Windows Analysis Report
https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1

Overview

General Information

Sample URL:	https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1
Analysis ID:	1558880
Infos:

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

Detected non-DNS traffic on DNS port

HTML page contains hidden javascript code

Classification

Signatures

HTML page contains hidden javascript code

Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1

HTTP Parser: Base64 decoded: <svg xmlns="http://www.w3.org/2000/svg" width="32" height="32" fill="none"><path fill="#B20F03" d="M16 3a13 13 0 1 0 13 13A13.015 13.015 0 0 0 16 3m0 24a11 11 0 1 1 11-11 11.01 11.01 0 0 1-11 11"/><path fill="#B20F03" d="M17.038 18.615H14.87L14.563 9.5h2....

Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1#google_vignette	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1#google_vignette	HTTP Parser: No favicon
Source: https://www.carmax.com/cars/suvs?i=cfc50e95-a6bc-11ef-aec9-82795deff674	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:50137 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:50281 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.4:50016 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.22.50.131
Source: unknown	TCP traffic detected without corresponding DNS query: 2.22.50.131
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8e53454539d67d1c HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1&__cf_chl_rt_tk=kWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/22755d9a86c9/api.js?onload=clJo2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8e53454539d67d1c HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1117065252:1732049276:5wQSqIrtQiJD7LADUZgRGxpzqUAbqbs_vhZPDz7JUoY/8e53454539d67d1c/mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8e HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/22755d9a86c9/api.js?onload=clJo2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8e5345552c3517d9&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8e5345552c3517d9&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/8e5345552c3517d9/1732051507528/k2JR9z52bkIJ6BT HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/pat/8e5345552c3517d9/1732051507529/a5f17111fff36665c3bddfa7341566cec45861833266dcb323a5b678b8f5ba88/T5QOOTpkEtbvwDf HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/8e5345552c3517d9/1732051507528/k2JR9z52bkIJ6BT HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=kOxxgeRMREt+b9g&MD=LuoUC3gb HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1117065252:1732049276:5wQSqIrtQiJD7LADUZgRGxpzqUAbqbs_vhZPDz7JUoY/8e53454539d67d1c/mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8e HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /css/app.css?id=228bf1ed89dd0b4572a0 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /manifest.json HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rw.js HTTP/1.1Host: r.wdfl.coConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?fb8184add5a3101ad0a321db81c70285 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://t.ly/css/app.css?id=228bf1ed89dd0b4572a0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /cf-fonts/s/lobster/5.0.18/latin/400/normal.woff2 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rw.js HTTP/1.1Host: r.wdfl.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051523687&cv=11&fst=1732051523687&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/10875945736?random=1732051523687&cv=11&fst=1732051523687&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051523687&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCa7L7dk-LYEJMHWqB2fMOj6lyUQTPZxIWajQ&random=3409458993&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051523687&cv=11&fst=1732051523687&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /js/483.js?id=adb5c22e402946b6624d HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /js/483.js?id=adb5c22e402946b6624d HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/How-Does-a-URL-Shortener-Work.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/22755d9a86c9/main.js? HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051523687&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCa7L7dk-LYEJMHWqB2fMOj6lyUQTPZxIWajQ&random=3409458993&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/10/Shrink-Your-QR-Codes-with-T.LY_.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/Build-Your-Own-URL-Shortener.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Share-Spotify-Links-with-QR-Codes.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/22755d9a86c9/main.js? HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/How-Does-a-URL-Shortener-Work.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/10/Shrink-Your-QR-Codes-with-T.LY_.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/Build-Your-Own-URL-Shortener.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Share-Spotify-Links-with-QR-Codes.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /css/app.css?id=228bf1ed89dd0b4572a0 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/jsd/r/8e5345bce87e41ef HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051529684&cv=11&fst=1732051529684&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /td/rul/10875945736?random=1732051529684&cv=11&fst=1732051529684&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051529684&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCa7L7dpjkUFUjB3uKc-C0sZknqgKBiXTzVB5u_NYKZGLsltFk5nGRe&random=4097607878&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051529684&cv=11&fst=1732051529684&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /js/950.js?id=4c09061f265c4eb07177 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /getconfig/sodar?sv=200&tid=gda&tv=r20241118&st=env HTTP/1.1Host: ep1.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://t.lySec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051529684&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCa7L7dpjkUFUjB3uKc-C0sZknqgKBiXTzVB5u_NYKZGLsltFk5nGRe&random=4097607878&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/jsd/r/8e5345e62f454213 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /js/227.js?id=989ead960b39de20de73 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; cf_clearance=WnbYTfa0jNi.vyN42HNLQtFeXMprCoYf2LFIRWXTT4g-1732051533-1.2.1.1-MHJ_Z0N2oabtGGesNM1f3Bsk9Rx.Zbk1l6AhhmRYPPR9nnD3WnjjsXGjStp1wlkENHsJlBQvCQMT1hISEG.65cZmply9XgfeUeKHi9sG92rW6AHEq_J1kw_7iodKiPL6Y2VQRcneC4Um4C.3L22djMjbcqeDIsOrMsiMe2D575AvT5c20DpeOAVFojosBpOydwtpSG7lYnvPLuFy0QtnAf7_W_JvDP3Ur5DHGU9mRJZIapXzpiQjGhonG2dyvqZoxuN6yZcp2V0XwgQJL5aJjpEj0ARvNPhMPS8EH1O_i8KRSQJ6k68M5hZfPREE88wWaCu4bl6ig4s3dW.RXwBcE_rd_sfA6pHpJRXwjD4REgBG56d3P3QU_mYw9FysDw_xjMUz01q6vnTIIoup6l6YsLIZXa2YGBzujhvZCMbkNb5EZ46KZMoxPeSQvvedlsjy
Source: global traffic	HTTP traffic detected: GET /js/166.js?id=267eddd588cf4399f581 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; cf_clearance=WnbYTfa0jNi.vyN42HNLQtFeXMprCoYf2LFIRWXTT4g-1732051533-1.2.1.1-MHJ_Z0N2oabtGGesNM1f3Bsk9Rx.Zbk1l6AhhmRYPPR9nnD3WnjjsXGjStp1wlkENHsJlBQvCQMT1hISEG.65cZmply9XgfeUeKHi9sG92rW6AHEq_J1kw_7iodKiPL6Y2VQRcneC4Um4C.3L22djMjbcqeDIsOrMsiMe2D575AvT5c20DpeOAVFojosBpOydwtpSG7lYnvPLuFy0QtnAf7_W_JvDP3Ur5DHGU9mRJZIapXzpiQjGhonG2dyvqZoxuN6yZcp2V0XwgQJL5aJjpEj0ARvNPhMPS8EH1O_i8KRSQJ6k68M5hZfPREE88wWaCu4bl6ig4s3dW.RXwBcE_rd_sfA6pHpJRXwjD4REgBG56d3P3QU_mYw9FysDw_xjMUz01q6vnTIIoup6l6YsLIZXa2YGBzujhvZCMbkNb5EZ46KZMoxPeSQvvedlsjy
Source: global traffic	HTTP traffic detected: GET /js/950.js?id=4c09061f265c4eb07177 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /sodar/sodar2.js HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/166.js?id=267eddd588cf4399f581 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv
Source: global traffic	HTTP traffic detected: GET /js/227.js?id=989ead960b39de20de73 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-5561763581314444?href=https%3A%2F%2Ft.ly&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/search/async-ads.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sodar/sodar2/232/runner.html HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/aframe HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sodar/sodar2.js HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rtimp?a=imp&cr=carmax_ng&d=t.ly&gid=&im=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA&p=Zz0CTgAAaH4Doh1wACYR090i9rbNSWjRaTstsQ&sid=cfc50e95-a6bc-11ef-aec9-82795deff674 HTTP/1.1Host: g.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVqNltFLaLpG_DO_F3gHANOxi2Xo6h_f8naC-cTVW6hSwkuVcmGa9tAwK3X1IHjMV-pr8Rg5Loo0uTEnjrPflvYDsMPy1PQanxyw0ieeulaKqVm8X26h3NFmI5BdqKR-ocjMaHpWg==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTM0LDk5MTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly90Lmx5LyIsbnVsbCxbWzgsIjl6NWtkZHRLZlVvIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc50e95-a6bc-11ef-aec9-82795deff674&params=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA HTTP/1.1Host: serve.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-a5279e2a.css HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQdKb9XA5dArKXn3nSwpHuBihGXD3irMKqOrbW4zpxC_KnWBNcbprkcywJz7v29VAQtpxSBHv4O38_ZczFJnvGnXPZ-ow HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQ6PZi_yOxto5E2OhYu4FKSuWJhCeL6BMJdabW-VFA2_Ra2ADCdB9t2tO7ztC0KiNdB7Cm9qNonESmDsgT7OZyi2fGyjQ HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-a5279e2a.css HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a&params=iOLCtoolLMj12ws6of73LoezNdg1Eq7bzQ2WyG3IqIAtCqDUokyAqwzp4RFDXmUbl3S0n9O-Lkp6oAHiWLyphJfAtlHZYc_cBkhv45PDeLxZpFudmy1-S4_x5KxCOklcUgtJnmuCh3UDPhHVyAuAVu_gCZyxA8Jtbf7LAlHm5litg4oGI8qMdT0CT0_LsI97P2SP8txcQu_x1V2xvO9WV2y6IVYYd7OrhlHln99gWgjZ4CRezrrzAzf4oVm3cFvfizXT4fFM0NTVCXLmW8iVUxAcbvmcLFgCUjauLvZwygt6wJZw5qcM3JEFbpQGDexX HTTP/1.1Host: serve.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fq HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxWsVXVOl_3Cu8OGQOaIA2SsUdWocgqBopfpEBJmiJ_40WRDHdgAmuBfblTzMiT4Ik6jcGM3nCrlzpIyVmkDLEzKJbR2D1cMWhORkEo20-YMPliYdGN58VFPyFvrOUI7f7e1Rj2vJA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTM2LDQzMjAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuIl0sImh0dHBzOi8vdC5seS8iLG51bGwsW1s4LCI5ejVrZGR0S2ZVbyJdLFs5LCJlbi1VUyJdLFsxOCwiW1tbMF1dXSJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rtimp?a=imp&cr=carmax_ng&d=t.ly&gid=&im=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw&p=Zz0CUQAJIn4DohbDAArj0HaoljIbeHSXTFX4BQ&sid=d1e39388-a6bc-11ef-8049-f678f8fa827f HTTP/1.1Host: g.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc50e95-a6bc-11ef-aec9-82795deff674; uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=d1e39388-a6bc-11ef-8049-f678f8fa827f&params=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw HTTP/1.1Host: serve.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc50e95-a6bc-11ef-aec9-82795deff674; uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaTg2qaQUGRCf6-mVuHBt9ciMY-eA-Qf5ZjLDf0HS5sWHMd80cLBiYn4Eueo2KSHbLkJWODsQJkoHvhZgnz7axWfAHlhag HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoRegular.woff2 HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoBold.woff2 HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /int/cm?exc=1&acc=crimtan&google_gid=CAESEBasn5s5K_Ra8Du1U0SdJwU&google_cver=1&google_push=AXcoOmQBvCiudNTq6TD_jZYP4HPwP9u1jo59npMU12eZvIOjTEqhUhZ14-YOZw5173clLLIGljbZkepp6Je_HI-bsOSk-0YVi5uBT5I HTTP/1.1Host: gcm.ctnsnet.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEO-MkICKSfY1ZHHcwZrwmFc&google_cver=1&google_push=AXcoOmQxHDPxV6Bx_3nUuHfg71_kPEXymkD95C-wCK8ZQxXnzG_9E7Ngk0rAzV7ZAvkuSIsQxwA_OMN1um2Lr7Z_UNQwu3BK6dIG HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ext/download-icon_1697445891.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoRegular.woff2 HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ju/cs/google?google_gid=CAESEAkRVGPqPqUAQ3Q-9_ZIa3M&google_cver=1&google_push=AXcoOmQpX-rrSp-eRUstZO2S_XyZ6r1mO1uvZReqp-67Pb5qAO9wt3Aq3wD0MXb9Z5L8L67P9EvN6OgF3v7fvkyZ8uR2T1ZQogFvdg HTTP/1.1Host: gtrace.mediago.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoBold.woff2 HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmSdmg7vyo8FwhQGopKnYF3JRon0O4SPX3D_Ve72aDzbkExVFpROXLuYwajfdUUJqEN-wvCu5NvY_WA16du4l_Y2QWsaPR1Zfg HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmR6fEenNiJxQXRcCitNK0tXpYuRH1QorwBdJpZDuSj0W_7jiPkc0XUW2VYpqyy7ir_YtmjGcManL6R4DDAfepEjvN3UHZot3fY HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTELb5NcD7KvEP1EXYvQyNb3g5D2Bycy-1ofrjM7U5n4mnZH9-RBWIezKE3EPo6bpn6mhQIRDeFnS4jMwLzOAbaHAUHhoEPSTQ HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTMyoAUI3NYUnv5kzU03wHO5W6vFeMN8loe3WIN13xCULneiT9giWoEU2c6eY938QiKeXb4OoEOq9tVnJLBIR5RB4xuc76qiYM HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEMrow_HkHJmtvUoD9nOf3s0&google_cver=1&google_push=AXcoOmQHt5l_BeaLoIf13IrVH1TAdW5pqdi-jrS5qlKo4kdly2WcN7axelRJTDtLBKS09UKWy_nuYs0YhJEVTdxZxpFTwta1vo60Q_Q HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESEA4t2k44cqlQAmlUozfM2pk&google_cver=1&google_push=AXcoOmSsmp_Lr5sx6K_YcS9iqNflNlPBIB7mS_l9oag00W5c2rhfc9qwm8o6nXnQ8D5zPnaB8Q_mSXADRdkHGIWGBxBbLlzcmlSdc5Y HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1 HTTP/1.1Host: dis.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tum?umid=4&uid=CAESEDnjiSdZ0Z3cf8kDF9Mo_Ag&google_cver=1&google_push=AXcoOmTfIr444lPeA3f7J9GIjM6z_Mzh_xlwdZJBTSPXjn_EP0ekdHS6V76rwrZouMzmM2hA3Icvv9xj4oD65mVanZgh93Rsdg6DrQ HTTP/1.1Host: ums.acuityplatform.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /tum?umid=4&uid=CAESEDnjiSdZ0Z3cf8kDF9Mo_Ag&google_cver=1&google_push=AXcoOmTL5mQKihmeGSrsK49OjrP0IqHNt6z8nvEEJ6i7XDEaTfupFoqt5X_G3AqyOeCPmeQsSp7P-K4JxDmBwVtxdHfwtLiHMGKqSZ0 HTTP/1.1Host: ums.acuityplatform.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc50e95-a6bc-11ef-aec9-82795deff674&params=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA HTTP/1.1Host: serve.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEPvo8tIDyEdFgS_IYg40kbw&google_cver=1&google_push=AXcoOmTh6IDJnBydHzn5Fu5abTiOhXhel-6617UAZ9CWtCZ5S40HG6ZlhUasbxJIVWvCLjzKV1or-7n_lXt5rBcHsku4pUVZyOYwWSY HTTP/1.1Host: an.yandex.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dpixel?a=p-n5vvLvRdjg0ek&eid=0&qc_google_push=&google_gid=CAESELF_hrZozPqZBP-KBgNh9gY&google_cver=1&google_push=AXcoOmT32OoWtQhDditBeFlMo6pr5tAY6y4mhoLR841lqqy4nyA9aNqdoW_PZ-n3286eipoDZ58kY0_o0oIyvh2YzfzM4awmjJMtpGY HTTP/1.1Host: cms.quantserve.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=d1e39388-a6bc-11ef-8049-f678f8fa827f&params=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw HTTP/1.1Host: serve.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEIkWiEUE3DkKg7HQcl9ErT0&google_cver=1&google_push=AXcoOmT-TvA9F7DFbln2o_etSv9MWgFIB1Wn3ODMIKvXq150v3oejmMlWwmbFT1dBu8G2Hehalsun3wPiniZRpFwTb2bNmNo4vW7avk HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CqFb8TgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBPoCT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOcpZTZjK5QhhUmtfyHol1kFL6KaiDqCg-jtbdXflnfsajSWVA34RgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi01NTYxNzYzNTgxMzE0NDQ0GAAYDA&sigh=SFEQgDZaA_c&uach_m=%5BUACH%5D&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHPGAE HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CQ9c9UQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIADT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBmizTGYujck9BuZjKuB8LIGJRyFQBkiu900KIT9l0BRMkjSUZDupgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi01NTYxNzYzNTgxMzE0NDQ0GAAYDA&sigh=x2wT2P8Erok&uach_m=%5BUACH%5D&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyRgB HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEItqcxbXi06EcGGxEpAJD_8&google_cver=1&google_push=AXcoOmSa8-h54CrR2K3dVUZ7bfhxYLe6eueU9lUp-JHdH_CAfMloYkfiD4a5Osog8PcuA_59GGcPkmFLYSTf9YRmVGVaQJE1TMlSMA HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a&params=iOLCtoolLMj12ws6of73LoezNdg1Eq7bzQ2WyG3IqIAtCqDUokyAqwzp4RFDXmUbl3S0n9O-Lkp6oAHiWLyphJfAtlHZYc_cBkhv45PDeLxZpFudmy1-S4_x5KxCOklcUgtJnmuCh3UDPhHVyAuAVu_gCZyxA8Jtbf7LAlHm5litg4oGI8qMdT0CT0_LsI97P2SP8txcQu_x1V2xvO9WV2y6IVYYd7OrhlHln99gWgjZ4CRezrrzAzf4oVm3cFvfizXT4fFM0NTVCXLmW8iVUxAcbvmcLFgCUjauLvZwygt6wJZw5qcM3JEFbpQGDexX HTTP/1.1Host: serve.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmSdmg7vyo8FwhQGopKnYF3JRon0O4SPX3D_Ve72aDzbkExVFpROXLuYwajfdUUJqEN-wvCu5NvY_WA16du4l_Y2QWsaPR1Zfg&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTMyoAUI3NYUnv5kzU03wHO5W6vFeMN8loe3WIN13xCULneiT9giWoEU2c6eY938QiKeXb4OoEOq9tVnJLBIR5RB4xuc76qiYM&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmR6fEenNiJxQXRcCitNK0tXpYuRH1QorwBdJpZDuSj0W_7jiPkc0XUW2VYpqyy7ir_YtmjGcManL6R4DDAfepEjvN3UHZot3fY&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXg_lPXM9IhiuIY2YvEZrUXm49GYcMGUhb3JAujhFPkywKxJdoB9RGTxN_YChzjq1DmoUtNQgd5OFXg01TmCqsLNg_oXjtOM4Ky6gSVAO5zpb1M4afMPIp-xF1f3FR9T9a4d5e3XfdBQcZVSSlO6PI9U5AT_PjGyD6boSk7ptX2OEM44NpCNi0U-GC3/_/sponsors/amg.php?/friendfinder_/468x60v1_/ad300f2./ads1. HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTELb5NcD7KvEP1EXYvQyNb3g5D2Bycy-1ofrjM7U5n4mnZH9-RBWIezKE3EPo6bpn6mhQIRDeFnS4jMwLzOAbaHAUHhoEPSTQ&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEItqcxbXi06EcGGxEpAJD_8&google_cver=1&google_push=AXcoOmSa8-h54CrR2K3dVUZ7bfhxYLe6eueU9lUp-JHdH_CAfMloYkfiD4a5Osog8PcuA_59GGcPkmFLYSTf9YRmVGVaQJE1TMlSMA&_bee_ppp=1 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: checkForPermission=ok
Source: global traffic	HTTP traffic detected: GET /track/cmb/google?google_gid=CAESEMrow_HkHJmtvUoD9nOf3s0&google_cver=1&google_push=AXcoOmQHt5l_BeaLoIf13IrVH1TAdW5pqdi-jrS5qlKo4kdly2WcN7axelRJTDtLBKS09UKWy_nuYs0YhJEVTdxZxpFTwta1vo60Q_Q HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=6c976599-7616-42a0-8520-774b2127bc45; TDCPM=CAEYBSgCMgsI8rWype66xD0QBTgB
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fqAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/hdp6NVToxcZ-RDmfj-FiLxITMNF3FSB01e-_24RN2ow.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fqAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /generate_204?Zw3SMw HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ep2.adtrafficquality.google/sodar/sodar2/232/runner.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEPvo8tIDyEdFgS_IYg40kbw&google_cver=1&google_push=AXcoOmTh6IDJnBydHzn5Fu5abTiOhXhel-6617UAZ9CWtCZ5S40HG6ZlhUasbxJIVWvCLjzKV1or-7n_lXt5rBcHsku4pUVZyOYwWSY HTTP/1.1Host: an.yandex.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=3zFyIt9CA7jvA0kq6dqA8Wk5wm+JRUr+zGiCz+yoeE5Wfp/1ftY+JHSShx3qT9LT9b1fw7Tct10SA5Ru1SwHrGbcGc8=; yandexuid=924520971732051539; yashr=5379776711732051539; bh=EkAiR29vZ2xlIENocm9tZSI7dj0iMTE3IiwgIk5vdDtBPUJyYW5kIjt2PSI4IiwgIkNocm9taXVtIjt2PSIxMTciKgI/MDoJIldpbmRvd3MiYNOE9LkGah7cyuH/CJLYobEDn8/h6gP7+vDnDev//fYPutfOhwg=
Source: global traffic	HTTP traffic detected: GET /ext/download-icon_1697445891.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; uid=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; mid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241118&jk=1232907316253446&bg=!aGulayTNAAY7_TBtG_07ADQBe5WfOIAqxopJOFKywdMP3oaK0lOob3unmXCHWZJZQtVG_JpHsj5RW_JKBQb-v2GvdYdZAgAAA1lSAAAAHGgBB34ANuJFBPzu9GGCq73dVcdDVngFAuOf_6Qt-QMvbU_PZUli3lhYZJ-Ljugso3RHhkVKFpjy6LBRh5kCjyXm1Sfg_oyi04DSbhT9-Y_q2-ECVJE6F2uO2XRG3DmSE2XEp5zt3LXh35eXP6TgS4yMk1dFo5_1OAXTtw_kFDIlIZ3d836Wvm1bGTZLozhx-FzjF7Xz6OI20ah1PmxZbjLGqsHdgZEeB_4zs9CYw4CfNfw_3iMK1r2x6IuqmTfcAUjqbR-MNQOE9WSPe1-IvVwwHTXrSPPusUMEQ8nKpkNP1BpQNMhyy80ftCbr5rEoqJth3u3o2i_4CukBEyB1akyL7fpsypKpuP3rnsgBuVewkSt-RciFsrnS61BovzY6oKx5tu0ObgGuEZrh7hwua6N1sovT4WLNbNOZrxmlC1zPRkC42GnritkChsjZsO2GRyos7PuDjU3oagjdivWKSuK2n1E2tSg1MH_0r91JKfAtnwgzLKPX0RNJjjzLBwalu8m1ENpqof-Jy4mfylbB46Zl74rQsOjiaIu47vJOGqW4JNWSOfD-s4L1KwAsxMELTx_-hq59Jnnntm4m6uwIMDyRNCoHLWoJFDN9MzLhKjDZrxHvhiKFM698MWQab8aa7JrTVZwL7_R3RibhcLs06VkX74yvguekFBIhCWvQ7img1P9RcRwFYUWqE42XnTatQPktbOIGlCHc2KsbY709L4J2y3TwYOOM44USImc07JBYI2lG3Bcl9YBRCMJkvne1ba0I61aH9qC6ZN0rPh1_3sIlMO8m_QMvAXe1aAhdZLd2SIGu2Q_u0UrMBFIQuGTtL7U5qC2czBbnjRNqNJKPqIdXHhSC_EecSLRE9lMW8TsYBJ-KehGHaeWrPpGoIjxRzDRp0RqXG_u_0Kr5FiJGeplTs6zrXLLvqhOu1UY1HvKo3q_UsNuGv0JtEemA1nI HTTP/1.1Host: ep1.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/hdp6NVToxcZ-RDmfj-FiLxITMNF3FSB01e-_24RN2ow.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/reload?k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09ANOXeZw0p29A_tG4QtVl9-86_x5bbFLj0OKp1EJwoquSzmxT6_sbap7z6zpEZDLbrptUutVNNVl1iIQEQCi8hHs
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120100v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /aclk?sa=L&ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&num=1&sig=AOD64_3I9_bRMw4WmBeRuJgaKsrN3CvQsg&client=ca-pub-5561763581314444&adurl=https%3A%2F%2Fwww.carmax.com%2Fcars%2Fsuvs%3Fi%3Dcfc50e95-a6bc-11ef-aec9-82795deff674 HTTP/1.1Host: adclick.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /fireshield_logo_1730899282.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rtimp?a=imp&cr=ext_download_fire_sse&d=t.ly&gid=&im=iOLCtoolLMj12ws6of73LoezNdg1Eq7bzQ2WyG3IqIAtCqDUokyAqwzp4RFDXmUbl3S0n9O-Lkp6oAHiWLyphJfAtlHZYc_cBkhv45PDeLxZpFudmy1-S4_x5KxCOklcUgtJnmuCh3UDPhHVyAuAVu_gCZyxA8Jtbf7LAlHm5litg4oGI8qMdT0CT0_LsI97P2SP8txcQu_x1V2xvO9WV2y6IVYYd7OrhlHln99gWgjZ4CRezrrzAzf4oVm3cFvfizXT4fFM0NTVCXLmW8iVUxAcbvmcLFgCUjauLvZwygt6wJZw5qcM3JEFbpQGDexX&p=Zz0CTgAAaHsDoh1wACYR01jVcBrtAtPpqSzQRQ&sid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a HTTP/1.1Host: g.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga=GA1.2.2037803925.1732051525; cf_clearance=WnbYTfa0jNi.vyN42HNLQtFeXMprCoYf2LFIRWXTT4g-1732051533-1.2.1.1-MHJ_Z0N2oabtGGesNM1f3Bsk9Rx.Zbk1l6AhhmRYPPR9nnD3WnjjsXGjStp1wlkENHsJlBQvCQMT1hISEG.65cZmply9XgfeUeKHi9sG92rW6AHEq_J1kw_7iodKiPL6Y2VQRcneC4Um4C.3L22djMjbcqeDIsOrMsiMe2D575AvT5c20DpeOAVFojosBpOydwtpSG7lYnvPLuFy0QtnAf7_W_JvDP3Ur5DHGU9mRJZIapXzpiQjGhonG2dyvqZoxuN6yZcp2V0XwgQJL5aJjpEj0ARvNPhMPS8EH1O_i8KRSQJ6k68M5hZfPREE88wWaCu4bl6ig4s3dW.RXwBcE_rd_sfA6pHpJRXwjD4REgBG56d3P3QU_mYw9FysDw_xjMUz01q6vnTIIoup6l6YsLIZXa2YGBzujhvZCMbkNb5EZ46KZMoxPeSQvvedlsjy; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051537.0.0.0
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /fireshield_logo_1730899282.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; uid=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; mid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga=GA1.2.2037803925.1732051525; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051537.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CXFjqTgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBPsCT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4vj07RTF-UP3lS0oNFMfbsm3ec09TyPF01Satd11HtE-36yNSraHIAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQOACgH6CwIIAYAMAdAVAYAXAbIXHAoYEhRwdWItNTU2MTc2MzU4MTMxNDQ0NBgAGAw&sigh=V833kOsYcOo&uach_m=%5BUACH%5D&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHPGAE&vis=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=kOxxgeRMREt+b9g&MD=LuoUC3gb HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxWosZrc6WMc5nT0uYahyKyNcPKCHSfAQBnHiVULdIxuIjR8lTBxmd3-ZoTHyclNUe5mR9c-fz34KUddyqIAjaDdYvJLWxR28yEYlUj-d-HhSIXi35vcKcA9nuRiA2_cSLdjqoaQMw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTU0LDEyNzAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4iLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly90Lmx5LyIsbnVsbCxbWzgsIjl6NWtkZHRLZlVvIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule90401v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.facebook.com (Facebook)
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.linkedin.com (Linkedin)
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.twitter.com (Twitter)
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.youtube.com (Youtube)
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: Math.round(q);t["gtm.videoElapsedTime"]=Math.round(f);t["gtm.videoPercent"]=r;t["gtm.videoVisible"]=u;return t},Ak:function(){e=qb()},zd:function(){d()}}};var Zb=wa(["data-gtm-yt-inspected-"]),HD=["www.youtube.com","www.youtube-nocookie.com"],ID,JD=!1; equals www.youtube.com (Youtube)
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: if(!(e\|\|f\|\|g\|\|k.length\|\|m.length))return;var p={Dh:e,Bh:f,Ch:g,ji:k,ki:m,Re:n,Ib:b},q=B.YT;if(q)return q.ready&&q.ready(d),b;var r=B.onYouTubeIframeAPIReady;B.onYouTubeIframeAPIReady=function(){r&&r();d()};H(function(){for(var u=E.getElementsByTagName("script"),v=u.length,t=0;t<v;t++){var w=u[t].getAttribute("src");if(SD(w,"iframe_api")\|\|SD(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!JD&&QD(x[A],p.Re))return qc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_179.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: return b}FD.F="internal.enableAutoEventOnTimer";var Zb=wa(["data-gtm-yt-inspected-"]),HD=["www.youtube.com","www.youtube-nocookie.com"],ID,JD=!1; equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: t.ly
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: static.cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: r.wdfl.co
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: blog.t.ly
Source: global traffic	DNS traffic detected: DNS query: ep1.adtrafficquality.google
Source: global traffic	DNS traffic detected: DNS query: ep2.adtrafficquality.google
Source: global traffic	DNS traffic detected: DNS query: fundingchoicesmessages.google.com
Source: global traffic	DNS traffic detected: DNS query: syndicatedsearch.goog
Source: global traffic	DNS traffic detected: DNS query: cdn.bidbrain.app
Source: global traffic	DNS traffic detected: DNS query: g.bidbrain.app
Source: global traffic	DNS traffic detected: DNS query: serve.bidbrain.app
Source: global traffic	DNS traffic detected: DNS query: g.rtbrain.app
Source: global traffic	DNS traffic detected: DNS query: cdn.rtbrain.app
Source: global traffic	DNS traffic detected: DNS query: serve.rtbrain.app
Source: global traffic	DNS traffic detected: DNS query: dclk-match.dotomi.com
Source: global traffic	DNS traffic detected: DNS query: sync-tm.everesttech.net
Source: global traffic	DNS traffic detected: DNS query: ads.travelaudience.com
Source: global traffic	DNS traffic detected: DNS query: a.c.appier.net
Source: global traffic	DNS traffic detected: DNS query: ums.acuityplatform.com
Source: global traffic	DNS traffic detected: DNS query: googlecm.hit.gemius.pl
Source: global traffic	DNS traffic detected: DNS query: gtrace.mediago.io
Source: global traffic	DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: cms.quantserve.com
Source: global traffic	DNS traffic detected: DNS query: um.simpli.fi
Source: global traffic	DNS traffic detected: DNS query: match.adsrvr.org
Source: global traffic	DNS traffic detected: DNS query: gcm.ctnsnet.com
Source: global traffic	DNS traffic detected: DNS query: creativecdn.com
Source: global traffic	DNS traffic detected: DNS query: dis.criteo.com
Source: global traffic	DNS traffic detected: DNS query: match.prod.bidr.io
Source: global traffic	DNS traffic detected: DNS query: an.yandex.ru
Source: global traffic	DNS traffic detected: DNS query: analytics.pangle-ads.com
Source: global traffic	DNS traffic detected: DNS query: www.temu.com
Source: global traffic	DNS traffic detected: DNS query: widget.us.criteo.com
Source: global traffic	DNS traffic detected: DNS query: www.carmax.com
Source: global traffic	DNS traffic detected: DNS query: adclick.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: assets.adobedtm.com
Source: global traffic	DNS traffic detected: DNS query: content-images.carmax.com
Source: global traffic	DNS traffic detected: DNS query: img2.carmax.com
Source: global traffic	DNS traffic detected: DNS query: userinsights.carmax.com

Source: unknown

HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1117065252:1732049276:5wQSqIrtQiJD7LADUZgRGxpzqUAbqbs_vhZPDz7JUoY/8e53454539d67d1c/mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8e HTTP/1.1Host: t.lyConnection: keep-aliveContent-Length: 4915sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8esec-ch-ua-platform: "Windows"Accept: */*Origin: https://t.lySec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 19 Nov 2024 21:25:01 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 19 Nov 2024 21:25:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:05 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: 38I8D6MHqbdssAxGkNjvoKHU/LxqtjI1GjM=$23ASH/Gy8otVfhZbStrict-Transport-Security: max-age=15552000; includeSubDomains; preloadX-Content-Type-Options: nosniffServer: cloudflareCF-RAY: 8e534554df350f37-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:08 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: cJZvalGvsaG1c1yncBS3wHExVPhJOREzsso=$5xHrVAIjWeBq4XExServer: cloudflareCF-RAY: 8e53456b0f2842c8-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:11 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: OO+jS6ul45BmFuiRFR5jvqlaQlFdXIG6Pks=$CS6HbbQQLVcRI+MBServer: cloudflareCF-RAY: 8e53457d4c2132ca-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:20 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: VOElytjYIPJXnLCPqCzbm2TiDMYIx1CUHYM=$5146f+SLebSFcMHtServer: cloudflareCF-RAY: 8e5345b2f97bc3eb-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:22 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: jPXayTNc+EIeTvCMBNjJzLTpqxeSUv0KA1Q=$Y/u4iCzSvXYrVrIVStrict-Transport-Security: max-age=15552000; includeSubDomains; preloadX-Content-Type-Options: nosniffServer: cloudflareCF-RAY: 8e5345bcfe820ca1-EWRalt-svc: h3=":443"; ma=86400

Source: chromecache_190.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_190.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: http://google.com
Source: chromecache_268.2.dr, chromecache_290.2.dr, chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: http://googleads.g.doubleclick.net
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: http://mathiasbynens.be/
Source: chromecache_268.2.dr, chromecache_290.2.dr, chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: http://pagead2.googlesyndication.com
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_196.2.dr, chromecache_291.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://addons.mozilla.org/en-US/firefox/addon/link-shortener/
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://addons.opera.com/en/extensions/details/url-shortener-4/
Source: chromecache_156.2.dr, chromecache_226.2.dr	String found in binary or memory: https://adsense.com.
Source: chromecache_208.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://api.t.ly/api/
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2022/11/How-do-I-shorten-a-URL-for-free.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2022/11/URL-Shortener-API.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2022/12/The-Hidden-Benefits-Of-Using-a-Link-Shortener.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2023/01/What-is-a-Url-Shortener-1.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2023/03/How-to-Create-a-Tiny-URL.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2023/04/Best-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/05/How-to-Track-QR-Code-Scans.webp
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/Dynamic-Links-Deprecation.webp
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/The-End-of-Google-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/Understanding-HTTP-Status-Codes.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/Worlds-Shortest-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/08/Top-Extensions-scaled.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/09/How-to-Share-Spotify-Links-with-QR-Codes.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/10/Shrink-Your-QR-Codes-with-T.LY_.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/11/Build-Your-Own-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/11/How-Does-a-URL-Shortener-Work.jpg
Source: chromecache_179.2.dr, chromecache_286.2.dr, chromecache_151.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://cdn.ampproject.org/amp4ads-host-v0.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://cdn.ampproject.org/rtv/$
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://chromewebstore.google.com/detail/url-shortener/oodfdmglhbbkkcngodjjagblikmoegpa
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://cse.google.com/cse.js
Source: chromecache_196.2.dr, chromecache_291.2.dr	String found in binary or memory: https://developers.google.com/ad-placement
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_177.2.dr, chromecache_209.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/bg/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/getconfig/sodar
Source: chromecache_209.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232
Source: chromecache_209.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232
Source: chromecache_253.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/$
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://ep3.adtrafficquality.google/ivt/worklet/caw.js
Source: chromecache_184.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Google
Source: chromecache_254.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=
Source: chromecache_184.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Google
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://fundingchoicesmessages.google.com/i/$
Source: chromecache_208.2.dr	String found in binary or memory: https://google.com
Source: chromecache_208.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/html/$
Source: chromecache_208.2.dr, chromecache_263.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_177.2.dr, chromecache_209.2.dr, chromecache_253.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/bg/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/getconfig/sodar
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=colleague-executed&name=
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&bin=
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&name=invalid_geo&context=10
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=extra&rnd=
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&lidartos
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&start&control&fle=1&s
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-fallback2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-later2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-pagehide2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-start2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=reach&proto=
Source: chromecache_220.2.dr, chromecache_183.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=fccs&
Source: chromecache_156.2.dr, chromecache_226.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=plmetrics
Source: chromecache_290.2.dr, chromecache_196.2.dr, chromecache_291.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rcs_internal
Source: chromecache_209.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=232
Source: chromecache_179.2.dr, chromecache_286.2.dr, chromecache_151.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_264.2.dr, chromecache_187.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=urind
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/html/$
Source: chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/$
Source: chromecache_268.2.dr, chromecache_290.2.dr, chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=$
Source: chromecache_281.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5561763581314444
Source: chromecache_268.2.dr, chromecache_156.2.dr, chromecache_290.2.dr, chromecache_264.2.dr, chromecache_226.2.dr, chromecache_184.2.dr, chromecache_187.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/err_rep.js
Source: chromecache_268.2.dr, chromecache_156.2.dr, chromecache_226.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/logging_library.js
Source: chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/$
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping
Source: chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping?e=1
Source: chromecache_311.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?
Source: chromecache_209.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=232
Source: chromecache_178.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_212.2.dr	String found in binary or memory: https://publickeyservice.msmt.gcp.privacysandboxservices.com
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://r.wdfl.co/rw.js
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/car.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/cocar.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/static/topics/topics_frame.html
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_189.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/#website
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/?ref=expired
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/affiliates
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/docs
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/expired
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/extension
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/extension-install-cta
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/facebook
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/faq
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/browser/chrome_64x64.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/browser/firefox_64x64.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/browser/opera_64x64.png
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/promo/tly-promo.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/tly-logo.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/linkedin
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/privacy
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/qr-code-generator
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/register
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/terms
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/tools
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/twitter
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_179.2.dr, chromecache_286.2.dr, chromecache_151.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_253.2.dr	String found in binary or memory: https://tpc.googlesyndication.com
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/$
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://twitter.com/TLYShortener
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.crunchbase.com/organization/t-ly
Source: chromecache_240.2.dr, chromecache_275.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_208.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_156.2.dr, chromecache_226.2.dr	String found in binary or memory: https://www.google.com/adsense
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.google.com/adsense/search/async-ads.js
Source: chromecache_254.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr, chromecache_296.2.dr, chromecache_255.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_268.2.dr, chromecache_177.2.dr, chromecache_209.2.dr, chromecache_184.2.dr, chromecache_253.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/aframe
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.google.com/s2/favicons?sz=64&domain_url=
Source: chromecache_208.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://www.googleadservices.com/.well-known/private-aggregation/report-shared-storage
Source: chromecache_254.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/conversion/16521530460/?gad_source=1&adview_type=3
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/managed/js/activeview/
Source: chromecache_208.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_179.2.dr, chromecache_153.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=AW-10875945736
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-89207177-8
Source: chromecache_179.2.dr, chromecache_153.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://www.googletagservices.com/agrp/
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__.
Source: chromecache_184.2.dr	String found in binary or memory: https://www.gstatic.com
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.gstatic.com/prose/protected/$
Source: chromecache_224.2.dr, chromecache_296.2.dr, chromecache_255.2.dr, chromecache_168.2.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__en.js
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.linkedin.com/company/tlyshortener/
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50211 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 50417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50440 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 50359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 50382 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 50462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 50247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 50313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50208 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 50466 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50358
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50353
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50356
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 50442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50361
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50371
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 50478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50410 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50304
Source: unknown	Network traffic detected: HTTP traffic on port 50444 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50301
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 50384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50316
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50311
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50313
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 50454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50324
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50323
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50409 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50389 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50400 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 50434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50458 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50481 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 50193 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50424 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 50353 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50015
Source: unknown	Network traffic detected: HTTP traffic on port 50456 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 50318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50271
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50468 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 50298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50277
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50279
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50280
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50283
Source: unknown	Network traffic detected: HTTP traffic on port 50412 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50446 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50285
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50047
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 50375 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50290
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50292
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50293
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50414 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50448 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50461 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49981 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50380 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50402 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50473 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50249 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50379 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50207 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50436 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 50296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50097
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50158 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50404 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50399 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 50367 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50438 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 50191 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50426 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50355 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50471 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50333 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50097 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50395 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50475 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:50137 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:50281 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@28/267@134/48

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1656 --field-trial-handle=2008,i,6985356235388339202,7807025746520084771,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1656 --field-trial-handle=2008,i,6985356235388339202,7807025746520084771,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
104.26.2.190	serve.rtbrain.app	United States	13335	CLOUDFLARENETUS	false
35.190.0.66	ads.travelaudience.com	United States	15169	GOOGLEUS	false
91.228.74.244	global.px.quantserve.com	United Kingdom	27281	QUANTCASTUS	false
142.250.185.226	adclick.g.doubleclick.net	United States	15169	GOOGLEUS	false
104.20.6.133	t.ly	United States	13335	CLOUDFLARENETUS	false
104.16.80.73	unknown	United States	13335	CLOUDFLARENETUS	false
142.250.185.142	syndicatedsearch.goog	United States	15169	GOOGLEUS	false
104.20.7.133	blog.t.ly	United States	13335	CLOUDFLARENETUS	false
142.250.185.66	td.doubleclick.net	United States	15169	GOOGLEUS	false
142.250.184.196	unknown	United States	15169	GOOGLEUS	false
93.158.134.90	unknown	Russian Federation	13238	YANDEXRU	false
142.250.184.194	unknown	United States	15169	GOOGLEUS	false
104.18.95.41	unknown	United States	13335	CLOUDFLARENETUS	false
172.217.18.1	unknown	United States	15169	GOOGLEUS	false
34.13.138.208	um.simpli.fi	United States	2686	ATGS-MMD-ASUS	false
87.250.250.90	an.yandex.ru	Russian Federation	13238	YANDEXRU	false
185.184.8.90	creativecdn.com	Poland	204995	RTB-HOUSE-AMSNL	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
172.67.74.191	g.rtbrain.app	United States	13335	CLOUDFLARENETUS	false
192.0.0.8	googlecm.hit.gemius.pl	Reserved	unknown	unknown	false
172.217.16.196	unknown	United States	15169	GOOGLEUS	false
172.67.176.164	g.bidbrain.app	United States	13335	CLOUDFLARENETUS	false
142.250.185.206	www3.l.google.com	United States	15169	GOOGLEUS	false
104.18.94.41	challenges.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
154.59.122.79	ums.acuityplatform.com	United States	174	COGENT-174US	false
15.197.193.217	match.adsrvr.org	United States	7430	TANDEMUS	false
142.250.185.161	ep2.adtrafficquality.google	United States	15169	GOOGLEUS	false
150.171.28.10	ax-0001.ax-msedge.net	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
142.250.185.162	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
104.16.79.73	static.cloudflareinsights.com	United States	13335	CLOUDFLARENETUS	false
142.250.74.196	unknown	United States	15169	GOOGLEUS	false
104.17.24.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
18.66.147.126	unknown	United States	3	MIT-GATEWAYSUS	false
178.250.1.9	widget.nl3.vip.prod.criteo.com	France	44788	ASN-CRITEO-EUROPEFR	false
34.111.8.208	userinsights.carmax.com	United States	15169	GOOGLEUS	false
20.47.117.32	gw-c-eu-isp.temu.com	United States	8069	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
18.66.147.74	d2qumtq956sbet.cloudfront.net	United States	3	MIT-GATEWAYSUS	false
142.250.186.161	unknown	United States	15169	GOOGLEUS	false
74.119.117.16	widget.us5.vip.prod.criteo.com	United States	19750	AS-CRITEOUS	false
3.214.120.221	match.prod.bidr.io	United States	14618	AMAZON-AESUS	false
216.58.206.66	ep1.adtrafficquality.google	United States	15169	GOOGLEUS	false
142.250.185.132	www.google.com	United States	15169	GOOGLEUS	false
35.186.193.173	gcm.ctnsnet.com	United States	15169	GOOGLEUS	false
35.214.168.80	gtrace.mediago.io	United States	19527	GOOGLE-2US	false
104.21.80.92	cdn.bidbrain.app	United States	13335	CLOUDFLARENETUS	false
104.26.3.190	unknown	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.4
192.168.2.5

Contacted Domains

Name	IP	Active
adclick.g.doubleclick.net	142.250.185.226	true
um.simpli.fi	34.13.138.208	true
static.cloudflareinsights.com	104.16.79.73	true
serve.rtbrain.app	104.26.2.190	true
global.px.quantserve.com	91.228.74.244	true
googlecm.hit.gemius.pl	192.0.0.8	true
gcm.ctnsnet.com	35.186.193.173	true
cdnjs.cloudflare.com	104.17.24.14	true
blog.t.ly	104.20.7.133	true
cdn.bidbrain.app	104.21.80.92	true
widget.nl3.vip.prod.criteo.com	178.250.1.9	true
an.yandex.ru	87.250.250.90	true
cm.g.doubleclick.net	172.217.16.194	true
www.google.com	142.250.185.132	true
match.adsrvr.org	15.197.193.217	true
match.prod.bidr.io	3.214.120.221	true
creativecdn.com	185.184.8.90	true
ep1.adtrafficquality.google	216.58.206.66	true
syndicatedsearch.goog	142.250.185.142	true
ums.acuityplatform.com	154.59.122.79	true
gw-c-eu-isp.temu.com	20.47.117.32	true
g.rtbrain.app	172.67.74.191	true
s-part-0017.t-0009.t-msedge.net	13.107.246.45	true
ep2.adtrafficquality.google	142.250.185.161	true
ax-0001.ax-msedge.net	150.171.28.10	true
gtrace.mediago.io	35.214.168.80	true
userinsights.carmax.com	34.111.8.208	true
t.ly	104.20.6.133	true
googleads.g.doubleclick.net	142.250.185.162	true
www3.l.google.com	142.250.185.206	true
ads.travelaudience.com	35.190.0.66	true
d2qumtq956sbet.cloudfront.net	18.66.147.74	true
challenges.cloudflare.com	104.18.94.41	true
td.doubleclick.net	142.250.185.66	true
cdn.rtbrain.app	104.26.2.190	true
widget.us5.vip.prod.criteo.com	74.119.117.16	true
serve.bidbrain.app	104.21.80.92	true
g.bidbrain.app	172.67.176.164	true
r.wdfl.co	unknown	unknown
fundingchoicesmessages.google.com	unknown	unknown
a.c.appier.net	unknown	unknown
content-images.carmax.com	unknown	unknown
www.temu.com	unknown	unknown
dis.criteo.com	unknown	unknown
widget.us.criteo.com	unknown	unknown
www.carmax.com	unknown	unknown
assets.adobedtm.com	unknown	unknown
img2.carmax.com	unknown	unknown
analytics.pangle-ads.com	unknown	unknown
cms.quantserve.com	unknown	unknown
dclk-match.dotomi.com	unknown	unknown
sync-tm.everesttech.net	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://t.ly/android-chrome-192x192.png	false	high
https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	false	high
https://t.ly/cdn-cgi/rum?	false	high
https://t.ly/img/tly-logo-sm.png	false	high
https://cdn.rtbrain.app/ng-assets/creative/assets/index-3f3b6ec8.js	false	high
https://googleads.g.doubleclick.net/pagead/adview?ai=CXFjqTgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBPsCT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4vj07RTF-UP3lS0oNFMfbsm3ec09TyPF01Satd11HtE-36yNSraHIAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQOACgH6CwIIAYAMAdAVAYAXAbIXHAoYEhRwdWItNTU2MTc2MzU4MTMxNDQ0NBgAGAw&sigh=V833kOsYcOo&uach_m=%5BUACH%5D&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHPGAE&vis=1	false	high
https://cdn.bidbrain.app/ng-assets/creative/assets/polyfills-a3f452c3.js	false	high
https://creativecdn.com/cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmSdmg7vyo8FwhQGopKnYF3JRon0O4SPX3D_Ve72aDzbkExVFpROXLuYwajfdUUJqEN-wvCu5NvY_WA16du4l_Y2QWsaPR1Zfg	false	high
https://g.rtbrain.app/rtimp	false	high
https://cdn.rtbrain.app/compressedFonts/RobotoRegular.woff2	false	high
https://cms.quantserve.com/dpixel?a=p-n5vvLvRdjg0ek&eid=0&qc_google_push=&google_gid=CAESELF_hrZozPqZBP-KBgNh9gY&google_cver=1&google_push=AXcoOmT32OoWtQhDditBeFlMo6pr5tAY6y4mhoLR841lqqy4nyA9aNqdoW_PZ-n3286eipoDZ58kY0_o0oIyvh2YzfzM4awmjJMtpGY	false	high
https://t.ly/js/sweetalert.min.js?id=abedaaba10307a01ba0d	false	high
https://t.ly/js/manifest.js?id=508d2bef9e47b9f734b9	false	high
https://t.ly/favicon.ico	false	high
https://ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gda&tv=r20241118&st=env	false	high
https://dis.criteo.com/dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1	false	high
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css	false	high
https://serve.rtbrain.app/sig.js?rpclid=cfc50e95-a6bc-11ef-aec9-82795deff674&params=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8e5345552c3517d9/1732051507529/a5f17111fff36665c3bddfa7341566cec45861833266dcb323a5b678b8f5ba88/T5QOOTpkEtbvwDf	false	high
https://cdn.bidbrain.app/ext/download-icon_1697445891.svg+xml	false	high
https://www.google.com/ads/measurement/l?ebcid=ALh7CaTg2qaQUGRCf6-mVuHBt9ciMY-eA-Qf5ZjLDf0HS5sWHMd80cLBiYn4Eueo2KSHbLkJWODsQJkoHvhZgnz7axWfAHlhag	false	high
https://www.google.com/adsense/search/async-ads.js	false	high
https://blog.t.ly/wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg	false	high
https://ums.acuityplatform.com/tum?umid=4&uid=CAESEDnjiSdZ0Z3cf8kDF9Mo_Ag&google_cver=1&google_push=AXcoOmTfIr444lPeA3f7J9GIjM6z_Mzh_xlwdZJBTSPXjn_EP0ekdHS6V76rwrZouMzmM2hA3Icvv9xj4oD65mVanZgh93Rsdg6DrQ	false	high
https://googleads.g.doubleclick.net/pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1	false	high
https://serve.rtbrain.app/sig.js?rpclid=d1e39388-a6bc-11ef-8049-f678f8fa827f&params=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw	false	high
https://t.ly/cdn-cgi/challenge-platform/h/b/jsd/r/8e5345e62f454213	false	high
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0	false	high
https://t.ly/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	false	high
https://t.ly/cdn-cgi/challenge-platform/h/b/jsd/r/8e5345bce87e41ef	false	high
https://ep2.adtrafficquality.google/sodar/sodar2.js	false	high
https://googleads.g.doubleclick.net/pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1	false	high
https://t.ly/js/227.js?id=989ead960b39de20de73	false	high
https://t.ly/cdn-cgi/challenge-platform/h/b/scripts/jsd/22755d9a86c9/main.js?	false	high
https://t.ly/js/vendor.js?id=ac953ccc03dd4e7f11ae	false	high
https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	false	high
https://match.prod.bidr.io/cookie-sync/adx?google_gid=CAESEItqcxbXi06EcGGxEpAJD_8&google_cver=1&google_push=AXcoOmSa8-h54CrR2K3dVUZ7bfhxYLe6eueU9lUp-JHdH_CAfMloYkfiD4a5Osog8PcuA_59GGcPkmFLYSTf9YRmVGVaQJE1TMlSMA	false	high
https://fundingchoicesmessages.google.com/i/ca-pub-5561763581314444?href=https%3A%2F%2Ft.ly&ers=2	false	high
https://creativecdn.com/cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTMyoAUI3NYUnv5kzU03wHO5W6vFeMN8loe3WIN13xCULneiT9giWoEU2c6eY938QiKeXb4OoEOq9tVnJLBIR5RB4xuc76qiYM	false	high
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l	false	high
https://cdn.bidbrain.app/ng-assets/creative/assets/index-3f3b6ec8.js	false	high
https://blog.t.ly/wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg	false	high
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fq	false	high
https://t.ly/js/483.js?id=adb5c22e402946b6624d	false	high
https://g.rtbrain.app/rtimp?a=imp&cr=carmax_ng&d=t.ly&gid=&im=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA&p=Zz0CTgAAaH4Doh1wACYR090i9rbNSWjRaTstsQ&sid=cfc50e95-a6bc-11ef-aec9-82795deff674	false	high
https://ads.travelaudience.com/google_pixel?google_gid=CAESEO-MkICKSfY1ZHHcwZrwmFc&google_cver=1&google_push=AXcoOmQxHDPxV6Bx_3nUuHfg71_kPEXymkD95C-wCK8ZQxXnzG_9E7Ngk0rAzV7ZAvkuSIsQxwA_OMN1um2Lr7Z_UNQwu3BK6dIG	false	high
https://cdn.bidbrain.app/fireshield_logo_1730899282.svg+xml	false	high
https://www.google.com/ads/measurement/l?ebcid=ALh7CaQ6PZi_yOxto5E2OhYu4FKSuWJhCeL6BMJdabW-VFA2_Ra2ADCdB9t2tO7ztC0KiNdB7Cm9qNonESmDsgT7OZyi2fGyjQ	false	high
https://fundingchoicesmessages.google.com/f/AGSKWxWsVXVOl_3Cu8OGQOaIA2SsUdWocgqBopfpEBJmiJ_40WRDHdgAmuBfblTzMiT4Ik6jcGM3nCrlzpIyVmkDLEzKJbR2D1cMWhORkEo20-YMPliYdGN58VFPyFvrOUI7f7e1Rj2vJA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTM2LDQzMjAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuIl0sImh0dHBzOi8vdC5seS8iLG51bGwsW1s4LCI5ejVrZGR0S2ZVbyJdLFs5LCJlbi1VUyJdLFsxOCwiW1tbMF1dXSJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ	false	high
https://www.google.com/recaptcha/api2/bframe?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7	false	high
https://www.carmax.com/cars/suvs?i=cfc50e95-a6bc-11ef-aec9-82795deff674	false	high

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 147	ASCII text, with very long lines (3533)	EDDE768F759556194CED208AE0ACC998	702814282D56F8208D6B178169B2A9F370944679	38CB12140D5165BC886A6F1B1A49ABA023E37914C9012C6EC8453EFA45380A98
Chrome Cache Entry: 148	ASCII text, with very long lines (53882)	9EB72269A2732C40444CC59A08E1D7A9	13015FE6866D65951308C6781ABDF6DD7C44223B	C7C69898719406BCB784D399FE3FDCFA012FA47B7968DE55514B17AC1CA3BDDE
Chrome Cache Entry: 149	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x900, components 3	797311D3A77C30C1E563B52EA8BB3C3F	5C159C276C75C3B58D5A21FB5B8F6BF716D806C4	8BD97811CBE52F1DE7E6087EC73FEEEC9B13EB5D412C17759F5115F3A99E05D4
Chrome Cache Entry: 150	ASCII text, with very long lines (18563)	DF39BBDBFD997E8F4FA2CF75A3F47823	408623D4D96AA67C0A458C4E791A2399F4DAA197	E6FC94615DFB1BEA7D5D2C0EB3B473773613B14B116C460FA455646246731881
Chrome Cache Entry: 151	ASCII text, with very long lines (5945)	610DC1793AFDB22D0EA17CE80C728F4E	FF98112F5733D61034490870FA0DFBCA9731D74B	39FEA3C5F64525FA2EA5CA1995616EB76A2A81F7D81621440F8DDC971DE73B54
Chrome Cache Entry: 152	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 153	ASCII text, with very long lines (3835)	055915DB46EEDA26AFDC682973634FFB	F6D6E0FB5FF065E98869060ABF15882F43720825	E7CE94161CD68CFAA757FDCA268848A8450CE6A519AB2D86473C05E32208C4F2
Chrome Cache Entry: 154	ASCII text, with very long lines (18228)	E8973FE53EE0FF115E4E2986E5C49B8B	DEE03F081056FF34CDE4C49F834B52C9ACE6077B	85DA7A3554E8C5C67E44399F8FE1622F121330D177152074D5EFBFDB844DDA8C
Chrome Cache Entry: 155	GIF image data, version 89a, 1 x 1	B4491705564909DA7F9EAF749DBBFBB1	279315D507855C6A4351E1E2C2F39DD9CD2FCCD8	4E0705327480AD2323CB03D9C450FFCAE4A98BF3A5382FA0C7882145ED620E49
Chrome Cache Entry: 156	ASCII text, with very long lines (3679)	D675AAB412D2B639499828BAF29AD9CB	8B4E70463A90F5D2EFB3E76FBC07932BD28BBC9C	EBFCB1BAC73C92ECCDC1128F8AC5C7F3AE836F9F76D2C01DB515CBE0A0C65406
Chrome Cache Entry: 157	ASCII text, with very long lines (5221), with no line terminators	8741721EBAA50B468C9D0B0C06F98595	E202B8A92816023D403B3F69D9D3D0E70B12C5A2	1541A0E5F9E53C40F8ABE9D168FD69CFE30AA9A5D1B7B9BE0A312234C7DB05D1
Chrome Cache Entry: 158	ASCII text, with very long lines (47671)	B804BCD42117B1BBE45326212AF85105	7B4175AAF0B7E45E03390F50CB8ED93185017014	B7595C3D2E94DF7416308FA2CCF5AE8832137C76D2E9A8B02E6ED2CB2D92E2F7
Chrome Cache Entry: 159	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 160	HTML document, ASCII text	FBA33A41515EF08BB9962614AF67F542	9C57A801190FCE0EA77CE4C3BEC6FA0C1F193E01	F1A132697DA8E7698A49A62A237D9182EA3383D79B61CE7846EE97E299A82CEB
Chrome Cache Entry: 161	Web Open Font Format (Version 2), TrueType, length 77160, version 4.459	AF7AE505A9EED503F8B8E6982036873E	D6F48CBA7D076FB6F2FD6BA993A75B9DC1ECBF0C	2ADEFCBC041E7D18FCF2D417879DC5A09997AA64D675B7A3C4B6CE33DA13F3FE
Chrome Cache Entry: 162	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 163	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 164	JSON data	4CBEB4269FFB1ADFC1D323BED81FBD6C	DC894F11572B6AEB1256313500A56BD12108E66C	542270C30BD50DFA17FFF8B55F26D9F8F77B656A5984C3751CD9D59636D88C13
Chrome Cache Entry: 165	Unicode text, UTF-8 text, with very long lines (15324)	6A220F6341C1912BF7868EDC9C5E08F9	371B62A94612972A25031BA9AD62B540EF4677DC	A5279E2A7446C5CAE13F4346C196670C2B9FD3575BA7849B34DA2D618C470E68
Chrome Cache Entry: 166	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 167	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 168	ASCII text, with no line terminators	9AFB0D35BB088B3036561313BF7CE1F4	C7F3FDE34C537242969FBBD736B5B129611F1694	6E4501CE6F65A1B8671A9D31A8F5AB56DFA4E30AA7A4A971DAA1544AB2EB53C1
Chrome Cache Entry: 169	ASCII text, with very long lines (8075), with no line terminators	38CE4661C34D02AF838C35D67BFD5CF4	E02892E0CCC20FEC30DA88972ED114D400D55E39	F4C11767565FB732357F3FCE96ACC7A827DE65DA11C583F4B1768126190BE7FC
Chrome Cache Entry: 170	ASCII text, with very long lines (19948), with no line terminators	EC18AF6D41F6F278B6AED3BDABFFA7BC	62C9E2CAB76B888829F3C5335E91C320B22329AE	8A18D13015336BC184819A5A768447462202EF3105EC511BF42ED8304A7ED94F
Chrome Cache Entry: 171	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 172	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators	5DF496280D762938024A9DF67346430E	0E5B931F30D34223EB9B3B629B7DB8914CDBD2E0	E7857D12A5AD458CC38F5BB8EA5951AD19A816F3706B804D2123F0E86A8A3D86
Chrome Cache Entry: 173	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	07BF314AAB04047B9E9A959EE6F63DA3	17BEF6602672E2FD9956381E01356245144003E5	55EAF62CB05DA20088DC12B39D7D254D046CB1FD61DDF3AE641F1439EFD0A5EE
Chrome Cache Entry: 174	ASCII text, with very long lines (12331)	88A769D2FE35899FD45A332A0A032CC0	514C6C1D8475D17E412849A4C90159517D0FA10A	CCF00D1923B0131A10E0C6D26F95E5DEE6EBF8621A27E83C5A2F68A2E0093142
Chrome Cache Entry: 175	HTML document, ASCII text, with very long lines (826), with no line terminators	AC4C8BBA91B10CA936BDB051B54EFCA5	CC2F1A5D96B0751C033C6F7DA2DFB8C67DB131AB	EE53ACFAED16E802F53C5612CD896A60E09537E947D63D48AF8E617C7CFF7121
Chrome Cache Entry: 176	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], progressive, precision 8, 1200x800, components 3	CD2E6CFA8B7869E38DBCD67F9621D0A7	9E9131350DAAC481558E860C294610CBFA1C79A0	ACAB1017AAF5CB879CD0121F08C313FCC6C073B17AE9C646CD1664F1E67D052C
Chrome Cache Entry: 177	ASCII text, with very long lines (1382)	3B071D5606CC1CF92AE307F5BDB4E540	E191068CC90E5489130489A1CF173FE50BBA28B8	FF3DE130872FE0FB5B770DFA2BC9F0DAF8AB320403A34A60D089436F08D24F99
Chrome Cache Entry: 178	ASCII text, with very long lines (701)	88A5FED5C87B1D3704AB225CFBE7A130	D64243C18FBAA356E4ABAE8414CCC4772D64060B	F8E5F5CE9FF44073CFF24BCD3D2B8AA4E67B67891B14FF929FE4743880FDF82E
Chrome Cache Entry: 179	ASCII text, with very long lines (3835)	573EF210CF4C26ADC4B6985F79966DA3	7CCE72839564A7A2C90178C882FCCAADED175A99	87BB3E8B3C70466F3BB6BB57DA84F535DF506BD8A9B04110CBB5E3B2A31BD1DE
Chrome Cache Entry: 180	ASCII text, with very long lines (12331)	88A769D2FE35899FD45A332A0A032CC0	514C6C1D8475D17E412849A4C90159517D0FA10A	CCF00D1923B0131A10E0C6D26F95E5DEE6EBF8621A27E83C5A2F68A2E0093142
Chrome Cache Entry: 181	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x900, components 3	797311D3A77C30C1E563B52EA8BB3C3F	5C159C276C75C3B58D5A21FB5B8F6BF716D806C4	8BD97811CBE52F1DE7E6087EC73FEEEC9B13EB5D412C17759F5115F3A99E05D4
Chrome Cache Entry: 182	Web Open Font Format (Version 2), TrueType, length 61736, version 1.0	EDE84D96808C486E3DE74CBD8F2A2C80	BAE3CE34F928BE471EE489BBFE5B7425AEE8298E	02F1DCC0C722E24CBA9BE4B720831A79489E766D5EDF8B77F582E0869312D86E
Chrome Cache Entry: 183	ASCII text, with very long lines (2356)	3BD739668FD154A92C5D9AF0DFED22F3	0BDC6B822F0C8C50658794823DF179F09D68CC57	9CC8B7F6676CB620C2D7F443D753F0072165FB1C7624025CA580B71F2C011CBF
Chrome Cache Entry: 184	ASCII text, with very long lines (2247)	898F1E95B296931E1E3870B3F712612B	FD43A2C3EBF75D738BDB3AA35BFC8049571C8D98	C0FABD5A4E09FB279F978BC0B85AA82A45B11533CF6637E262757202DDC8FF81
Chrome Cache Entry: 185	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 186	Unicode text, UTF-8 text, with very long lines (11822)	659A1EC658C77B9C936C856B9B72A548	C1076FE1A694D561FFAA673793CB6418763FA1E4	B2D12B381E4F471679E903D6C8FE634AB8DDA43764168C8F3C1EE1269FE7EDAB
Chrome Cache Entry: 187	ASCII text, with very long lines (1875)	8E2891F4A85FD1F5579608A761C8DD23	3DA109099A4743BCD03EF2A21D6F62C592D0893D	AF91017E5733CB8CD373F2195C6598B8A7781D92C7F5B4131C93A7E466B92B91
Chrome Cache Entry: 188	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 189	ASCII text, with very long lines (2343)	575B5480531DA4D14E7453E2016FE0BC	E5C5F3134FE29E60B591C87EA85951F0AEA36EE1	DE36E50194320A7D3EF1ACE9BD34A875A8BD458B253C061979DD628E9BF49AFD
Chrome Cache Entry: 190	ASCII text, with very long lines (30837)	269550530CC127B6AA5A35925A7DE6CE	512C7D79033E3028A9BE61B540CF1A6870C896F8	799AEB25CC0373FDEE0E1B1DB7AD6C2F6A0E058DFADAA3379689F583213190BD
Chrome Cache Entry: 191	ASCII text, with no line terminators	EB02BE0B05DBA9BC1906CC1475127F78	C37B08D3B829BAFD3F381EF4FE006111AC5DC1CE	C30C046C17704D3762D5B79C10F06DF1C7257E3AD60DAC132A536BE2A65EB910
Chrome Cache Entry: 192	ASCII text, with no line terminators	AFB69DF47958EB78B4E941270772BD6A	D9FE9A625E906FF25C1F165E7872B1D9C731E78E	874809FB1235F80831B706B9E9B903D80BD5662D036B7712CC76F8C684118878
Chrome Cache Entry: 193	Unicode text, UTF-8 text, with very long lines (11822), with no line terminators	91642B2164ECC490A3E744576DC78932	814BC9681164F6239186B78DC668CE012ED8B174	A90596A6573E08071EFA96E8E88881298C12DAA86FC1CE358FD2381BCE560BAA
Chrome Cache Entry: 194	JSON data	4C5A08BB8910FBF551E6D16EB61A10A8	704F206606E010116BF3125DBD0EECDE1B2B2328	8C6D9581DC158BD46EC3FB4768C231D2CDCC56080D303674CF6C83151606AB2B
Chrome Cache Entry: 195	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	0F2A4639B8A4CB30C76E8333C00D30A6	57E273A270BB864970D747C74B3F0A7C8E515B13	44B988703019CD6BFA86C91840FECF2A42B611B364E3EEA2F4EB63BF62714E98
Chrome Cache Entry: 196	ASCII text, with very long lines (2968)	43B9D208E2D4C9B669A99CEAC8FC8CF7	FB27462C1D4A80876007D0124323765FFAE52D6E	82DF38D2DD7752438EB81580D7CEF8BA8E9F7C99995D88DB07837B243A7FEE53
Chrome Cache Entry: 197	JSON data	2DD843A718320E43599464FE40E6A7DB	BC43631D679A8C9109848C87E9B771C08330D41E	328C17B92F4030849BADB7D583A2D6019AF14F6B62FD943047EA708AF41F8529
Chrome Cache Entry: 198	Web Open Font Format (Version 2), TrueType, length 15552, version 1.0	285467176F7FE6BB6A9C6873B3DAD2CC	EA04E4FF5142DDD69307C183DEF721A160E0A64E	5A8C1E7681318CAA29E9F44E8A6E271F6A4067A2703E9916DFD4FE9099241DB7
Chrome Cache Entry: 199	HTML document, ASCII text, with very long lines (1238)	9E8F56E8E1806253BA01A95CFC3D392C	A8AF90D7482E1E99D03DE6BF88FED2315C5DD728	2595496FE48DF6FCF9B1BC57C29A744C121EB4DD11566466BC13D2E52E6BBCC8
Chrome Cache Entry: 200	ASCII text, with very long lines (1055)	2669D16AAE166D157B8434762A199620	CA7E08D45D0D469ED57825C28CB214F421311F97	944A37F694B55DE268A0BF52DBAE4E12F12C4AE09EE5C8D213BA05075C2865DD
Chrome Cache Entry: 201	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 202	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 203	Unicode text, UTF-8 text, with very long lines (15324)	6A220F6341C1912BF7868EDC9C5E08F9	371B62A94612972A25031BA9AD62B540EF4677DC	A5279E2A7446C5CAE13F4346C196670C2B9FD3575BA7849B34DA2D618C470E68
Chrome Cache Entry: 204	Web Open Font Format (Version 2), TrueType, length 15344, version 1.0	5D4AEB4E5F5EF754E307D7FFAEF688BD	06DB651CDF354C64A7383EA9C77024EF4FB4CEF8	3E253B66056519AA065B00A453BAC37AC5ED8F3E6FE7B542E93A9DCDCC11D0BC
Chrome Cache Entry: 205	ASCII text, with very long lines (701)	88A5FED5C87B1D3704AB225CFBE7A130	D64243C18FBAA356E4ABAE8414CCC4772D64060B	F8E5F5CE9FF44073CFF24BCD3D2B8AA4E67B67891B14FF929FE4743880FDF82E
Chrome Cache Entry: 206	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	07BF314AAB04047B9E9A959EE6F63DA3	17BEF6602672E2FD9956381E01356245144003E5	55EAF62CB05DA20088DC12B39D7D254D046CB1FD61DDF3AE641F1439EFD0A5EE
Chrome Cache Entry: 207	ASCII text, with very long lines (2343)	575B5480531DA4D14E7453E2016FE0BC	E5C5F3134FE29E60B591C87EA85951F0AEA36EE1	DE36E50194320A7D3EF1ACE9BD34A875A8BD458B253C061979DD628E9BF49AFD
Chrome Cache Entry: 208	ASCII text, with very long lines (3835)	37A1A1748906195AB76D231A7B272DC3	E62618218E6695CBE78F4893F935397464AB2E5F	DD0F7088F2B7122C17EA35DAA300534D47F320EB93220748167BD18A6E4133DB
Chrome Cache Entry: 209	HTML document, ASCII text, with very long lines (2008)	D1F231B50B152372A6C3100F4AED1973	1BF10951BE06DA03D1371A904E19C0419F2A3637	9DEC95894AF322B087AB6E87F9C8CE66D849646CF33B375D33C957F4569ED081
Chrome Cache Entry: 210	JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], progressive, precision 8, 1200x800, components 3	B9765C80EC3725F9D5AF647EF251650F	050CD026C4D87A29ED591AB394C9E831C199210D	F0D66F6F2AB1E7231F101097E36D6AFB87A09CE3985A9F7CBB01680B4F3833C3
Chrome Cache Entry: 211	ASCII text, with very long lines (3083)	FD9C9E1850992C76676C351FB57F2D81	76B886AA100C3D240EF5388FB35F469A2013C769	43B052335621757C1FB5F47847F9366E16C120192C4C45998D886154CDD515E0
Chrome Cache Entry: 212	ASCII text, with very long lines (3533)	EDDE768F759556194CED208AE0ACC998	702814282D56F8208D6B178169B2A9F370944679	38CB12140D5165BC886A6F1B1A49ABA023E37914C9012C6EC8453EFA45380A98
Chrome Cache Entry: 213	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 214	HTML document, ASCII text, with very long lines (436), with no line terminators	20F9D629298F7EBFBE759BB86B2F720A	C441447FED9F3911F6FCCEDCB7125C92BF9CD47D	92065F8759F9104B05B24FAC7040CC7B8F58E7058ECA94AD18D397C0371E33DB
Chrome Cache Entry: 215	SVG Scalable Vector Graphics image	5456480BE8FC5E314894DE917D03B872	E0CD6A75C8C8D24D977783AF79385B6044B9B011	3DE87395B0F548176A7782504EEEF66E50C4E395CDA05A6FC324E7C2600DC965
Chrome Cache Entry: 216	Web Open Font Format (Version 2), TrueType, length 33896, version 1.0	EDE1A4D0A26DF783E582AC07892E92FC	CE1242F5CD768C0126485BE9E679F3E2C7E6C3FC	997E7F6C4136B962CEC732D922735900AAA874E3E19B7A8DDD277ADA23605451
Chrome Cache Entry: 217	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 218	HTML document, ASCII text, with very long lines (65536), with no line terminators	278C8359CB85370504B0D62ED2DDCD78	C22B6C9631D517579E47EBF46DE648EFF949A578	9455055A50E8827E46FACBD9CAD6B842E03BC1F259AF905127D8D68D04F99EF3
Chrome Cache Entry: 219	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 220	ASCII text, with very long lines (2356)	3BD739668FD154A92C5D9AF0DFED22F3	0BDC6B822F0C8C50658794823DF179F09D68CC57	9CC8B7F6676CB620C2D7F443D753F0072165FB1C7624025CA580B71F2C011CBF
Chrome Cache Entry: 221	ASCII text, with very long lines (1223)	ACFAAF3B7DA03D515C434409A8CEDFE3	4E2FE4950FCED5DF7A649497A093614E0A7D778F	A192CC8B869A545B6910C7CB5C96612499A856C49585A67D1629CEC7EBB83DA0
Chrome Cache Entry: 222	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 223	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced	EF9941290C50CD3866E2BA6B793F010D	4736508C795667DCEA21F8D864233031223B7832	1B9EFB22C938500971AAC2B2130A475FA23684DD69E43103894968DF83145B8A
Chrome Cache Entry: 224	ASCII text, with no line terminators	9AFB0D35BB088B3036561313BF7CE1F4	C7F3FDE34C537242969FBBD736B5B129611F1694	6E4501CE6F65A1B8671A9D31A8F5AB56DFA4E30AA7A4A971DAA1544AB2EB53C1
Chrome Cache Entry: 225	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 226	ASCII text, with very long lines (3679)	0FCF2DB6069F891ED0C3C44913CB9010	601092BD93DD0524BB83E8DF0165B5FF4CCC8C05	1D7D177FCBF45F985E333FBFD694E6F9D6966F6C4888879DA5A01AFEA6597D89
Chrome Cache Entry: 227	HTML document, ASCII text	00076C4C92A2549A1E748CC232181175	C1B1B561071E29CB09DE42B5775205BD5C5C33DE	B5B7F94D03622214503B0F88CBBDC0FB2A28286C995CF5FAAC0CE1264ACC9377
Chrome Cache Entry: 228	ASCII text, with very long lines (5221), with no line terminators	BEBADEA5E4EB72D084AA2150579BC76A	FD8F16C59B5222EEF3B8CA99674B59C17E995C22	A4253D66D8516FE0EACA59F81F8B0D306ABAD414F6F7A8785C1A23859ABAAFB3
Chrome Cache Entry: 229	ASCII text, with very long lines (3835)	38F896A625FF3029246AC78E521071D0	923AF720268D19D86D8AC1350089D6B4E83DA2A2	65A1706420BEC2372F765AA30B37FE4B5FD7E57CE859718D2A2431C03073D1F3
Chrome Cache Entry: 230	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 231	ASCII text, with very long lines (1055)	2669D16AAE166D157B8434762A199620	CA7E08D45D0D469ED57825C28CB214F421311F97	944A37F694B55DE268A0BF52DBAE4E12F12C4AE09EE5C8D213BA05075C2865DD
Chrome Cache Entry: 232	ASCII text, with very long lines (18228)	E8973FE53EE0FF115E4E2986E5C49B8B	DEE03F081056FF34CDE4C49F834B52C9ACE6077B	85DA7A3554E8C5C67E44399F8FE1622F121330D177152074D5EFBFDB844DDA8C
Chrome Cache Entry: 233	HTML document, ASCII text, with very long lines (815)	147FD3B00C22BA9C939712E9213C24CA	3B48369B86FA0574F35379AACD1F42CC9C98A52B	70F5B11C1870CF90201A6D5F770CA318A3FA5827C74A8765EDE22B487F7D4532
Chrome Cache Entry: 234	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x800, components 3	C7813D4DD33506201D00C62B710BADE0	356545AE24559ADC8A7694A55CEFAD56AB5DDB1E	9F4A129CA2D27CBB6191B941BA6A41A9023BB9BA40AF2494DD3235F8ABD1BDEB
Chrome Cache Entry: 235	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators	5DF496280D762938024A9DF67346430E	0E5B931F30D34223EB9B3B629B7DB8914CDBD2E0	E7857D12A5AD458CC38F5BB8EA5951AD19A816F3706B804D2123F0E86A8A3D86
Chrome Cache Entry: 236	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	0F2A4639B8A4CB30C76E8333C00D30A6	57E273A270BB864970D747C74B3F0A7C8E515B13	44B988703019CD6BFA86C91840FECF2A42B611B364E3EEA2F4EB63BF62714E98
Chrome Cache Entry: 237	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x900, components 3	68DE34F0ED0F2A8034757FC353764AD3	848A484C56F80269FE1C5B001A0DDF47CB35C514	167165316033763B6B85DD958824F5F0F8039E55A63542C841C2E74EB56CC303
Chrome Cache Entry: 238	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 239	ASCII text, with very long lines (5272), with no line terminators	A0F44EC6BB71B83E25AE7F477A8DFC7B	5017D9297C7A4E688C7CF3259DB14AEF6E772715	E4D0B4753AAA6BED08351ADC415B4E3F8B9F1E298318E3E421F6F9966890E690
Chrome Cache Entry: 240	ASCII text, with very long lines (2345)	0BE92307214665AD0000C8F5E40781BF	8E09E8ED77F437B955A0AD7E5515033F4B54FC28	91EA411F1D6635BE4D2719B4B0336D0389960C2AAE025E5903B678AA47429F03
Chrome Cache Entry: 241	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	88E0F42C9FA4F94AA8BCD54D1685C180	5AD9D47A49B82718BAA3BE88550A0B3350270C42	89C62095126FCA89EA1511CF35B49B8306162946B0C26D6F60C5506C51D85992
Chrome Cache Entry: 242	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x800, components 3	B480D21936DD6420433480BE0DF6174F	C20B76837B4C3EC461863EBF4BEF65D47F8137B8	6D4B409225D27A6484C16DB14C88FB505A65174836925EE4F5FA27E6046636EB
Chrome Cache Entry: 243	PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced	EF9941290C50CD3866E2BA6B793F010D	4736508C795667DCEA21F8D864233031223B7832	1B9EFB22C938500971AAC2B2130A475FA23684DD69E43103894968DF83145B8A
Chrome Cache Entry: 244	PNG image data, 56 x 79, 8-bit/color RGB, non-interlaced	93201BE807C5EE9B461ADDD894FE8C25	8F91EB63D427CB00C05456FD29F9A5DE1BDE833A	7D42C26F125BE4A2291985AB36B4A6CDAE13E7A2E31274898ACB504EFE7C94C7
Chrome Cache Entry: 245	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 246	HTML document, ASCII text, with no line terminators	C83301425B2AD1D496473A5FF3D9ECCA	941EFB7368E46B27B937D34B07FC4D41DA01B002	B633A587C652D02386C4F16F8C6F6AAB7352D97F16367C3C40576214372DD628
Chrome Cache Entry: 247	Web Open Font Format (Version 2), TrueType, length 61736, version 1.0	EDE84D96808C486E3DE74CBD8F2A2C80	BAE3CE34F928BE471EE489BBFE5B7425AEE8298E	02F1DCC0C722E24CBA9BE4B720831A79489E766D5EDF8B77F582E0869312D86E
Chrome Cache Entry: 248	Unicode text, UTF-8 text, with very long lines (11822)	659A1EC658C77B9C936C856B9B72A548	C1076FE1A694D561FFAA673793CB6418763FA1E4	B2D12B381E4F471679E903D6C8FE634AB8DDA43764168C8F3C1EE1269FE7EDAB
Chrome Cache Entry: 249	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x900, components 3	FFEC98FB2706308991171AE91A7F2B39	5C08A7715618C421D76AA50BB866B89F7835A05E	73BBAB197C0E86FBFA909DF32B658DFBED65E25643EE781AEB563F335369167F
Chrome Cache Entry: 250	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 251	ASCII text, with very long lines (53882)	9EB72269A2732C40444CC59A08E1D7A9	13015FE6866D65951308C6781ABDF6DD7C44223B	C7C69898719406BCB784D399FE3FDCFA012FA47B7968DE55514B17AC1CA3BDDE
Chrome Cache Entry: 252	PNG image data, 56 x 79, 8-bit/color RGB, non-interlaced	93201BE807C5EE9B461ADDD894FE8C25	8F91EB63D427CB00C05456FD29F9A5DE1BDE833A	7D42C26F125BE4A2291985AB36B4A6CDAE13E7A2E31274898ACB504EFE7C94C7
Chrome Cache Entry: 253	ASCII text, with very long lines (1382)	3B071D5606CC1CF92AE307F5BDB4E540	E191068CC90E5489130489A1CF173FE50BBA28B8	FF3DE130872FE0FB5B770DFA2BC9F0DAF8AB320403A34A60D089436F08D24F99
Chrome Cache Entry: 254	ASCII text, with very long lines (1932)	C7DA75D381D3C37CCE74D29DFC3BA433	88C9A8449300B861238147F39048A4845FBCD61D	8F789443081FE91D788772D24357DE950A73D352F871758674706961A75CD4EF
Chrome Cache Entry: 255	ASCII text, with very long lines (1500), with no line terminators	6A4D1DA258759A5F73908BA55EAE34E3	6346D65BF60B98A9A64E03730CDA174883948879	A62813CAEEDA571A57FE35E4276EDEE70591B15130207970C495BB43A3FF86C3
Chrome Cache Entry: 256	PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced	9246CCA8FC3C00F50035F28E9F6B7F7D	3AA538440F70873B574F40CD793060F53EC17A5D	C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84
Chrome Cache Entry: 257	ASCII text, with very long lines (1957)	42693E3350D9010727B73E179BCEB800	27BE5B41D4B99F649D3E089B7D68DF42BC48B4C1	E67F008CC3C6B8FAC37944FD37D7A4A6810081DCB2CE32BDB4A56C9EF7D71B24
Chrome Cache Entry: 258	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 259	SVG Scalable Vector Graphics image	6974AEE9AF84143B4AC5C739F1707C95	B0E39311591AA75BF203BC7ABDF64FDAF7B05797	E8B2FE0CAF115F14D018B7064E8F710521D4C284263A7AE2922FEEC272961DA6
Chrome Cache Entry: 260	PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced	9246CCA8FC3C00F50035F28E9F6B7F7D	3AA538440F70873B574F40CD793060F53EC17A5D	C07D7D29E3C20FA6CA4C5D20663688D52BAD13E129AD82CE06B80EB187D9DC84
Chrome Cache Entry: 261	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 262	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x800, components 3	C7813D4DD33506201D00C62B710BADE0	356545AE24559ADC8A7694A55CEFAD56AB5DDB1E	9F4A129CA2D27CBB6191B941BA6A41A9023BB9BA40AF2494DD3235F8ABD1BDEB
Chrome Cache Entry: 263	C++ source, ASCII text, with very long lines (2875)	37D6140D181883B03975D9454DBBFDED	38EF8848A82E58ABE73C1A880D03DD3C53637FCC	2AC52BD16D3C1BB75FAC25D4961FC73897894D990F43844BEF8E7BE36FACB84B
Chrome Cache Entry: 264	ASCII text, with very long lines (1875)	8E2891F4A85FD1F5579608A761C8DD23	3DA109099A4743BCD03EF2A21D6F62C592D0893D	AF91017E5733CB8CD373F2195C6598B8A7781D92C7F5B4131C93A7E466B92B91
Chrome Cache Entry: 265	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 266	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 267	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 268	ASCII text, with very long lines (2247)	31EE90ED11CC4130C8D4F35C4F46451D	E66581572F0549FBF9554E000E3515695695F1A6	3D5BBADBF71D22B7D25D55FF04732948F0ACCE95DDC006DEF8EE1138D722664E
Chrome Cache Entry: 269	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 270	GIF image data, version 89a, 1 x 1	B4491705564909DA7F9EAF749DBBFBB1	279315D507855C6A4351E1E2C2F39DD9CD2FCCD8	4E0705327480AD2323CB03D9C450FFCAE4A98BF3A5382FA0C7882145ED620E49
Chrome Cache Entry: 271	HTML document, ASCII text, with no line terminators	C83301425B2AD1D496473A5FF3D9ECCA	941EFB7368E46B27B937D34B07FC4D41DA01B002	B633A587C652D02386C4F16F8C6F6AAB7352D97F16367C3C40576214372DD628
Chrome Cache Entry: 272	SVG Scalable Vector Graphics image	5456480BE8FC5E314894DE917D03B872	E0CD6A75C8C8D24D977783AF79385B6044B9B011	3DE87395B0F548176A7782504EEEF66E50C4E395CDA05A6FC324E7C2600DC965
Chrome Cache Entry: 273	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 274	HTML document, ASCII text, with very long lines (634)	2FE2B1F17888E326B010A8CDA72D48D3	59CBBEEDE4C472024C482BAE8529144119BBBD27	9A9B7FB32E01FD70747F32EFDBD0472FD681C85EEBB0C42D10C7A514820A0062
Chrome Cache Entry: 275	ASCII text, with very long lines (2345)	0BE92307214665AD0000C8F5E40781BF	8E09E8ED77F437B955A0AD7E5515033F4B54FC28	91EA411F1D6635BE4D2719B4B0336D0389960C2AAE025E5903B678AA47429F03
Chrome Cache Entry: 276	HTML document, ASCII text, with very long lines (48829), with no line terminators	E7DF7314DA2BF16CE018628E9068CAA8	27E28B17D327B505C8CCCAD61F6C260F53E1AF05	4D45ED856C310F021804CDAFF81057152FAAE12B76133BD1D91555AE7980A065
Chrome Cache Entry: 277	Web Open Font Format (Version 2), TrueType, length 61628, version 1.0	1033A47731E45F7BD46A1962359E96B4	AC6ABEF8D1819A685DB48A9515F77A24A153E2A0	61C412FBDBBF1417355373A80125C8CF7E5CBAAB4218BAE0316FE6EF917BF798
Chrome Cache Entry: 278	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 279	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 280	ASCII text, with very long lines (701)	88A5FED5C87B1D3704AB225CFBE7A130	D64243C18FBAA356E4ABAE8414CCC4772D64060B	F8E5F5CE9FF44073CFF24BCD3D2B8AA4E67B67891B14FF929FE4743880FDF82E
Chrome Cache Entry: 281	HTML document, Unicode text, UTF-8 text, with very long lines (27719)	DDAB95AE2DBCF39AD4CF1A92D421930C	70AA21D00F8E240EC664CD25124AB1BD09DAC368	6E17248A57DE354B4546A6C1E0975F411FCDC2A34F9058F2F90A6E1D6B981B96
Chrome Cache Entry: 282	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x900, components 3	68DE34F0ED0F2A8034757FC353764AD3	848A484C56F80269FE1C5B001A0DDF47CB35C514	167165316033763B6B85DD958824F5F0F8039E55A63542C841C2E74EB56CC303
Chrome Cache Entry: 283	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 284	ASCII text, with very long lines (65536), with no line terminators	47BEA70318B724B1A99A1D571FF58807	B66FFE704AD2FE84DA8211D6351727568FD68B78	11A188A204934185AB5649A1F838FE771C3D84C928BC8286EF999FB5B8DEDA69
Chrome Cache Entry: 285	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 286	ASCII text, with very long lines (5945)	65B06BD8C9E51CD05F3BC0CC4DABA95E	B19601D3AF61A113FB96B53A4C0568753F69EF3C	36BEA3AF822AD225EAE85D017AA36D16C5801DA1576B7F16397241235F54FFC1
Chrome Cache Entry: 287	ASCII text, with very long lines (5254), with no line terminators	B6380306CAC527B886C7A79820EBDE44	297E8493AF29F57026CABE8042D84C13C5F8C5C4	FE54E470CB2179BAAAF81B2DC88EF92F3AF2156A890AE00F4A43F1D0E2E01227
Chrome Cache Entry: 288	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 289	ASCII text, with very long lines (19948), with no line terminators	EC18AF6D41F6F278B6AED3BDABFFA7BC	62C9E2CAB76B888829F3C5335E91C320B22329AE	8A18D13015336BC184819A5A768447462202EF3105EC511BF42ED8304A7ED94F
Chrome Cache Entry: 290	ASCII text, with very long lines (4139)	F8B22D2051F60AB91B7C17E5962F182D	D8B49E08007841531875F8C5B1141E9CF37B8E93	3EBCE6697223E69D3A79F1B92B90BE8EF56D613AAE002210E468C2AEF7C20468
Chrome Cache Entry: 291	ASCII text, with very long lines (2968)	8433F13BAB1A572511DD075A29A89F2B	ABACFBCE370CD78A4DD2D1DE379868A27CDF5715	60C56ED33373F56BE5E1D1E983D0BC0D863912196A9D570498EB4C7FD5D9E3CA
Chrome Cache Entry: 292	Unicode text, UTF-8 text, with very long lines (11822)	659A1EC658C77B9C936C856B9B72A548	C1076FE1A694D561FFAA673793CB6418763FA1E4	B2D12B381E4F471679E903D6C8FE634AB8DDA43764168C8F3C1EE1269FE7EDAB
Chrome Cache Entry: 293	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 294	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 295	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators	5DF496280D762938024A9DF67346430E	0E5B931F30D34223EB9B3B629B7DB8914CDBD2E0	E7857D12A5AD458CC38F5BB8EA5951AD19A816F3706B804D2123F0E86A8A3D86
Chrome Cache Entry: 296	ASCII text, with very long lines (1500), with no line terminators	6A4D1DA258759A5F73908BA55EAE34E3	6346D65BF60B98A9A64E03730CDA174883948879	A62813CAEEDA571A57FE35E4276EDEE70591B15130207970C495BB43A3FF86C3
Chrome Cache Entry: 297	HTML document, Unicode text, UTF-8 text, with very long lines (27719)	0EAD135443714F7430486BD905CC886C	A5F57BE42A4D05BDCEE9F870C204BB3B50CB743E	3505467BBB57B5AC132D01B55C82B9FA7CA45D097E203EEDBC20F3E8C14BC301
Chrome Cache Entry: 298	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x800, components 3	B480D21936DD6420433480BE0DF6174F	C20B76837B4C3EC461863EBF4BEF65D47F8137B8	6D4B409225D27A6484C16DB14C88FB505A65174836925EE4F5FA27E6046636EB
Chrome Cache Entry: 299	SVG Scalable Vector Graphics image	6974AEE9AF84143B4AC5C739F1707C95	B0E39311591AA75BF203BC7ABDF64FDAF7B05797	E8B2FE0CAF115F14D018B7064E8F710521D4C284263A7AE2922FEEC272961DA6
Chrome Cache Entry: 300	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x900, components 3	FFEC98FB2706308991171AE91A7F2B39	5C08A7715618C421D76AA50BB866B89F7835A05E	73BBAB197C0E86FBFA909DF32B658DFBED65E25643EE781AEB563F335369167F
Chrome Cache Entry: 301	ASCII text, with very long lines (3083)	FD9C9E1850992C76676C351FB57F2D81	76B886AA100C3D240EF5388FB35F469A2013C769	43B052335621757C1FB5F47847F9366E16C120192C4C45998D886154CDD515E0
Chrome Cache Entry: 302	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	88E0F42C9FA4F94AA8BCD54D1685C180	5AD9D47A49B82718BAA3BE88550A0B3350270C42	89C62095126FCA89EA1511CF35B49B8306162946B0C26D6F60C5506C51D85992
Chrome Cache Entry: 303	ASCII text, with very long lines (1957)	42693E3350D9010727B73E179BCEB800	27BE5B41D4B99F649D3E089B7D68DF42BC48B4C1	E67F008CC3C6B8FAC37944FD37D7A4A6810081DCB2CE32BDB4A56C9EF7D71B24
Chrome Cache Entry: 304	ASCII text, with very long lines (8219), with no line terminators	77FCCC7EE14C4D4C13932D92B511C14F	59D4672C2A7939D5803C46F896AA57D41F5E3D13	6BFAE9DF31B8F7B37D3CCB9DC1BD1B8D333AC7C51CE69FBEE01BE5D665B14C40
Chrome Cache Entry: 305	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 306	ASCII text, with very long lines (4139)	F8B22D2051F60AB91B7C17E5962F182D	D8B49E08007841531875F8C5B1141E9CF37B8E93	3EBCE6697223E69D3A79F1B92B90BE8EF56D613AAE002210E468C2AEF7C20468
Chrome Cache Entry: 307	Unicode text, UTF-8 text, with very long lines (65534), with no line terminators	5DF496280D762938024A9DF67346430E	0E5B931F30D34223EB9B3B629B7DB8914CDBD2E0	E7857D12A5AD458CC38F5BB8EA5951AD19A816F3706B804D2123F0E86A8A3D86
Chrome Cache Entry: 308	Web Open Font Format (Version 2), TrueType, length 61628, version 1.0	1033A47731E45F7BD46A1962359E96B4	AC6ABEF8D1819A685DB48A9515F77A24A153E2A0	61C412FBDBBF1417355373A80125C8CF7E5CBAAB4218BAE0316FE6EF917BF798
Chrome Cache Entry: 309	ASCII text, with very long lines (18563)	DF39BBDBFD997E8F4FA2CF75A3F47823	408623D4D96AA67C0A458C4E791A2399F4DAA197	E6FC94615DFB1BEA7D5D2C0EB3B473773613B14B116C460FA455646246731881
Chrome Cache Entry: 310	HTML document, ASCII text, with very long lines (1238)	9E8F56E8E1806253BA01A95CFC3D392C	A8AF90D7482E1E99D03DE6BF88FED2315C5DD728	2595496FE48DF6FCF9B1BC57C29A744C121EB4DD11566466BC13D2E52E6BBCC8
Chrome Cache Entry: 311	HTML document, ASCII text, with very long lines (829), with no line terminators	B060113888187BCEBB04D5122F359482	86386E66960B9D2F4B4C3384A8D178CB4D29860E	EA616EA3D44DF5EF60DA23ABCD45AF479702B34F795285409B4F9E1BF3105E4B
Chrome Cache Entry: 312	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 313	ASCII text, with very long lines (47671)	B804BCD42117B1BBE45326212AF85105	7B4175AAF0B7E45E03390F50CB8ED93185017014	B7595C3D2E94DF7416308FA2CCF5AE8832137C76D2E9A8B02E6ED2CB2D92E2F7

HTML page contains hidden javascript code

Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1

Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1#google_vignette	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1#google_vignette	HTTP Parser: No favicon
Source: https://www.carmax.com/cars/suvs?i=cfc50e95-a6bc-11ef-aec9-82795deff674	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:50137 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:50281 version: TLS 1.2

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.4:50016 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.22.50.131
Source: unknown	TCP traffic detected without corresponding DNS query: 2.22.50.131
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8e53454539d67d1c HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1&__cf_chl_rt_tk=kWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/22755d9a86c9/api.js?onload=clJo2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8e53454539d67d1c HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1117065252:1732049276:5wQSqIrtQiJD7LADUZgRGxpzqUAbqbs_vhZPDz7JUoY/8e53454539d67d1c/mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8e HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/22755d9a86c9/api.js?onload=clJo2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8e5345552c3517d9&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8e5345552c3517d9&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/8e5345552c3517d9/1732051507528/k2JR9z52bkIJ6BT HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/pat/8e5345552c3517d9/1732051507529/a5f17111fff36665c3bddfa7341566cec45861833266dcb323a5b678b8f5ba88/T5QOOTpkEtbvwDf HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/8e5345552c3517d9/1732051507528/k2JR9z52bkIJ6BT HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=kOxxgeRMREt+b9g&MD=LuoUC3gb HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1117065252:1732049276:5wQSqIrtQiJD7LADUZgRGxpzqUAbqbs_vhZPDz7JUoY/8e53454539d67d1c/mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8e HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /css/app.css?id=228bf1ed89dd0b4572a0 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /manifest.json HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rw.js HTTP/1.1Host: r.wdfl.coConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?fb8184add5a3101ad0a321db81c70285 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://t.ly/css/app.css?id=228bf1ed89dd0b4572a0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /cf-fonts/s/lobster/5.0.18/latin/400/normal.woff2 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rw.js HTTP/1.1Host: r.wdfl.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051523687&cv=11&fst=1732051523687&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/10875945736?random=1732051523687&cv=11&fst=1732051523687&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051523687&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCa7L7dk-LYEJMHWqB2fMOj6lyUQTPZxIWajQ&random=3409458993&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051523687&cv=11&fst=1732051523687&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /js/483.js?id=adb5c22e402946b6624d HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /js/483.js?id=adb5c22e402946b6624d HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/How-Does-a-URL-Shortener-Work.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/22755d9a86c9/main.js? HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051523687&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCa7L7dk-LYEJMHWqB2fMOj6lyUQTPZxIWajQ&random=3409458993&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/10/Shrink-Your-QR-Codes-with-T.LY_.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/Build-Your-Own-URL-Shortener.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Share-Spotify-Links-with-QR-Codes.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/22755d9a86c9/main.js? HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/How-Does-a-URL-Shortener-Work.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/10/Shrink-Your-QR-Codes-with-T.LY_.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/Build-Your-Own-URL-Shortener.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Share-Spotify-Links-with-QR-Codes.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /css/app.css?id=228bf1ed89dd0b4572a0 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/jsd/r/8e5345bce87e41ef HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051529684&cv=11&fst=1732051529684&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /td/rul/10875945736?random=1732051529684&cv=11&fst=1732051529684&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051529684&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCa7L7dpjkUFUjB3uKc-C0sZknqgKBiXTzVB5u_NYKZGLsltFk5nGRe&random=4097607878&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051529684&cv=11&fst=1732051529684&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /js/950.js?id=4c09061f265c4eb07177 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /getconfig/sodar?sv=200&tid=gda&tv=r20241118&st=env HTTP/1.1Host: ep1.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Origin: https://t.lySec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051529684&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCa7L7dpjkUFUjB3uKc-C0sZknqgKBiXTzVB5u_NYKZGLsltFk5nGRe&random=4097607878&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/jsd/r/8e5345e62f454213 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /js/227.js?id=989ead960b39de20de73 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; cf_clearance=WnbYTfa0jNi.vyN42HNLQtFeXMprCoYf2LFIRWXTT4g-1732051533-1.2.1.1-MHJ_Z0N2oabtGGesNM1f3Bsk9Rx.Zbk1l6AhhmRYPPR9nnD3WnjjsXGjStp1wlkENHsJlBQvCQMT1hISEG.65cZmply9XgfeUeKHi9sG92rW6AHEq_J1kw_7iodKiPL6Y2VQRcneC4Um4C.3L22djMjbcqeDIsOrMsiMe2D575AvT5c20DpeOAVFojosBpOydwtpSG7lYnvPLuFy0QtnAf7_W_JvDP3Ur5DHGU9mRJZIapXzpiQjGhonG2dyvqZoxuN6yZcp2V0XwgQJL5aJjpEj0ARvNPhMPS8EH1O_i8KRSQJ6k68M5hZfPREE88wWaCu4bl6ig4s3dW.RXwBcE_rd_sfA6pHpJRXwjD4REgBG56d3P3QU_mYw9FysDw_xjMUz01q6vnTIIoup6l6YsLIZXa2YGBzujhvZCMbkNb5EZ46KZMoxPeSQvvedlsjy
Source: global traffic	HTTP traffic detected: GET /js/166.js?id=267eddd588cf4399f581 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; cf_clearance=WnbYTfa0jNi.vyN42HNLQtFeXMprCoYf2LFIRWXTT4g-1732051533-1.2.1.1-MHJ_Z0N2oabtGGesNM1f3Bsk9Rx.Zbk1l6AhhmRYPPR9nnD3WnjjsXGjStp1wlkENHsJlBQvCQMT1hISEG.65cZmply9XgfeUeKHi9sG92rW6AHEq_J1kw_7iodKiPL6Y2VQRcneC4Um4C.3L22djMjbcqeDIsOrMsiMe2D575AvT5c20DpeOAVFojosBpOydwtpSG7lYnvPLuFy0QtnAf7_W_JvDP3Ur5DHGU9mRJZIapXzpiQjGhonG2dyvqZoxuN6yZcp2V0XwgQJL5aJjpEj0ARvNPhMPS8EH1O_i8KRSQJ6k68M5hZfPREE88wWaCu4bl6ig4s3dW.RXwBcE_rd_sfA6pHpJRXwjD4REgBG56d3P3QU_mYw9FysDw_xjMUz01q6vnTIIoup6l6YsLIZXa2YGBzujhvZCMbkNb5EZ46KZMoxPeSQvvedlsjy
Source: global traffic	HTTP traffic detected: GET /js/950.js?id=4c09061f265c4eb07177 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /sodar/sodar2.js HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/166.js?id=267eddd588cf4399f581 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv
Source: global traffic	HTTP traffic detected: GET /js/227.js?id=989ead960b39de20de73 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-5561763581314444?href=https%3A%2F%2Ft.ly&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/search/async-ads.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sodar/sodar2/232/runner.html HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/aframe HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sodar/sodar2.js HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rtimp?a=imp&cr=carmax_ng&d=t.ly&gid=&im=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA&p=Zz0CTgAAaH4Doh1wACYR090i9rbNSWjRaTstsQ&sid=cfc50e95-a6bc-11ef-aec9-82795deff674 HTTP/1.1Host: g.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVqNltFLaLpG_DO_F3gHANOxi2Xo6h_f8naC-cTVW6hSwkuVcmGa9tAwK3X1IHjMV-pr8Rg5Loo0uTEnjrPflvYDsMPy1PQanxyw0ieeulaKqVm8X26h3NFmI5BdqKR-ocjMaHpWg==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTM0LDk5MTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly90Lmx5LyIsbnVsbCxbWzgsIjl6NWtkZHRLZlVvIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc50e95-a6bc-11ef-aec9-82795deff674&params=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA HTTP/1.1Host: serve.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-a5279e2a.css HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQdKb9XA5dArKXn3nSwpHuBihGXD3irMKqOrbW4zpxC_KnWBNcbprkcywJz7v29VAQtpxSBHv4O38_ZczFJnvGnXPZ-ow HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQ6PZi_yOxto5E2OhYu4FKSuWJhCeL6BMJdabW-VFA2_Ra2ADCdB9t2tO7ztC0KiNdB7Cm9qNonESmDsgT7OZyi2fGyjQ HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-a5279e2a.css HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a&params=iOLCtoolLMj12ws6of73LoezNdg1Eq7bzQ2WyG3IqIAtCqDUokyAqwzp4RFDXmUbl3S0n9O-Lkp6oAHiWLyphJfAtlHZYc_cBkhv45PDeLxZpFudmy1-S4_x5KxCOklcUgtJnmuCh3UDPhHVyAuAVu_gCZyxA8Jtbf7LAlHm5litg4oGI8qMdT0CT0_LsI97P2SP8txcQu_x1V2xvO9WV2y6IVYYd7OrhlHln99gWgjZ4CRezrrzAzf4oVm3cFvfizXT4fFM0NTVCXLmW8iVUxAcbvmcLFgCUjauLvZwygt6wJZw5qcM3JEFbpQGDexX HTTP/1.1Host: serve.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fq HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxWsVXVOl_3Cu8OGQOaIA2SsUdWocgqBopfpEBJmiJ_40WRDHdgAmuBfblTzMiT4Ik6jcGM3nCrlzpIyVmkDLEzKJbR2D1cMWhORkEo20-YMPliYdGN58VFPyFvrOUI7f7e1Rj2vJA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTM2LDQzMjAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuIl0sImh0dHBzOi8vdC5seS8iLG51bGwsW1s4LCI5ejVrZGR0S2ZVbyJdLFs5LCJlbi1VUyJdLFsxOCwiW1tbMF1dXSJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rtimp?a=imp&cr=carmax_ng&d=t.ly&gid=&im=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw&p=Zz0CUQAJIn4DohbDAArj0HaoljIbeHSXTFX4BQ&sid=d1e39388-a6bc-11ef-8049-f678f8fa827f HTTP/1.1Host: g.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc50e95-a6bc-11ef-aec9-82795deff674; uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=d1e39388-a6bc-11ef-8049-f678f8fa827f&params=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw HTTP/1.1Host: serve.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc50e95-a6bc-11ef-aec9-82795deff674; uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaTg2qaQUGRCf6-mVuHBt9ciMY-eA-Qf5ZjLDf0HS5sWHMd80cLBiYn4Eueo2KSHbLkJWODsQJkoHvhZgnz7axWfAHlhag HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoRegular.woff2 HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoBold.woff2 HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /int/cm?exc=1&acc=crimtan&google_gid=CAESEBasn5s5K_Ra8Du1U0SdJwU&google_cver=1&google_push=AXcoOmQBvCiudNTq6TD_jZYP4HPwP9u1jo59npMU12eZvIOjTEqhUhZ14-YOZw5173clLLIGljbZkepp6Je_HI-bsOSk-0YVi5uBT5I HTTP/1.1Host: gcm.ctnsnet.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEO-MkICKSfY1ZHHcwZrwmFc&google_cver=1&google_push=AXcoOmQxHDPxV6Bx_3nUuHfg71_kPEXymkD95C-wCK8ZQxXnzG_9E7Ngk0rAzV7ZAvkuSIsQxwA_OMN1um2Lr7Z_UNQwu3BK6dIG HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ext/download-icon_1697445891.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoRegular.woff2 HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ju/cs/google?google_gid=CAESEAkRVGPqPqUAQ3Q-9_ZIa3M&google_cver=1&google_push=AXcoOmQpX-rrSp-eRUstZO2S_XyZ6r1mO1uvZReqp-67Pb5qAO9wt3Aq3wD0MXb9Z5L8L67P9EvN6OgF3v7fvkyZ8uR2T1ZQogFvdg HTTP/1.1Host: gtrace.mediago.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoBold.woff2 HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmSdmg7vyo8FwhQGopKnYF3JRon0O4SPX3D_Ve72aDzbkExVFpROXLuYwajfdUUJqEN-wvCu5NvY_WA16du4l_Y2QWsaPR1Zfg HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmR6fEenNiJxQXRcCitNK0tXpYuRH1QorwBdJpZDuSj0W_7jiPkc0XUW2VYpqyy7ir_YtmjGcManL6R4DDAfepEjvN3UHZot3fY HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTELb5NcD7KvEP1EXYvQyNb3g5D2Bycy-1ofrjM7U5n4mnZH9-RBWIezKE3EPo6bpn6mhQIRDeFnS4jMwLzOAbaHAUHhoEPSTQ HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTMyoAUI3NYUnv5kzU03wHO5W6vFeMN8loe3WIN13xCULneiT9giWoEU2c6eY938QiKeXb4OoEOq9tVnJLBIR5RB4xuc76qiYM HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEMrow_HkHJmtvUoD9nOf3s0&google_cver=1&google_push=AXcoOmQHt5l_BeaLoIf13IrVH1TAdW5pqdi-jrS5qlKo4kdly2WcN7axelRJTDtLBKS09UKWy_nuYs0YhJEVTdxZxpFTwta1vo60Q_Q HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESEA4t2k44cqlQAmlUozfM2pk&google_cver=1&google_push=AXcoOmSsmp_Lr5sx6K_YcS9iqNflNlPBIB7mS_l9oag00W5c2rhfc9qwm8o6nXnQ8D5zPnaB8Q_mSXADRdkHGIWGBxBbLlzcmlSdc5Y HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1 HTTP/1.1Host: dis.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tum?umid=4&uid=CAESEDnjiSdZ0Z3cf8kDF9Mo_Ag&google_cver=1&google_push=AXcoOmTfIr444lPeA3f7J9GIjM6z_Mzh_xlwdZJBTSPXjn_EP0ekdHS6V76rwrZouMzmM2hA3Icvv9xj4oD65mVanZgh93Rsdg6DrQ HTTP/1.1Host: ums.acuityplatform.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /tum?umid=4&uid=CAESEDnjiSdZ0Z3cf8kDF9Mo_Ag&google_cver=1&google_push=AXcoOmTL5mQKihmeGSrsK49OjrP0IqHNt6z8nvEEJ6i7XDEaTfupFoqt5X_G3AqyOeCPmeQsSp7P-K4JxDmBwVtxdHfwtLiHMGKqSZ0 HTTP/1.1Host: ums.acuityplatform.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc50e95-a6bc-11ef-aec9-82795deff674&params=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA HTTP/1.1Host: serve.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEPvo8tIDyEdFgS_IYg40kbw&google_cver=1&google_push=AXcoOmTh6IDJnBydHzn5Fu5abTiOhXhel-6617UAZ9CWtCZ5S40HG6ZlhUasbxJIVWvCLjzKV1or-7n_lXt5rBcHsku4pUVZyOYwWSY HTTP/1.1Host: an.yandex.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dpixel?a=p-n5vvLvRdjg0ek&eid=0&qc_google_push=&google_gid=CAESELF_hrZozPqZBP-KBgNh9gY&google_cver=1&google_push=AXcoOmT32OoWtQhDditBeFlMo6pr5tAY6y4mhoLR841lqqy4nyA9aNqdoW_PZ-n3286eipoDZ58kY0_o0oIyvh2YzfzM4awmjJMtpGY HTTP/1.1Host: cms.quantserve.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=d1e39388-a6bc-11ef-8049-f678f8fa827f&params=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw HTTP/1.1Host: serve.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEIkWiEUE3DkKg7HQcl9ErT0&google_cver=1&google_push=AXcoOmT-TvA9F7DFbln2o_etSv9MWgFIB1Wn3ODMIKvXq150v3oejmMlWwmbFT1dBu8G2Hehalsun3wPiniZRpFwTb2bNmNo4vW7avk HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CqFb8TgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBPoCT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOcpZTZjK5QhhUmtfyHol1kFL6KaiDqCg-jtbdXflnfsajSWVA34RgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi01NTYxNzYzNTgxMzE0NDQ0GAAYDA&sigh=SFEQgDZaA_c&uach_m=%5BUACH%5D&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHPGAE HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CQ9c9UQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIADT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBmizTGYujck9BuZjKuB8LIGJRyFQBkiu900KIT9l0BRMkjSUZDupgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi01NTYxNzYzNTgxMzE0NDQ0GAAYDA&sigh=x2wT2P8Erok&uach_m=%5BUACH%5D&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyRgB HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEItqcxbXi06EcGGxEpAJD_8&google_cver=1&google_push=AXcoOmSa8-h54CrR2K3dVUZ7bfhxYLe6eueU9lUp-JHdH_CAfMloYkfiD4a5Osog8PcuA_59GGcPkmFLYSTf9YRmVGVaQJE1TMlSMA HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a&params=iOLCtoolLMj12ws6of73LoezNdg1Eq7bzQ2WyG3IqIAtCqDUokyAqwzp4RFDXmUbl3S0n9O-Lkp6oAHiWLyphJfAtlHZYc_cBkhv45PDeLxZpFudmy1-S4_x5KxCOklcUgtJnmuCh3UDPhHVyAuAVu_gCZyxA8Jtbf7LAlHm5litg4oGI8qMdT0CT0_LsI97P2SP8txcQu_x1V2xvO9WV2y6IVYYd7OrhlHln99gWgjZ4CRezrrzAzf4oVm3cFvfizXT4fFM0NTVCXLmW8iVUxAcbvmcLFgCUjauLvZwygt6wJZw5qcM3JEFbpQGDexX HTTP/1.1Host: serve.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmSdmg7vyo8FwhQGopKnYF3JRon0O4SPX3D_Ve72aDzbkExVFpROXLuYwajfdUUJqEN-wvCu5NvY_WA16du4l_Y2QWsaPR1Zfg&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTMyoAUI3NYUnv5kzU03wHO5W6vFeMN8loe3WIN13xCULneiT9giWoEU2c6eY938QiKeXb4OoEOq9tVnJLBIR5RB4xuc76qiYM&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmR6fEenNiJxQXRcCitNK0tXpYuRH1QorwBdJpZDuSj0W_7jiPkc0XUW2VYpqyy7ir_YtmjGcManL6R4DDAfepEjvN3UHZot3fY&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXg_lPXM9IhiuIY2YvEZrUXm49GYcMGUhb3JAujhFPkywKxJdoB9RGTxN_YChzjq1DmoUtNQgd5OFXg01TmCqsLNg_oXjtOM4Ky6gSVAO5zpb1M4afMPIp-xF1f3FR9T9a4d5e3XfdBQcZVSSlO6PI9U5AT_PjGyD6boSk7ptX2OEM44NpCNi0U-GC3/_/sponsors/amg.php?/friendfinder_/468x60v1_/ad300f2./ads1. HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTELb5NcD7KvEP1EXYvQyNb3g5D2Bycy-1ofrjM7U5n4mnZH9-RBWIezKE3EPo6bpn6mhQIRDeFnS4jMwLzOAbaHAUHhoEPSTQ&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEItqcxbXi06EcGGxEpAJD_8&google_cver=1&google_push=AXcoOmSa8-h54CrR2K3dVUZ7bfhxYLe6eueU9lUp-JHdH_CAfMloYkfiD4a5Osog8PcuA_59GGcPkmFLYSTf9YRmVGVaQJE1TMlSMA&_bee_ppp=1 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: checkForPermission=ok
Source: global traffic	HTTP traffic detected: GET /track/cmb/google?google_gid=CAESEMrow_HkHJmtvUoD9nOf3s0&google_cver=1&google_push=AXcoOmQHt5l_BeaLoIf13IrVH1TAdW5pqdi-jrS5qlKo4kdly2WcN7axelRJTDtLBKS09UKWy_nuYs0YhJEVTdxZxpFTwta1vo60Q_Q HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=6c976599-7616-42a0-8520-774b2127bc45; TDCPM=CAEYBSgCMgsI8rWype66xD0QBTgB
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fqAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/hdp6NVToxcZ-RDmfj-FiLxITMNF3FSB01e-_24RN2ow.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fqAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /generate_204?Zw3SMw HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ep2.adtrafficquality.google/sodar/sodar2/232/runner.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEPvo8tIDyEdFgS_IYg40kbw&google_cver=1&google_push=AXcoOmTh6IDJnBydHzn5Fu5abTiOhXhel-6617UAZ9CWtCZ5S40HG6ZlhUasbxJIVWvCLjzKV1or-7n_lXt5rBcHsku4pUVZyOYwWSY HTTP/1.1Host: an.yandex.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=3zFyIt9CA7jvA0kq6dqA8Wk5wm+JRUr+zGiCz+yoeE5Wfp/1ftY+JHSShx3qT9LT9b1fw7Tct10SA5Ru1SwHrGbcGc8=; yandexuid=924520971732051539; yashr=5379776711732051539; bh=EkAiR29vZ2xlIENocm9tZSI7dj0iMTE3IiwgIk5vdDtBPUJyYW5kIjt2PSI4IiwgIkNocm9taXVtIjt2PSIxMTciKgI/MDoJIldpbmRvd3MiYNOE9LkGah7cyuH/CJLYobEDn8/h6gP7+vDnDev//fYPutfOhwg=
Source: global traffic	HTTP traffic detected: GET /ext/download-icon_1697445891.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; uid=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; mid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241118&jk=1232907316253446&bg=!aGulayTNAAY7_TBtG_07ADQBe5WfOIAqxopJOFKywdMP3oaK0lOob3unmXCHWZJZQtVG_JpHsj5RW_JKBQb-v2GvdYdZAgAAA1lSAAAAHGgBB34ANuJFBPzu9GGCq73dVcdDVngFAuOf_6Qt-QMvbU_PZUli3lhYZJ-Ljugso3RHhkVKFpjy6LBRh5kCjyXm1Sfg_oyi04DSbhT9-Y_q2-ECVJE6F2uO2XRG3DmSE2XEp5zt3LXh35eXP6TgS4yMk1dFo5_1OAXTtw_kFDIlIZ3d836Wvm1bGTZLozhx-FzjF7Xz6OI20ah1PmxZbjLGqsHdgZEeB_4zs9CYw4CfNfw_3iMK1r2x6IuqmTfcAUjqbR-MNQOE9WSPe1-IvVwwHTXrSPPusUMEQ8nKpkNP1BpQNMhyy80ftCbr5rEoqJth3u3o2i_4CukBEyB1akyL7fpsypKpuP3rnsgBuVewkSt-RciFsrnS61BovzY6oKx5tu0ObgGuEZrh7hwua6N1sovT4WLNbNOZrxmlC1zPRkC42GnritkChsjZsO2GRyos7PuDjU3oagjdivWKSuK2n1E2tSg1MH_0r91JKfAtnwgzLKPX0RNJjjzLBwalu8m1ENpqof-Jy4mfylbB46Zl74rQsOjiaIu47vJOGqW4JNWSOfD-s4L1KwAsxMELTx_-hq59Jnnntm4m6uwIMDyRNCoHLWoJFDN9MzLhKjDZrxHvhiKFM698MWQab8aa7JrTVZwL7_R3RibhcLs06VkX74yvguekFBIhCWvQ7img1P9RcRwFYUWqE42XnTatQPktbOIGlCHc2KsbY709L4J2y3TwYOOM44USImc07JBYI2lG3Bcl9YBRCMJkvne1ba0I61aH9qC6ZN0rPh1_3sIlMO8m_QMvAXe1aAhdZLd2SIGu2Q_u0UrMBFIQuGTtL7U5qC2czBbnjRNqNJKPqIdXHhSC_EecSLRE9lMW8TsYBJ-KehGHaeWrPpGoIjxRzDRp0RqXG_u_0Kr5FiJGeplTs6zrXLLvqhOu1UY1HvKo3q_UsNuGv0JtEemA1nI HTTP/1.1Host: ep1.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/hdp6NVToxcZ-RDmfj-FiLxITMNF3FSB01e-_24RN2ow.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/reload?k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09ANOXeZw0p29A_tG4QtVl9-86_x5bbFLj0OKp1EJwoquSzmxT6_sbap7z6zpEZDLbrptUutVNNVl1iIQEQCi8hHs
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120100v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /aclk?sa=L&ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&num=1&sig=AOD64_3I9_bRMw4WmBeRuJgaKsrN3CvQsg&client=ca-pub-5561763581314444&adurl=https%3A%2F%2Fwww.carmax.com%2Fcars%2Fsuvs%3Fi%3Dcfc50e95-a6bc-11ef-aec9-82795deff674 HTTP/1.1Host: adclick.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /fireshield_logo_1730899282.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rtimp?a=imp&cr=ext_download_fire_sse&d=t.ly&gid=&im=iOLCtoolLMj12ws6of73LoezNdg1Eq7bzQ2WyG3IqIAtCqDUokyAqwzp4RFDXmUbl3S0n9O-Lkp6oAHiWLyphJfAtlHZYc_cBkhv45PDeLxZpFudmy1-S4_x5KxCOklcUgtJnmuCh3UDPhHVyAuAVu_gCZyxA8Jtbf7LAlHm5litg4oGI8qMdT0CT0_LsI97P2SP8txcQu_x1V2xvO9WV2y6IVYYd7OrhlHln99gWgjZ4CRezrrzAzf4oVm3cFvfizXT4fFM0NTVCXLmW8iVUxAcbvmcLFgCUjauLvZwygt6wJZw5qcM3JEFbpQGDexX&p=Zz0CTgAAaHsDoh1wACYR01jVcBrtAtPpqSzQRQ&sid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a HTTP/1.1Host: g.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga=GA1.2.2037803925.1732051525; cf_clearance=WnbYTfa0jNi.vyN42HNLQtFeXMprCoYf2LFIRWXTT4g-1732051533-1.2.1.1-MHJ_Z0N2oabtGGesNM1f3Bsk9Rx.Zbk1l6AhhmRYPPR9nnD3WnjjsXGjStp1wlkENHsJlBQvCQMT1hISEG.65cZmply9XgfeUeKHi9sG92rW6AHEq_J1kw_7iodKiPL6Y2VQRcneC4Um4C.3L22djMjbcqeDIsOrMsiMe2D575AvT5c20DpeOAVFojosBpOydwtpSG7lYnvPLuFy0QtnAf7_W_JvDP3Ur5DHGU9mRJZIapXzpiQjGhonG2dyvqZoxuN6yZcp2V0XwgQJL5aJjpEj0ARvNPhMPS8EH1O_i8KRSQJ6k68M5hZfPREE88wWaCu4bl6ig4s3dW.RXwBcE_rd_sfA6pHpJRXwjD4REgBG56d3P3QU_mYw9FysDw_xjMUz01q6vnTIIoup6l6YsLIZXa2YGBzujhvZCMbkNb5EZ46KZMoxPeSQvvedlsjy; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051537.0.0.0
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /fireshield_logo_1730899282.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; uid=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; mid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga=GA1.2.2037803925.1732051525; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051537.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CXFjqTgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBPsCT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4vj07RTF-UP3lS0oNFMfbsm3ec09TyPF01Satd11HtE-36yNSraHIAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQOACgH6CwIIAYAMAdAVAYAXAbIXHAoYEhRwdWItNTU2MTc2MzU4MTMxNDQ0NBgAGAw&sigh=V833kOsYcOo&uach_m=%5BUACH%5D&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHPGAE&vis=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=kOxxgeRMREt+b9g&MD=LuoUC3gb HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxWosZrc6WMc5nT0uYahyKyNcPKCHSfAQBnHiVULdIxuIjR8lTBxmd3-ZoTHyclNUe5mR9c-fz34KUddyqIAjaDdYvJLWxR28yEYlUj-d-HhSIXi35vcKcA9nuRiA2_cSLdjqoaQMw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTU0LDEyNzAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4iLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly90Lmx5LyIsbnVsbCxbWzgsIjl6NWtkZHRLZlVvIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule90401v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.facebook.com (Facebook)
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.linkedin.com (Linkedin)
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.twitter.com (Twitter)
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.youtube.com (Youtube)
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: Math.round(q);t["gtm.videoElapsedTime"]=Math.round(f);t["gtm.videoPercent"]=r;t["gtm.videoVisible"]=u;return t},Ak:function(){e=qb()},zd:function(){d()}}};var Zb=wa(["data-gtm-yt-inspected-"]),HD=["www.youtube.com","www.youtube-nocookie.com"],ID,JD=!1; equals www.youtube.com (Youtube)
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: if(!(e\|\|f\|\|g\|\|k.length\|\|m.length))return;var p={Dh:e,Bh:f,Ch:g,ji:k,ki:m,Re:n,Ib:b},q=B.YT;if(q)return q.ready&&q.ready(d),b;var r=B.onYouTubeIframeAPIReady;B.onYouTubeIframeAPIReady=function(){r&&r();d()};H(function(){for(var u=E.getElementsByTagName("script"),v=u.length,t=0;t<v;t++){var w=u[t].getAttribute("src");if(SD(w,"iframe_api")\|\|SD(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!JD&&QD(x[A],p.Re))return qc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_179.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: return b}FD.F="internal.enableAutoEventOnTimer";var Zb=wa(["data-gtm-yt-inspected-"]),HD=["www.youtube.com","www.youtube-nocookie.com"],ID,JD=!1; equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: t.ly
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: static.cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: r.wdfl.co
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: blog.t.ly
Source: global traffic	DNS traffic detected: DNS query: ep1.adtrafficquality.google
Source: global traffic	DNS traffic detected: DNS query: ep2.adtrafficquality.google
Source: global traffic	DNS traffic detected: DNS query: fundingchoicesmessages.google.com
Source: global traffic	DNS traffic detected: DNS query: syndicatedsearch.goog
Source: global traffic	DNS traffic detected: DNS query: cdn.bidbrain.app
Source: global traffic	DNS traffic detected: DNS query: g.bidbrain.app
Source: global traffic	DNS traffic detected: DNS query: serve.bidbrain.app
Source: global traffic	DNS traffic detected: DNS query: g.rtbrain.app
Source: global traffic	DNS traffic detected: DNS query: cdn.rtbrain.app
Source: global traffic	DNS traffic detected: DNS query: serve.rtbrain.app
Source: global traffic	DNS traffic detected: DNS query: dclk-match.dotomi.com
Source: global traffic	DNS traffic detected: DNS query: sync-tm.everesttech.net
Source: global traffic	DNS traffic detected: DNS query: ads.travelaudience.com
Source: global traffic	DNS traffic detected: DNS query: a.c.appier.net
Source: global traffic	DNS traffic detected: DNS query: ums.acuityplatform.com
Source: global traffic	DNS traffic detected: DNS query: googlecm.hit.gemius.pl
Source: global traffic	DNS traffic detected: DNS query: gtrace.mediago.io
Source: global traffic	DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: cms.quantserve.com
Source: global traffic	DNS traffic detected: DNS query: um.simpli.fi
Source: global traffic	DNS traffic detected: DNS query: match.adsrvr.org
Source: global traffic	DNS traffic detected: DNS query: gcm.ctnsnet.com
Source: global traffic	DNS traffic detected: DNS query: creativecdn.com
Source: global traffic	DNS traffic detected: DNS query: dis.criteo.com
Source: global traffic	DNS traffic detected: DNS query: match.prod.bidr.io
Source: global traffic	DNS traffic detected: DNS query: an.yandex.ru
Source: global traffic	DNS traffic detected: DNS query: analytics.pangle-ads.com
Source: global traffic	DNS traffic detected: DNS query: www.temu.com
Source: global traffic	DNS traffic detected: DNS query: widget.us.criteo.com
Source: global traffic	DNS traffic detected: DNS query: www.carmax.com
Source: global traffic	DNS traffic detected: DNS query: adclick.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: assets.adobedtm.com
Source: global traffic	DNS traffic detected: DNS query: content-images.carmax.com
Source: global traffic	DNS traffic detected: DNS query: img2.carmax.com
Source: global traffic	DNS traffic detected: DNS query: userinsights.carmax.com

Source: unknown

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 19 Nov 2024 21:25:01 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 19 Nov 2024 21:25:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:05 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: 38I8D6MHqbdssAxGkNjvoKHU/LxqtjI1GjM=$23ASH/Gy8otVfhZbStrict-Transport-Security: max-age=15552000; includeSubDomains; preloadX-Content-Type-Options: nosniffServer: cloudflareCF-RAY: 8e534554df350f37-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:08 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: cJZvalGvsaG1c1yncBS3wHExVPhJOREzsso=$5xHrVAIjWeBq4XExServer: cloudflareCF-RAY: 8e53456b0f2842c8-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:11 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: OO+jS6ul45BmFuiRFR5jvqlaQlFdXIG6Pks=$CS6HbbQQLVcRI+MBServer: cloudflareCF-RAY: 8e53457d4c2132ca-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:20 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: VOElytjYIPJXnLCPqCzbm2TiDMYIx1CUHYM=$5146f+SLebSFcMHtServer: cloudflareCF-RAY: 8e5345b2f97bc3eb-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:22 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: jPXayTNc+EIeTvCMBNjJzLTpqxeSUv0KA1Q=$Y/u4iCzSvXYrVrIVStrict-Transport-Security: max-age=15552000; includeSubDomains; preloadX-Content-Type-Options: nosniffServer: cloudflareCF-RAY: 8e5345bcfe820ca1-EWRalt-svc: h3=":443"; ma=86400

Source: chromecache_190.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_190.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: http://google.com
Source: chromecache_268.2.dr, chromecache_290.2.dr, chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: http://googleads.g.doubleclick.net
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: http://mathiasbynens.be/
Source: chromecache_268.2.dr, chromecache_290.2.dr, chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: http://pagead2.googlesyndication.com
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_196.2.dr, chromecache_291.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://addons.mozilla.org/en-US/firefox/addon/link-shortener/
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://addons.opera.com/en/extensions/details/url-shortener-4/
Source: chromecache_156.2.dr, chromecache_226.2.dr	String found in binary or memory: https://adsense.com.
Source: chromecache_208.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://api.t.ly/api/
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2022/11/How-do-I-shorten-a-URL-for-free.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2022/11/URL-Shortener-API.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2022/12/The-Hidden-Benefits-Of-Using-a-Link-Shortener.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2023/01/What-is-a-Url-Shortener-1.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2023/03/How-to-Create-a-Tiny-URL.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2023/04/Best-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/05/How-to-Track-QR-Code-Scans.webp
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/Dynamic-Links-Deprecation.webp
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/The-End-of-Google-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/Understanding-HTTP-Status-Codes.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/Worlds-Shortest-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/08/Top-Extensions-scaled.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/09/How-to-Share-Spotify-Links-with-QR-Codes.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/10/Shrink-Your-QR-Codes-with-T.LY_.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/11/Build-Your-Own-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/11/How-Does-a-URL-Shortener-Work.jpg
Source: chromecache_179.2.dr, chromecache_286.2.dr, chromecache_151.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://cdn.ampproject.org/amp4ads-host-v0.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://cdn.ampproject.org/rtv/$
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://chromewebstore.google.com/detail/url-shortener/oodfdmglhbbkkcngodjjagblikmoegpa
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://cse.google.com/cse.js
Source: chromecache_196.2.dr, chromecache_291.2.dr	String found in binary or memory: https://developers.google.com/ad-placement
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_177.2.dr, chromecache_209.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/bg/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/getconfig/sodar
Source: chromecache_209.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232
Source: chromecache_209.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232
Source: chromecache_253.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/$
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://ep3.adtrafficquality.google/ivt/worklet/caw.js
Source: chromecache_184.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Google
Source: chromecache_254.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=
Source: chromecache_184.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Google
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://fundingchoicesmessages.google.com/i/$
Source: chromecache_208.2.dr	String found in binary or memory: https://google.com
Source: chromecache_208.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/html/$
Source: chromecache_208.2.dr, chromecache_263.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_177.2.dr, chromecache_209.2.dr, chromecache_253.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/bg/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/getconfig/sodar
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=colleague-executed&name=
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&bin=
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&name=invalid_geo&context=10
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=extra&rnd=
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&lidartos
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&start&control&fle=1&s
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-fallback2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-later2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-pagehide2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-start2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=reach&proto=
Source: chromecache_220.2.dr, chromecache_183.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=fccs&
Source: chromecache_156.2.dr, chromecache_226.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=plmetrics
Source: chromecache_290.2.dr, chromecache_196.2.dr, chromecache_291.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rcs_internal
Source: chromecache_209.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=232
Source: chromecache_179.2.dr, chromecache_286.2.dr, chromecache_151.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_264.2.dr, chromecache_187.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=urind
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/html/$
Source: chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/$
Source: chromecache_268.2.dr, chromecache_290.2.dr, chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=$
Source: chromecache_281.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5561763581314444
Source: chromecache_268.2.dr, chromecache_156.2.dr, chromecache_290.2.dr, chromecache_264.2.dr, chromecache_226.2.dr, chromecache_184.2.dr, chromecache_187.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/err_rep.js
Source: chromecache_268.2.dr, chromecache_156.2.dr, chromecache_226.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/logging_library.js
Source: chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/$
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping
Source: chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping?e=1
Source: chromecache_311.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?
Source: chromecache_209.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=232
Source: chromecache_178.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_212.2.dr	String found in binary or memory: https://publickeyservice.msmt.gcp.privacysandboxservices.com
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://r.wdfl.co/rw.js
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/car.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/cocar.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/static/topics/topics_frame.html
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_189.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/#website
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/?ref=expired
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/affiliates
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/docs
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/expired
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/extension
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/extension-install-cta
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/facebook
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/faq
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/browser/chrome_64x64.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/browser/firefox_64x64.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/browser/opera_64x64.png
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/promo/tly-promo.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/tly-logo.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/linkedin
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/privacy
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/qr-code-generator
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/register
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/terms
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/tools
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/twitter
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_179.2.dr, chromecache_286.2.dr, chromecache_151.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_253.2.dr	String found in binary or memory: https://tpc.googlesyndication.com
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/$
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://twitter.com/TLYShortener
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.crunchbase.com/organization/t-ly
Source: chromecache_240.2.dr, chromecache_275.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_208.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_156.2.dr, chromecache_226.2.dr	String found in binary or memory: https://www.google.com/adsense
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.google.com/adsense/search/async-ads.js
Source: chromecache_254.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr, chromecache_296.2.dr, chromecache_255.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_268.2.dr, chromecache_177.2.dr, chromecache_209.2.dr, chromecache_184.2.dr, chromecache_253.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/aframe
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.google.com/s2/favicons?sz=64&domain_url=
Source: chromecache_208.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://www.googleadservices.com/.well-known/private-aggregation/report-shared-storage
Source: chromecache_254.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/conversion/16521530460/?gad_source=1&adview_type=3
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/managed/js/activeview/
Source: chromecache_208.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_179.2.dr, chromecache_153.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=AW-10875945736
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-89207177-8
Source: chromecache_179.2.dr, chromecache_153.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://www.googletagservices.com/agrp/
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__.
Source: chromecache_184.2.dr	String found in binary or memory: https://www.gstatic.com
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.gstatic.com/prose/protected/$
Source: chromecache_224.2.dr, chromecache_296.2.dr, chromecache_255.2.dr, chromecache_168.2.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__en.js
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.linkedin.com/company/tlyshortener/
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50211 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 50417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50440 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 50359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 50382 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 50462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 50247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 50313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50208 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 50466 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50358
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50353
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50356
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 50442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50361
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50371
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 50478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50410 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50304
Source: unknown	Network traffic detected: HTTP traffic on port 50444 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50301
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 50384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50316
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50311
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50313
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 50454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50324
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50323
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50409 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50389 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50400 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 50434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50458 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50481 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 50193 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50424 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 50353 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50015
Source: unknown	Network traffic detected: HTTP traffic on port 50456 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 50318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50271
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50468 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 50298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50277
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50279
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50280
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50283
Source: unknown	Network traffic detected: HTTP traffic on port 50412 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50446 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50285
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50047
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 50375 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50290
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50292
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50293
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50414 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50448 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50461 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49981 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50380 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50402 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50473 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50249 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50379 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50207 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50436 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 50296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50097
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50158 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50404 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50399 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 50367 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50438 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 50191 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50426 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50355 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50471 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50333 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50097 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50395 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50475 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:50137 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:50281 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@28/267@134/48

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1656 --field-trial-handle=2008,i,6985356235388339202,7807025746520084771,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1656 --field-trial-handle=2008,i,6985356235388339202,7807025746520084771,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1558880
Product:	CloudBasic
Start time:	22:23:54
Start date:	19.11.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1

Overview

General Information

Detection

Signatures

Classification

Signatures

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1