr, chromecache_409.1.dr	String found in binary or memory: https://js.hs-banner.com/v2
Source: chromecache_270.1.dr, chromecache_313.1.dr	String found in binary or memory: https://js.hs-banner.com/v2/23934932/banner.js
Source: chromecache_270.1.dr, chromecache_313.1.dr	String found in binary or memory: https://js.hsadspixel.net/fb.js
Source: chromecache_270.1.dr, chromecache_313.1.dr	String found in binary or memory: https://js.hscollectedforms.net/collectedforms.js
Source: chromecache_270.1.dr, chromecache_313.1.dr	String found in binary or memory: https://js.hubspot.com/web-interactives-embed.js
Source: chromecache_270.1.dr, chromecache_313.1.dr	String found in binary or memory: https://js.usemessages.com/conversations-embed.js
Source: chromecache_288.1.dr, chromecache_485.1.dr	String found in binary or memory: https://legal.hubspot.com/privacy-policy
Source: chromecache_255.1.dr, chromecache_379.1.dr	String found in binary or memory: https://lex.33across.com/ps/v1/pubtoken/?pid=115&event=rtg&us_privacy=&rnd=
Source: chromecache_371.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_348.1.dr, chromecache_306.1.dr, chromecache_432.1.dr, chromecache_271.1.dr, chromecache_339.1.dr, chromecache_378.1.dr, chromecache_272.1.dr, chromecache_263.1.dr, chromecache_343.1.dr, chromecache_371.1.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://platform.linkedin.com/xdoor/extensions/Debug.js
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://platform.linkedin.com/xdoor/extensions/Login.js
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://platform.linkedin.com/xdoor/extensions/Wizard.js
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://platform.linkedin.com/xdoor/widgets/oauth-redirect.html
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://platform.linkedin.com/xdoor/widgets/relay.html
Source: chromecache_407.1.dr	String found in binary or memory: https://platform.twitter.com/widgets.js
Source: chromecache_420.1.dr, chromecache_448.1.dr	String found in binary or memory: https://play.google.com/store/apps/details?id=com.facebook.orca
Source: chromecache_343.1.dr	String found in binary or memory: https://px.ads.linkedin.com/collect?
Source: chromecache_465.1.dr, chromecache_458.1.dr, chromecache_240.1.dr	String found in binary or memory: https://raw.githubusercontent.com/stefanpenner/es6-promise/master/LICENSE
Source: chromecache_379.1.dr	String found in binary or memory: https://s.adroll.com
Source: chromecache_255.1.dr, chromecache_379.1.dr	String found in binary or memory: https://s.adroll.com/j/nrpa.js
Source: chromecache_255.1.dr, chromecache_379.1.dr	String found in binary or memory: https://s.adroll.com/j/pre/
Source: chromecache_432.1.dr, chromecache_343.1.dr	String found in binary or memory: https://s.adroll.com/j/roundtrip.js
Source: chromecache_407.1.dr	String found in binary or memory: https://schema.org
Source: chromecache_318.1.dr, chromecache_247.1.dr, chromecache_376.1.dr	String found in binary or memory: https://sketchapp.com
Source: chromecache_432.1.dr, chromecache_343.1.dr	String found in binary or memory: https://snap.licdn.com/li.lms-analytics/insight.min.js
Source: chromecache_407.1.dr	String found in binary or memory: https://static.hsappstatic.net/content-cwv-embed/static-1.1293/embed.js
Source: chromecache_306.1.dr, chromecache_339.1.dr, chromecache_263.1.dr, chromecache_371.1.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_407.1.dr	String found in binary or memory: https://t.cometlytrack.com/e.js
Source: chromecache_407.1.dr, chromecache_317.1.dr	String found in binary or memory: https://t.cometlytrack.com/e?uid=4c37c9-3377699763000010-6d7893-s
Source: chromecache_348.1.dr, chromecache_306.1.dr, chromecache_432.1.dr, chromecache_271.1.dr, chromecache_339.1.dr, chromecache_378.1.dr, chromecache_272.1.dr, chromecache_263.1.dr, chromecache_343.1.dr, chromecache_371.1.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://us-files.tus.vimeo.com/files/vimeo-prod-src-tus-us/c158c9fc295d5d956070d397bceb7bc0
Source: chromecache_242.1.dr, chromecache_353.1.dr, chromecache_375.1.dr	String found in binary or memory: https://vimeo.com/810106153
Source: chromecache_375.1.dr	String found in binary or memory: https://vimeo.com/810123032/ad0902cfb0
Source: chromecache_255.1.dr, chromecache_379.1.dr	String found in binary or memory: https://www.clarity.ms/s/0.7.34/clarity.js
Source: chromecache_371.1.dr	String found in binary or memory: https://www.google.com
Source: chromecache_489.1.dr, chromecache_470.1.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/16671866030/?random
Source: chromecache_343.1.dr, chromecache_371.1.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_371.1.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_348.1.dr, chromecache_432.1.dr, chromecache_271.1.dr, chromecache_378.1.dr, chromecache_272.1.dr, chromecache_343.1.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_407.1.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chromecache_407.1.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-MHLG23Z
Source: chromecache_348.1.dr, chromecache_432.1.dr, chromecache_271.1.dr, chromecache_378.1.dr, chromecache_272.1.dr, chromecache_343.1.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_420.1.dr, chromecache_448.1.dr	String found in binary or memory: https://www.internalfb.com/intern/invariant/
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/biz/
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/biz/api/recommendation/count?type=PDCT&id=
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/college/alumni-facet-extension
Source: chromecache_407.1.dr	String found in binary or memory: https://www.linkedin.com/company/arworkflow
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/countserv/count/job-apply
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/countserv/count/share
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/alumni
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/cap/recruiter_member
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/company/insider
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/company/profile
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/csap/beacon
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/followmember
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/job/apply
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/jymbii
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/login
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/mail
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/member/full_profile
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/member/public_profile
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/referral
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/settings
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/sfdc/company
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/sfdc/member
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/sfdc/signal
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/share
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/cws/today/today
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/oauth/web-pkce/authorization
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/pages-extensions/FollowCompany.js
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/uas/connect/logout
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/uas/connect/user-signin
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/uas/oauth2/authorize
Source: chromecache_453.1.dr, chromecache_249.1.dr	String found in binary or memory: https://www.linkedin.com/xdoor/widgets/user/session.html
Source: chromecache_306.1.dr, chromecache_339.1.dr, chromecache_263.1.dr, chromecache_371.1.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_306.1.dr, chromecache_339.1.dr, chromecache_263.1.dr, chromecache_371.1.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_255.1.dr, chromecache_379.1.dr	String found in binary or memory: https://x.adroll.com/pxl/iframe_content.html?advertisable=

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49990 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 50039 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 49703 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49967 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50074 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49963
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 50015 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50096 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49933 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49717
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 50062 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49703
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49701
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50049 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49701 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49980 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 49724 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 50084 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50050 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50005 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49979 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49934 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50059 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49699
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49975 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49700 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49999 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50001 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49963 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50007
Source: unknown	Network traffic detected: HTTP traffic on port 50037 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50001
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50000
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50003
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50005
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50003 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50035 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49953 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50092 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50047 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49987 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49708 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49949 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49984 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50068 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50056 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49972 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50075
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50077
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50084
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50087
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50089
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50088
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50092
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50093
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50096
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 49699 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50019
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49974 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50032 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50078 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50015
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50026
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50000 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50030
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 49995 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50031
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.16:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.16:49746 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.16:50079 version: TLS 1.2

System Summary

Source: classification engine

Classification label: sus22.win@26/414@276/77

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2188 --field-trial-handle=2016,i,13855257699346037186,8071945001961374338,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://inst.ar-workflow.net/lt/2251799867188510/JQR2lo4Cc_NHJq47gFNl3"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3100 --field-trial-handle=2016,i,13855257699346037186,8071945001961374338,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2188 --field-trial-handle=2016,i,13855257699346037186,8071945001961374338,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3100 --field-trial-handle=2016,i,13855257699346037186,8071945001961374338,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Source: Google Drive.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr	LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe

Source: Window Recorder

Window detected: More than 3 window changes detected

Persistence and Installation Behavior

Source: Email

JoeBoxAI: AI detected Typosquatting in URL: URL: https://inst.ar-workflow.net

Boot Survival

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk			Jump to behavior