Play interactive tourEdit tour

Windows Analysis Report
https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1

Overview

General Information

Sample URL:	https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1
Analysis ID:	1558880
Infos:

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

Detected non-DNS traffic on DNS port

HTML page contains hidden javascript code

Classification

×

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Phishing

HTML page contains hidden javascript code

Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1

HTTP Parser: Base64 decoded: <svg xmlns="http://www.w3.org/2000/svg" width="32" height="32" fill="none"><path fill="#B20F03" d="M16 3a13 13 0 1 0 13 13A13.015 13.015 0 0 0 16 3m0 24a11 11 0 1 1 11-11 11.01 11.01 0 0 1-11 11"/><path fill="#B20F03" d="M17.038 18.615H14.87L14.563 9.5h2....

HTML page is missing a favicon

Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1#google_vignette	HTTP Parser: No favicon
Source: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1#google_vignette	HTTP Parser: No favicon
Source: https://www.carmax.com/cars/suvs?i=cfc50e95-a6bc-11ef-aec9-82795deff674	HTTP Parser: No favicon

Compliance

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:50137 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:50281 version: TLS 1.2

Networking

Detected non-DNS traffic on DNS port

Source: global traffic

TCP traffic: 192.168.2.4:50016 -> 1.1.1.1:53

Connects to IPs without corresponding DNS lookups

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.22.50.131
Source: unknown	TCP traffic detected without corresponding DNS query: 2.22.50.131
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Downloads files from webservers via HTTP

Source: global traffic	HTTP traffic detected: GET /dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8e53454539d67d1c HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1&__cf_chl_rt_tk=kWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlgAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1Host: static.cloudflareinsights.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/22755d9a86c9/api.js?onload=clJo2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8e53454539d67d1c HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1117065252:1732049276:5wQSqIrtQiJD7LADUZgRGxpzqUAbqbs_vhZPDz7JUoY/8e53454539d67d1c/mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8e HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/b/22755d9a86c9/api.js?onload=clJo2&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8e5345552c3517d9&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=8e5345552c3517d9&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/8e5345552c3517d9/1732051507528/k2JR9z52bkIJ6BT HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/pat/8e5345552c3517d9/1732051507529/a5f17111fff36665c3bddfa7341566cec45861833266dcb323a5b678b8f5ba88/T5QOOTpkEtbvwDf HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/s4qp8/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/8e5345552c3517d9/1732051507528/k2JR9z52bkIJ6BT HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=kOxxgeRMREt+b9g&MD=LuoUC3gb HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1877912673:1732049439:btzgbujlRCqE1bAT4qYRGPwx7FNjb3QNqWy_P_aSkp8/8e5345552c3517d9/I4vHLYDMEXKf7sJRKiaORXWaMNt.ji9TQxIOv2MUSVg-1732051505-1.1.1.1-c2S9Me0Nd7.W0d55IM1zX33RjcnVws2O0evZCwJEcqdnmZPgfSltBtEr43J75O1l HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/1117065252:1732049276:5wQSqIrtQiJD7LADUZgRGxpzqUAbqbs_vhZPDz7JUoY/8e53454539d67d1c/mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8e HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /css/app.css?id=228bf1ed89dd0b4572a0 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /manifest.json HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rw.js HTTP/1.1Host: r.wdfl.coConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?fb8184add5a3101ad0a321db81c70285 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://t.ly/css/app.css?id=228bf1ed89dd0b4572a0Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /cf-fonts/s/lobster/5.0.18/latin/400/normal.woff2 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /rw.js HTTP/1.1Host: r.wdfl.coConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051523687&cv=11&fst=1732051523687&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/10875945736?random=1732051523687&cv=11&fst=1732051523687&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051523687&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCa7L7dk-LYEJMHWqB2fMOj6lyUQTPZxIWajQ&random=3409458993&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051523687&cv=11&fst=1732051523687&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /js/483.js?id=adb5c22e402946b6624d HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York
Source: global traffic	HTTP traffic detected: GET /js/483.js?id=adb5c22e402946b6624d HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/How-Does-a-URL-Shortener-Work.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/22755d9a86c9/main.js? HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051523687&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1%26__cf_chl_tk%3DkWwV9oDDmG10ksSBKs2PEVytQY0gQ52_LWu6rYb8CN4-1732051502-1.0.1.1-siGyymKVes6Vxl2EiEaKHIpcc575rl2JNT.Ksp4YUlg&hn=www.googleadservices.com&frm=0&tiba=T.LY%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCa7L7dk-LYEJMHWqB2fMOj6lyUQTPZxIWajQ&random=3409458993&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/10/Shrink-Your-QR-Codes-with-T.LY_.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/Build-Your-Own-URL-Shortener.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Share-Spotify-Links-with-QR-Codes.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg HTTP/1.1Host: blog.t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-arch: "x86"sec-ch-ua-platform: "Windows"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-model: ""sec-ch-ua-bitness: "64"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: cf_clearance=9fUVKNb5GuZV.m0M7f5RauqqEeSQAr5x5HUEgKDSn0s-1732051502-1.2.1.1-HYYm26FS3uFMh7s.V439AZvGnThfHfQjTiwJmEHYBfYPMgOnKq671ETkxcUhlnflZP0j2XaHJOxVrmQ0mJoJi5ynzuGUscNMMJ8BY4hmIH2UdvoasRRs7HsNJBcV2G.4tMArhLzAHxxFHFPJPwCbELQpT5tE4sG7MF5WrVnk95W9VusyQwKFmU0izCRmwzpmTYLnOwfcRZ.k.pywu1qQy7bvzRPOOal971WCvjDwEo4VqXn9yJIw6rfu07FJA9hnX.h2orEnN9gQ63GbENMKS2H_wx1VIqcXRirWPDP7p0PovspbhdUCj7Ekphf533RSBNlRtcv0oM9KDr37c.JiL4d0slUG9KHpVWapAIMbm9fRHSoE.hqqm_9aEY.41tSpZrq15CobCYbG4S3l.02og0xRPaHFQ8dcudQVJ7Inqjg; XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/22755d9a86c9/main.js? HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/How-Does-a-URL-Shortener-Work.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/10/Shrink-Your-QR-Codes-with-T.LY_.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/11/Build-Your-Own-URL-Shortener.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/09/How-to-Share-Spotify-Links-with-QR-Codes.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg HTTP/1.1Host: blog.t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6InErQTVLYWV0UllqZWloMlM0WTlNdnc9PSIsInZhbHVlIjoiRkc5OS9HejA5bmgvYnhYWHhvbyt3UHg1aVVoUGNuL2pqUkNPVUx6M2NkODNyT2N0a25MemN0MXg5YXpDZ3RuZlNPZzBmNjJ6bE8vMDhIckdsWVVFMDJYdlJuVnBMMXh4WTlwdXBLUldaMDhFUFBRUUJmVzF5TmtZRm4zdVhteHMiLCJtYWMiOiI4YzIwMDM1YzQwMmMzMmRmYTExZjk5ODA3NDY0ZTEwNzQ5YjcyMDI2MGVhMTA0MTJkOWFlNzM5YjQzNTlhMjQyIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6InoyQW9sQ214cHFlckZjUG9Zcmd5ZVE9PSIsInZhbHVlIjoicTdXUzRmL2FBdTZ3LzM2dzZ6WjNaa1RNZ2FlVUtITGR6VEtac1FqWWxpOWZGeDBrTEJSNUI4dGZtSmx2MmJVbjlEOWliOEtUSXNHL253ZFlTSUFJRkptZDVuTWV6Q294UGVGT01kdlJ5bnRpTHhCcVJ4UHhuZnJFY0xvY1A3WVUiLCJtYWMiOiIwMTMzYTkxYjcxNjRjYTk3ZTljNWRlNGNlOWQ5YzJhZjE3MGY5YmVlM2U4YzUyNDg3M2Y5N2ZjY2NmZjdiNjFjIiwidGFnIjoiIn0%3D; _gcl_au=1.1.872676204.1732051524; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051525.0.0.0
Source: global traffic	HTTP traffic detected: GET /css/app.css?id=228bf1ed89dd0b4572a0 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/jsd/r/8e5345bce87e41ef HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://t.lysec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/manifest.js?id=508d2bef9e47b9f734b9 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /js/sweetalert.min.js?id=abedaaba10307a01ba0d HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; _ga=GA1.1.2037803925.1732051525; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.0.1732051527.0.0.0
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051529684&cv=11&fst=1732051529684&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /td/rul/10875945736?random=1732051529684&cv=11&fst=1732051529684&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /js/app.js?id=7258c2b38e20dfae75e4 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /android-chrome-192x192.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051529684&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCa7L7dpjkUFUjB3uKc-C0sZknqgKBiXTzVB5u_NYKZGLsltFk5nGRe&random=4097607878&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/10875945736/?random=1732051529684&cv=11&fst=1732051529684&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /js/950.js?id=4c09061f265c4eb07177 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; cf_clearance=f4k_tooG9XEvLrUItgMLtogajY0WjievHdBt_6Eo.x0-1732051528-1.2.1.1-mBM47G_k9xd49gbBmJW4KnZqmJb3aS3GMKhKO2ZWk4FNT5EhPCRweaQWTJ0DILHJPJWGQIh11WLy.3FUTeOa1aDQWRs0vUZpciaBj4g01Haasoy3HoYFCWRre4EJL98WtPAqrnaGTQ0yw8gZvQKzt_YeVlUWeClfsKCcC0gqu6VeHl9tdrvoRGSRbAFdnurW5M..molPcQ8NOynnYDrENho3StqLuLdo77UDEmA_bVtXQ1X1orqLe7m9QhB3.fzZTciF0sHlY2lgEYdABqnzqZw9gVSOwJSaoCCDnctvQp3ymTcr3szo.oWskllDgXRo5ZQJj4LgjbmVDcEJ01BSfZl6zZquz5YntVrBrhUKZ6GSePryeeu3nBKozC8GhRqa8s2jMAEcoovKfOyalDqKU0z2PD3MZpZgHYaFjZ3xSg7AP5q.cvoB7NPssqVa3Ae1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /js/vendor.js?id=ac953ccc03dd4e7f11ae HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /getconfig/sodar?sv=200&tid=gda&tv=r20241118&st=env HTTP/1.1Host: ep1.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://t.lySec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/10875945736/?random=1732051529684&cv=11&fst=1732050000000&bg=ffffff&guid=ON&async=1&gtm=45be4be0v888461834za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101925629~102067555~102067808~102077855&u_w=1280&u_h=1024&url=https%3A%2F%2Ft.ly%2F%3Fref%3Dexpired%26url%3Dhttps%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&ref=https%3A%2F%2Ft.ly%2Fexpired%3Furl%3Dhttps%3A%2F%2Ft.ly%2Fdwbac%26c%3DE%2C1%2CN1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0%2C%26typo%3D1&hn=www.googleadservices.com&frm=0&tiba=T.LY%3A%20World%27s%20Shortest%20URL%20Shortener&npa=0&pscdl=noapi&auid=872676204.1732051524&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQCa7L7dpjkUFUjB3uKc-C0sZknqgKBiXTzVB5u_NYKZGLsltFk5nGRe&random=4097607878&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /img/tly-logo-sm.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/jsd/r/8e5345e62f454213 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /js/227.js?id=989ead960b39de20de73 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; cf_clearance=WnbYTfa0jNi.vyN42HNLQtFeXMprCoYf2LFIRWXTT4g-1732051533-1.2.1.1-MHJ_Z0N2oabtGGesNM1f3Bsk9Rx.Zbk1l6AhhmRYPPR9nnD3WnjjsXGjStp1wlkENHsJlBQvCQMT1hISEG.65cZmply9XgfeUeKHi9sG92rW6AHEq_J1kw_7iodKiPL6Y2VQRcneC4Um4C.3L22djMjbcqeDIsOrMsiMe2D575AvT5c20DpeOAVFojosBpOydwtpSG7lYnvPLuFy0QtnAf7_W_JvDP3Ur5DHGU9mRJZIapXzpiQjGhonG2dyvqZoxuN6yZcp2V0XwgQJL5aJjpEj0ARvNPhMPS8EH1O_i8KRSQJ6k68M5hZfPREE88wWaCu4bl6ig4s3dW.RXwBcE_rd_sfA6pHpJRXwjD4REgBG56d3P3QU_mYw9FysDw_xjMUz01q6vnTIIoup6l6YsLIZXa2YGBzujhvZCMbkNb5EZ46KZMoxPeSQvvedlsjy
Source: global traffic	HTTP traffic detected: GET /js/166.js?id=267eddd588cf4399f581 HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; cf_clearance=WnbYTfa0jNi.vyN42HNLQtFeXMprCoYf2LFIRWXTT4g-1732051533-1.2.1.1-MHJ_Z0N2oabtGGesNM1f3Bsk9Rx.Zbk1l6AhhmRYPPR9nnD3WnjjsXGjStp1wlkENHsJlBQvCQMT1hISEG.65cZmply9XgfeUeKHi9sG92rW6AHEq_J1kw_7iodKiPL6Y2VQRcneC4Um4C.3L22djMjbcqeDIsOrMsiMe2D575AvT5c20DpeOAVFojosBpOydwtpSG7lYnvPLuFy0QtnAf7_W_JvDP3Ur5DHGU9mRJZIapXzpiQjGhonG2dyvqZoxuN6yZcp2V0XwgQJL5aJjpEj0ARvNPhMPS8EH1O_i8KRSQJ6k68M5hZfPREE88wWaCu4bl6ig4s3dW.RXwBcE_rd_sfA6pHpJRXwjD4REgBG56d3P3QU_mYw9FysDw_xjMUz01q6vnTIIoup6l6YsLIZXa2YGBzujhvZCMbkNb5EZ46KZMoxPeSQvvedlsjy
Source: global traffic	HTTP traffic detected: GET /js/950.js?id=4c09061f265c4eb07177 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525
Source: global traffic	HTTP traffic detected: GET /sodar/sodar2.js HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/166.js?id=267eddd588cf4399f581 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv
Source: global traffic	HTTP traffic detected: GET /js/227.js?id=989ead960b39de20de73 HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051529.0.0.0; _ga=GA1.2.2037803925.1732051525; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-5561763581314444?href=https%3A%2F%2Ft.ly&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adsense/search/async-ads.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sodar/sodar2/232/runner.html HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/aframe HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sodar/sodar2.js HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rtimp?a=imp&cr=carmax_ng&d=t.ly&gid=&im=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA&p=Zz0CTgAAaH4Doh1wACYR090i9rbNSWjRaTstsQ&sid=cfc50e95-a6bc-11ef-aec9-82795deff674 HTTP/1.1Host: g.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVqNltFLaLpG_DO_F3gHANOxi2Xo6h_f8naC-cTVW6hSwkuVcmGa9tAwK3X1IHjMV-pr8Rg5Loo0uTEnjrPflvYDsMPy1PQanxyw0ieeulaKqVm8X26h3NFmI5BdqKR-ocjMaHpWg==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTM0LDk5MTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly90Lmx5LyIsbnVsbCxbWzgsIjl6NWtkZHRLZlVvIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc50e95-a6bc-11ef-aec9-82795deff674&params=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA HTTP/1.1Host: serve.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-a5279e2a.css HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQdKb9XA5dArKXn3nSwpHuBihGXD3irMKqOrbW4zpxC_KnWBNcbprkcywJz7v29VAQtpxSBHv4O38_ZczFJnvGnXPZ-ow HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQ6PZi_yOxto5E2OhYu4FKSuWJhCeL6BMJdabW-VFA2_Ra2ADCdB9t2tO7ztC0KiNdB7Cm9qNonESmDsgT7OZyi2fGyjQ HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-a5279e2a.css HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a&params=iOLCtoolLMj12ws6of73LoezNdg1Eq7bzQ2WyG3IqIAtCqDUokyAqwzp4RFDXmUbl3S0n9O-Lkp6oAHiWLyphJfAtlHZYc_cBkhv45PDeLxZpFudmy1-S4_x5KxCOklcUgtJnmuCh3UDPhHVyAuAVu_gCZyxA8Jtbf7LAlHm5litg4oGI8qMdT0CT0_LsI97P2SP8txcQu_x1V2xvO9WV2y6IVYYd7OrhlHln99gWgjZ4CRezrrzAzf4oVm3cFvfizXT4fFM0NTVCXLmW8iVUxAcbvmcLFgCUjauLvZwygt6wJZw5qcM3JEFbpQGDexX HTTP/1.1Host: serve.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fq HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxWsVXVOl_3Cu8OGQOaIA2SsUdWocgqBopfpEBJmiJ_40WRDHdgAmuBfblTzMiT4Ik6jcGM3nCrlzpIyVmkDLEzKJbR2D1cMWhORkEo20-YMPliYdGN58VFPyFvrOUI7f7e1Rj2vJA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTM2LDQzMjAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuIl0sImh0dHBzOi8vdC5seS8iLG51bGwsW1s4LCI5ejVrZGR0S2ZVbyJdLFs5LCJlbi1VUyJdLFsxOCwiW1tbMF1dXSJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rtimp?a=imp&cr=carmax_ng&d=t.ly&gid=&im=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw&p=Zz0CUQAJIn4DohbDAArj0HaoljIbeHSXTFX4BQ&sid=d1e39388-a6bc-11ef-8049-f678f8fa827f HTTP/1.1Host: g.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc50e95-a6bc-11ef-aec9-82795deff674; uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=d1e39388-a6bc-11ef-8049-f678f8fa827f&params=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw HTTP/1.1Host: serve.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc50e95-a6bc-11ef-aec9-82795deff674; uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaTg2qaQUGRCf6-mVuHBt9ciMY-eA-Qf5ZjLDf0HS5sWHMd80cLBiYn4Eueo2KSHbLkJWODsQJkoHvhZgnz7axWfAHlhag HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoRegular.woff2 HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoBold.woff2 HTTP/1.1Host: cdn.rtbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /int/cm?exc=1&acc=crimtan&google_gid=CAESEBasn5s5K_Ra8Du1U0SdJwU&google_cver=1&google_push=AXcoOmQBvCiudNTq6TD_jZYP4HPwP9u1jo59npMU12eZvIOjTEqhUhZ14-YOZw5173clLLIGljbZkepp6Je_HI-bsOSk-0YVi5uBT5I HTTP/1.1Host: gcm.ctnsnet.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEO-MkICKSfY1ZHHcwZrwmFc&google_cver=1&google_push=AXcoOmQxHDPxV6Bx_3nUuHfg71_kPEXymkD95C-wCK8ZQxXnzG_9E7Ngk0rAzV7ZAvkuSIsQxwA_OMN1um2Lr7Z_UNQwu3BK6dIG HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ext/download-icon_1697445891.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoRegular.woff2 HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ju/cs/google?google_gid=CAESEAkRVGPqPqUAQ3Q-9_ZIa3M&google_cver=1&google_push=AXcoOmQpX-rrSp-eRUstZO2S_XyZ6r1mO1uvZReqp-67Pb5qAO9wt3Aq3wD0MXb9Z5L8L67P9EvN6OgF3v7fvkyZ8uR2T1ZQogFvdg HTTP/1.1Host: gtrace.mediago.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /compressedFonts/RobotoBold.woff2 HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmSdmg7vyo8FwhQGopKnYF3JRon0O4SPX3D_Ve72aDzbkExVFpROXLuYwajfdUUJqEN-wvCu5NvY_WA16du4l_Y2QWsaPR1Zfg HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmR6fEenNiJxQXRcCitNK0tXpYuRH1QorwBdJpZDuSj0W_7jiPkc0XUW2VYpqyy7ir_YtmjGcManL6R4DDAfepEjvN3UHZot3fY HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTELb5NcD7KvEP1EXYvQyNb3g5D2Bycy-1ofrjM7U5n4mnZH9-RBWIezKE3EPo6bpn6mhQIRDeFnS4jMwLzOAbaHAUHhoEPSTQ HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTMyoAUI3NYUnv5kzU03wHO5W6vFeMN8loe3WIN13xCULneiT9giWoEU2c6eY938QiKeXb4OoEOq9tVnJLBIR5RB4xuc76qiYM HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEMrow_HkHJmtvUoD9nOf3s0&google_cver=1&google_push=AXcoOmQHt5l_BeaLoIf13IrVH1TAdW5pqdi-jrS5qlKo4kdly2WcN7axelRJTDtLBKS09UKWy_nuYs0YhJEVTdxZxpFTwta1vo60Q_Q HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESEA4t2k44cqlQAmlUozfM2pk&google_cver=1&google_push=AXcoOmSsmp_Lr5sx6K_YcS9iqNflNlPBIB7mS_l9oag00W5c2rhfc9qwm8o6nXnQ8D5zPnaB8Q_mSXADRdkHGIWGBxBbLlzcmlSdc5Y HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1 HTTP/1.1Host: dis.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tum?umid=4&uid=CAESEDnjiSdZ0Z3cf8kDF9Mo_Ag&google_cver=1&google_push=AXcoOmTfIr444lPeA3f7J9GIjM6z_Mzh_xlwdZJBTSPXjn_EP0ekdHS6V76rwrZouMzmM2hA3Icvv9xj4oD65mVanZgh93Rsdg6DrQ HTTP/1.1Host: ums.acuityplatform.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /tum?umid=4&uid=CAESEDnjiSdZ0Z3cf8kDF9Mo_Ag&google_cver=1&google_push=AXcoOmTL5mQKihmeGSrsK49OjrP0IqHNt6z8nvEEJ6i7XDEaTfupFoqt5X_G3AqyOeCPmeQsSp7P-K4JxDmBwVtxdHfwtLiHMGKqSZ0 HTTP/1.1Host: ums.acuityplatform.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc50e95-a6bc-11ef-aec9-82795deff674&params=aOR2O9pvnSmH6Bnce7gwQtYkJ3EdvTvhaNCBYQfDaNofxAfGyUILM32P7Au1XavlhpFSTDLC7J5291_0BsGpJb725MdFPUT-uvhya46bf_RT3gY5SH6pcsKvyu81cJ8GJ9hnTcVR7p-MnxUPpOMBg1b7r1S7ucGVqwHRN08VASLtCXNcbTK7vmEP6Zz8aZULlJKCUbtkJoAqtoQ53Vvq2wcFd-G745G-H8C78DVs8ZYc3R1J2S1ca2Ta1ZdQpk698ezQAXh0OM7CN5MuoUVElA HTTP/1.1Host: serve.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEPvo8tIDyEdFgS_IYg40kbw&google_cver=1&google_push=AXcoOmTh6IDJnBydHzn5Fu5abTiOhXhel-6617UAZ9CWtCZ5S40HG6ZlhUasbxJIVWvCLjzKV1or-7n_lXt5rBcHsku4pUVZyOYwWSY HTTP/1.1Host: an.yandex.ruConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dpixel?a=p-n5vvLvRdjg0ek&eid=0&qc_google_push=&google_gid=CAESELF_hrZozPqZBP-KBgNh9gY&google_cver=1&google_push=AXcoOmT32OoWtQhDditBeFlMo6pr5tAY6y4mhoLR841lqqy4nyA9aNqdoW_PZ-n3286eipoDZ58kY0_o0oIyvh2YzfzM4awmjJMtpGY HTTP/1.1Host: cms.quantserve.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=d1e39388-a6bc-11ef-8049-f678f8fa827f&params=5tcfZ4rO2tJzNay37NjHiKwEZ5fScA8CmKHc751OKP125vTifwGIQPoXEncL_GAVUIdCaauM0c0Bj8JWLwhDtZx2LM4ttPIv7xN88_K8ePrevjgR7_S8w3jkyO0ahW8IoXivwP_OjSZFZpyK361i_Vo14Qnq6hCV8A22q5XiUGwO5uM8FKNOwSR9IzqwKeZ1bqv1zr6CtOuKXWxb5AMENaYpWrSjvL8P6G3ux8m6i0mMLUg3pTjVdHz1Crwqg0g2avYYhLDqHIPlX51-jqoYgw HTTP/1.1Host: serve.rtbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid_cross=d1ce908e-a6bc-11ef-a8fd-46f51124ffb1; sid_cross=d1e39388-a6bc-11ef-8049-f678f8fa827f
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEIkWiEUE3DkKg7HQcl9ErT0&google_cver=1&google_push=AXcoOmT-TvA9F7DFbln2o_etSv9MWgFIB1Wn3ODMIKvXq150v3oejmMlWwmbFT1dBu8G2Hehalsun3wPiniZRpFwTb2bNmNo4vW7avk HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CqFb8TgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBPoCT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOcpZTZjK5QhhUmtfyHol1kFL6KaiDqCg-jtbdXflnfsajSWVA34RgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi01NTYxNzYzNTgxMzE0NDQ0GAAYDA&sigh=SFEQgDZaA_c&uach_m=%5BUACH%5D&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHPGAE HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CQ9c9UQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIADT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBmizTGYujck9BuZjKuB8LIGJRyFQBkiu900KIT9l0BRMkjSUZDupgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA4AKAfoLAggBgAwB0BUBgBcBshccChgSFHB1Yi01NTYxNzYzNTgxMzE0NDQ0GAAYDA&sigh=x2wT2P8Erok&uach_m=%5BUACH%5D&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyRgB HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEItqcxbXi06EcGGxEpAJD_8&google_cver=1&google_push=AXcoOmSa8-h54CrR2K3dVUZ7bfhxYLe6eueU9lUp-JHdH_CAfMloYkfiD4a5Osog8PcuA_59GGcPkmFLYSTf9YRmVGVaQJE1TMlSMA HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/polyfills-a3f452c3.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /sig.js?rpclid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a&params=iOLCtoolLMj12ws6of73LoezNdg1Eq7bzQ2WyG3IqIAtCqDUokyAqwzp4RFDXmUbl3S0n9O-Lkp6oAHiWLyphJfAtlHZYc_cBkhv45PDeLxZpFudmy1-S4_x5KxCOklcUgtJnmuCh3UDPhHVyAuAVu_gCZyxA8Jtbf7LAlHm5litg4oGI8qMdT0CT0_LsI97P2SP8txcQu_x1V2xvO9WV2y6IVYYd7OrhlHln99gWgjZ4CRezrrzAzf4oVm3cFvfizXT4fFM0NTVCXLmW8iVUxAcbvmcLFgCUjauLvZwygt6wJZw5qcM3JEFbpQGDexX HTTP/1.1Host: serve.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /ng-assets/creative/assets/index-3f3b6ec8.js HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmSdmg7vyo8FwhQGopKnYF3JRon0O4SPX3D_Ve72aDzbkExVFpROXLuYwajfdUUJqEN-wvCu5NvY_WA16du4l_Y2QWsaPR1Zfg&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_tr&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTMyoAUI3NYUnv5kzU03wHO5W6vFeMN8loe3WIN13xCULneiT9giWoEU2c6eY938QiKeXb4OoEOq9tVnJLBIR5RB4xuc76qiYM&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmR6fEenNiJxQXRcCitNK0tXpYuRH1QorwBdJpZDuSj0W_7jiPkc0XUW2VYpqyy7ir_YtmjGcManL6R4DDAfepEjvN3UHZot3fY&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXg_lPXM9IhiuIY2YvEZrUXm49GYcMGUhb3JAujhFPkywKxJdoB9RGTxN_YChzjq1DmoUtNQgd5OFXg01TmCqsLNg_oXjtOM4Ky6gSVAO5zpb1M4afMPIp-xF1f3FR9T9a4d5e3XfdBQcZVSSlO6PI9U5AT_PjGyD6boSk7ptX2OEM44NpCNi0U-GC3/_/sponsors/amg.php?/friendfinder_/468x60v1_/ad300f2./ads1. HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house&google_gid=CAESEH_x4wgFIRvrBt0V32M4_Ms&google_cver=1&google_push=AXcoOmTELb5NcD7KvEP1EXYvQyNb3g5D2Bycy-1ofrjM7U5n4mnZH9-RBWIezKE3EPo6bpn6mhQIRDeFnS4jMwLzOAbaHAUHhoEPSTQ&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ts=1732051539; g=kG4iyMaGbJZXQf5ABWJi_1732051539661
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEItqcxbXi06EcGGxEpAJD_8&google_cver=1&google_push=AXcoOmSa8-h54CrR2K3dVUZ7bfhxYLe6eueU9lUp-JHdH_CAfMloYkfiD4a5Osog8PcuA_59GGcPkmFLYSTf9YRmVGVaQJE1TMlSMA&_bee_ppp=1 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: checkForPermission=ok
Source: global traffic	HTTP traffic detected: GET /track/cmb/google?google_gid=CAESEMrow_HkHJmtvUoD9nOf3s0&google_cver=1&google_push=AXcoOmQHt5l_BeaLoIf13IrVH1TAdW5pqdi-jrS5qlKo4kdly2WcN7axelRJTDtLBKS09UKWy_nuYs0YhJEVTdxZxpFTwta1vo60Q_Q HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=6c976599-7616-42a0-8520-774b2127bc45; TDCPM=CAEYBSgCMgsI8rWype66xD0QBTgB
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: same-originSec-Fetch-Dest: workerReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fqAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/hdp6NVToxcZ-RDmfj-FiLxITMNF3FSB01e-_24RN2ow.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7&co=aHR0cHM6Ly90Lmx5OjQ0Mw..&hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&size=invisible&cb=m80hbneyh2fqAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /generate_204?Zw3SMw HTTP/1.1Host: ep2.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://ep2.adtrafficquality.google/sodar/sodar2/232/runner.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmSrFajir03WfqNiA1NI-PDm2CarRBgosqqH8MBBMnVveh5zelWLYAYZUSNNJnbYswH5Ba_JvRBduFacSgatpF4bVLEniHdQopw&google_gid=CAESEButtQ1nR2habzzCkaI1-pw&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_gid=CAESEPvo8tIDyEdFgS_IYg40kbw&google_cver=1&google_push=AXcoOmTh6IDJnBydHzn5Fu5abTiOhXhel-6617UAZ9CWtCZ5S40HG6ZlhUasbxJIVWvCLjzKV1or-7n_lXt5rBcHsku4pUVZyOYwWSY HTTP/1.1Host: an.yandex.ruConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=3zFyIt9CA7jvA0kq6dqA8Wk5wm+JRUr+zGiCz+yoeE5Wfp/1ftY+JHSShx3qT9LT9b1fw7Tct10SA5Ru1SwHrGbcGc8=; yandexuid=924520971732051539; yashr=5379776711732051539; bh=EkAiR29vZ2xlIENocm9tZSI7dj0iMTE3IiwgIk5vdDtBPUJyYW5kIjt2PSI4IiwgIkNocm9taXVtIjt2PSIxMTciKgI/MDoJIldpbmRvd3MiYNOE9LkGah7cyuH/CJLYobEDn8/h6gP7+vDnDev//fYPutfOhwg=
Source: global traffic	HTTP traffic detected: GET /ext/download-icon_1697445891.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; uid=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; mid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/bframe?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb&k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7 HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241118&jk=1232907316253446&bg=!aGulayTNAAY7_TBtG_07ADQBe5WfOIAqxopJOFKywdMP3oaK0lOob3unmXCHWZJZQtVG_JpHsj5RW_JKBQb-v2GvdYdZAgAAA1lSAAAAHGgBB34ANuJFBPzu9GGCq73dVcdDVngFAuOf_6Qt-QMvbU_PZUli3lhYZJ-Ljugso3RHhkVKFpjy6LBRh5kCjyXm1Sfg_oyi04DSbhT9-Y_q2-ECVJE6F2uO2XRG3DmSE2XEp5zt3LXh35eXP6TgS4yMk1dFo5_1OAXTtw_kFDIlIZ3d836Wvm1bGTZLozhx-FzjF7Xz6OI20ah1PmxZbjLGqsHdgZEeB_4zs9CYw4CfNfw_3iMK1r2x6IuqmTfcAUjqbR-MNQOE9WSPe1-IvVwwHTXrSPPusUMEQ8nKpkNP1BpQNMhyy80ftCbr5rEoqJth3u3o2i_4CukBEyB1akyL7fpsypKpuP3rnsgBuVewkSt-RciFsrnS61BovzY6oKx5tu0ObgGuEZrh7hwua6N1sovT4WLNbNOZrxmlC1zPRkC42GnritkChsjZsO2GRyos7PuDjU3oagjdivWKSuK2n1E2tSg1MH_0r91JKfAtnwgzLKPX0RNJjjzLBwalu8m1ENpqof-Jy4mfylbB46Zl74rQsOjiaIu47vJOGqW4JNWSOfD-s4L1KwAsxMELTx_-hq59Jnnntm4m6uwIMDyRNCoHLWoJFDN9MzLhKjDZrxHvhiKFM698MWQab8aa7JrTVZwL7_R3RibhcLs06VkX74yvguekFBIhCWvQ7img1P9RcRwFYUWqE42XnTatQPktbOIGlCHc2KsbY709L4J2y3TwYOOM44USImc07JBYI2lG3Bcl9YBRCMJkvne1ba0I61aH9qC6ZN0rPh1_3sIlMO8m_QMvAXe1aAhdZLd2SIGu2Q_u0UrMBFIQuGTtL7U5qC2czBbnjRNqNJKPqIdXHhSC_EecSLRE9lMW8TsYBJ-KehGHaeWrPpGoIjxRzDRp0RqXG_u_0Kr5FiJGeplTs6zrXLLvqhOu1UY1HvKo3q_UsNuGv0JtEemA1nI HTTP/1.1Host: ep1.adtrafficquality.googleConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/webworker.js?hl=en&v=-ZG7BC9TxCVEbzIO2m429usb HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/bg/hdp6NVToxcZ-RDmfj-FiLxITMNF3FSB01e-_24RN2ow.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/reload?k=6LcKDjUfAAAAAKDNtGiKmobr84PSjnUGfCJhgtv7 HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _GRECAPTCHA=09ANOXeZw0p29A_tG4QtVl9-86_x5bbFLj0OKp1EJwoquSzmxT6_sbap7z6zpEZDLbrptUutVNNVl1iIQEQCi8hHs
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120100v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /aclk?sa=L&ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&num=1&sig=AOD64_3I9_bRMw4WmBeRuJgaKsrN3CvQsg&client=ca-pub-5561763581314444&adurl=https%3A%2F%2Fwww.carmax.com%2Fcars%2Fsuvs%3Fi%3Dcfc50e95-a6bc-11ef-aec9-82795deff674 HTTP/1.1Host: adclick.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /fireshield_logo_1730899282.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rtimp?a=imp&cr=ext_download_fire_sse&d=t.ly&gid=&im=iOLCtoolLMj12ws6of73LoezNdg1Eq7bzQ2WyG3IqIAtCqDUokyAqwzp4RFDXmUbl3S0n9O-Lkp6oAHiWLyphJfAtlHZYc_cBkhv45PDeLxZpFudmy1-S4_x5KxCOklcUgtJnmuCh3UDPhHVyAuAVu_gCZyxA8Jtbf7LAlHm5litg4oGI8qMdT0CT0_LsI97P2SP8txcQu_x1V2xvO9WV2y6IVYYd7OrhlHln99gWgjZ4CRezrrzAzf4oVm3cFvfizXT4fFM0NTVCXLmW8iVUxAcbvmcLFgCUjauLvZwygt6wJZw5qcM3JEFbpQGDexX&p=Zz0CTgAAaHsDoh1wACYR01jVcBrtAtPpqSzQRQ&sid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a HTTP/1.1Host: g.bidbrain.appConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"sec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://t.ly/?ref=expired&url=https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga=GA1.2.2037803925.1732051525; cf_clearance=WnbYTfa0jNi.vyN42HNLQtFeXMprCoYf2LFIRWXTT4g-1732051533-1.2.1.1-MHJ_Z0N2oabtGGesNM1f3Bsk9Rx.Zbk1l6AhhmRYPPR9nnD3WnjjsXGjStp1wlkENHsJlBQvCQMT1hISEG.65cZmply9XgfeUeKHi9sG92rW6AHEq_J1kw_7iodKiPL6Y2VQRcneC4Um4C.3L22djMjbcqeDIsOrMsiMe2D575AvT5c20DpeOAVFojosBpOydwtpSG7lYnvPLuFy0QtnAf7_W_JvDP3Ur5DHGU9mRJZIapXzpiQjGhonG2dyvqZoxuN6yZcp2V0XwgQJL5aJjpEj0ARvNPhMPS8EH1O_i8KRSQJ6k68M5hZfPREE88wWaCu4bl6ig4s3dW.RXwBcE_rd_sfA6pHpJRXwjD4REgBG56d3P3QU_mYw9FysDw_xjMUz01q6vnTIIoup6l6YsLIZXa2YGBzujhvZCMbkNb5EZ46KZMoxPeSQvvedlsjy; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051537.0.0.0
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /fireshield_logo_1730899282.svg+xml HTTP/1.1Host: cdn.bidbrain.appConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: sid_cross=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a; uid_cross=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; uid=d21ccbd2-a6bc-11ef-b353-5a638b2e6e35; mid=cfc4bce5-a6bc-11ef-85d3-ba96ef44323a
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon-32x32.png HTTP/1.1Host: t.lyConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _gcl_au=1.1.872676204.1732051524; userTimezone=America/New_York; _gid=GA1.2.1318648499.1732051525; _gat_gtag_UA_89207177_8=1; XSRF-TOKEN=eyJpdiI6IlZJdzQrQ20vVGFKRkJIWENaTlYvbXc9PSIsInZhbHVlIjoiSnBrWHFheS9tcFdXY2VIS2ZxMlRKS2ZpbGpvemNHeFFQMEdZcStFM0tpWDZjSlZIMzZOVHRZSmlJQ1UreVQrTkhtejFpNm94SUp2WGs5WU5BTkhqdnpLc0dpV2lEVzJidTFVWlU2b29JNGs2OU96RTJ3OXgxam0ycWxhZ3dLMjYiLCJtYWMiOiIzZmI4ZDZhMTkyZTRiYzdjYjViZjdiNzY4MjRlMDQzOGNmYTVlNzYwMjE4OGFkZDFlOWIwYTE0OTZjNmUzNTVkIiwidGFnIjoiIn0%3D; tly_session=eyJpdiI6IlRmSVhsNG9IRExKTmxidTVDTVNEOEE9PSIsInZhbHVlIjoiTERUU2M0UjV0TDdWRkI1eVh5d0VGNDdYT2V3MG5Za25ET0E5Umtad0pVRlNhb2dOeTlFQnZ6NmNyVC82NExES3FsbTJxVlJpSHRaY0FrL1o4cEl6cjlJRHdrQUVFYUh0Z3FNR2k5T0NHY04xa3R4K1c5YmhOYmlRN2o3dEU4SzYiLCJtYWMiOiI0MDNlN2NkN2VhNDc4NTJjNjA2NmY5NGMwNGJkNDU3MTU5YmI0YjEyMjA4ZGYwMTAwODY0MzBjYTY0YTk4NGYxIiwidGFnIjoiIn0%3D; _ga=GA1.2.2037803925.1732051525; __gads=ID=bf093dbc5f7bd49f:T=1732051533:RT=1732051533:S=ALNI_MZQ-e8WyV-0RFwOyX1ZAwYN_K6z6Q; __gpi=UID=00000f996b4820e4:T=1732051533:RT=1732051533:S=ALNI_MbpGcAHhNOmKP1CRqsLS6fhpFDa5g; __eoi=ID=450e77f6a038f91a:T=1732051533:RT=1732051533:S=AA-AfjZazvzvLTjXYkxF1zRJXllv; _ga_W1D48QS4F7=GS1.1.1732051525.1.1.1732051537.0.0.0
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CXFjqTgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBPsCT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4vj07RTF-UP3lS0oNFMfbsm3ec09TyPF01Satd11HtE-36yNSraHIAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQOACgH6CwIIAYAMAdAVAYAXAbIXHAoYEhRwdWItNTU2MTc2MzU4MTMxNDQ0NBgAGAw&sigh=V833kOsYcOo&uach_m=%5BUACH%5D&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHPGAE&vis=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=kOxxgeRMREt+b9g&MD=LuoUC3gb HTTP/1.1Connection: Keep-AliveAccept: */*User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxWosZrc6WMc5nT0uYahyKyNcPKCHSfAQBnHiVULdIxuIjR8lTBxmd3-ZoTHyclNUe5mR9c-fz34KUddyqIAjaDdYvJLWxR28yEYlUj-d-HhSIXi35vcKcA9nuRiA2_cSLdjqoaQMw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzMyMDUxNTU0LDEyNzAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4iLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly90Lmx5LyIsbnVsbCxbWzgsIjl6NWtkZHRLZlVvIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://t.ly/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule90401v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=C08y-TgI9Z_vQAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP4CT9B4W27qqJTHzkrM0HK8NDkIGSPVAR6UAsKt5_GAVFzj6XoLbfOn5fGPC6Mi-3abs79NlmkxAEjuuXiFSIJkdHHoKF9hUGckGf3Lf_SeqSup4V_JAgQuJ4obaQQCc6YsSiwhF5gree644kC-P5FGZfGj3bq99piHCX7ClTYE98aFZK3uyqg8hOSmBFzcZ2zrbN3F27Ejobbbe0Cd1RLZ5PNugpHAAlRJEIt6YKBW-sZ_m0wC8DWYy3H9C7ylrpyfQb1oOsxJA-70aNl-gWkoiWsnG2LH_ct7Khf8seH5l1jEnP9tVbzcCthvZo7ope-0CAkCPsalNLqyKhuFs5HD16IG1hj19tt0yiwDWti3c0tfhWSzerELkn8N1n3b4ZcrRxII0FJoVyrNGVLDsxZgJGjC3rgp4LSeuIxLJw8MpYlDHfrqEAzNc6dQwjUtCykrafDCI4uh0ZXBjyHm2qdd8z_fa2ad0ME-IzWhD4Cs4cGoZaBr12Yo1Nve727JSoAGj4OP_8D5_P3YAaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYiZSr46rpiQP6CwIIAYAMAdAVAYAXAbIXAhgM&sigh=vo3RwqvLaI8&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CPuvrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CDR6yTgI9Z_7QAfC6iM0P06OYgQu9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBP0CT9BMy-T8djahptRQZl7KNYVI3GeehbtIGi31vXS5r6L0xsP-ZBlDVDENj7o0IenfKyF65xpgVbPVYtsbsu6QyllZNA-6x33dd2t111yDQrpenOQh1-nj8ko9kW114NGMaW4QSzxzAKWLbCBQv-Ojf4PWJsGLwlKEMSwIC4SUpXcpT25CBTmI9h7q3CzHzTzVRvnWPHOL-BjGztivwJJF37ygKu5EBqhoWqoOsi9vJmbFejbwPXIBUTEi9b-GLZJ1WTYP8C1IPvep23-KfM7kVZpk_cLXdTp-o-eo1CHtGMbJCqxE5j7ZiacNlZmITvwTp0SVELNwHpB5Pyj-A7xBmOepJADazLAwcuyaevzVJekCdWkdrDKThq0PuusEiCzSmIRwyptXdIV8oNHqUKcLAE4dL77LPH72OcNREBZ5j2bU1swUrVSO7yWpvmivckWpGMMiOYhbbApSIeFloYIMJukzC_pGzqx0B464N8XQY6pURtQ2lb908nriRUYNgAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOliJlKvjqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=mxnZAlj-TBA&cid=CAQSOwCa7L7dd3D4riLcO-kSpKOTHAI9XTfZxGqdzDzBGDMg48aYi0Kag-6Ks_8gRFAGn-VdCAq6pp78xmHP&label=window_focus&gqid=TQI9Z8OCPbWOjuwP6K-c6AY&qqid=CP6vrOOq6YkDFXAdogMd0xEmsA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CugUTUQI9Z_7EJMOtiM0P0MerwAS9qs_Ndemi3NbEEsCNtwEQASAAYMkGggEXY2EtcHViLTU1NjE3NjM1ODEzMTQ0NDTIAQmoAwHIAwKqBIMDT9DT3Wo9qnBGT1BneBDV1sCj-VUkZ2VoVGZAMC-lJn4dK-auq2b2vQHVpKhIh8-UyUeJTvv2LzvUQdNojBzzzZbT2zsAEHcG-4Qcdt1EIDYoQ8RtNMETmGnvAmG1Ygh0QGNEwPQmkmUs0PLs15Euxceg36XE_plFUj5BYJXZb77Mx3xjHVP7HbJpNWgrq4q2f0-wciiU1Pg-Ki-7ilpRD2naEb3WZIdy65KTULMZ8MF1F_XgRXIWF9nreypwqMzP8Cc4_c6nP3y7sCSJSU-vdLpIMPfwJw57hler00O45pFLzrpe0cZXdWDVQknUs50NpW6h5rVo7UwN9hgYYZXSuMLBBvxfMdYsnMxnDjZ_pSyXcPzPlLtXsyJkS2G1mn7lpOihdoPejZRvchXy1wbrmcbnbE03XiLSMvtu4DFaVVqj3lJ3zkcq66zu06wGWYTB6SrfNiO7vhKDBiqxbfS2SSA59Q8wxHNq8TqEYSuGD2a2OrOBN-LUCztgiq51lT9a32j4gAaYqaXw1JzRtcIBoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAqgHrb6xAtgHANIIJAiAYRABMgKKAjoLgECAwICAgKCogAJIvf3BOlj4lIXlqumJA_oLAggBgAwB0BUBgBcBshcCGAw&sigh=nBg_W3V0bx0&cid=CAQSPACa7L7d9uPsPdCRTChJKh71xDeN7RNnpBrf4JvmSJoX9GwL9Zhn6YLXvQ5dGRkgU-zjYPjHrnAO9oGHyQ&label=window_focus&gqid=UQI9Z__1IuzjjuwPv9P0OQ&qqid=CL6xhuWq6YkDFcMWogMd0OMKSA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiSocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUm4zjg-dsDaTsa6OY5kmvAvn1Dtpehg1xrFUcYEoHjIeqkz7Oq2K5Be6QhS
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Found strings which match to known social media urls

Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.facebook.com (Facebook)
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.linkedin.com (Linkedin)
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.twitter.com (Twitter)
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: "sameAs": ["https://www.crunchbase.com/organization/t-ly", "https://twitter.com/TLYShortener", "https://www.linkedin.com/company/tlyshortener/", "https://www.facebook.com/TLYShortener", "https://www.youtube.com/@tlyshortener"] equals www.youtube.com (Youtube)
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: Math.round(q);t["gtm.videoElapsedTime"]=Math.round(f);t["gtm.videoPercent"]=r;t["gtm.videoVisible"]=u;return t},Ak:function(){e=qb()},zd:function(){d()}}};var Zb=wa(["data-gtm-yt-inspected-"]),HD=["www.youtube.com","www.youtube-nocookie.com"],ID,JD=!1; equals www.youtube.com (Youtube)
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: if(!(e||f||g||k.length||m.length))return;var p={Dh:e,Bh:f,Ch:g,ji:k,ki:m,Re:n,Ib:b},q=B.YT;if(q)return q.ready&&q.ready(d),b;var r=B.onYouTubeIframeAPIReady;B.onYouTubeIframeAPIReady=function(){r&&r();d()};H(function(){for(var u=E.getElementsByTagName("script"),v=u.length,t=0;t<v;t++){var w=u[t].getAttribute("src");if(SD(w,"iframe_api")||SD(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!JD&&QD(x[A],p.Re))return qc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_179.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: return b}FD.F="internal.enableAutoEventOnTimer";var Zb=wa(["data-gtm-yt-inspected-"]),HD=["www.youtube.com","www.youtube-nocookie.com"],ID,JD=!1; equals www.youtube.com (Youtube)

Performs DNS lookups

Source: global traffic	DNS traffic detected: DNS query: t.ly
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: static.cloudflareinsights.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: r.wdfl.co
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: blog.t.ly
Source: global traffic	DNS traffic detected: DNS query: ep1.adtrafficquality.google
Source: global traffic	DNS traffic detected: DNS query: ep2.adtrafficquality.google
Source: global traffic	DNS traffic detected: DNS query: fundingchoicesmessages.google.com
Source: global traffic	DNS traffic detected: DNS query: syndicatedsearch.goog
Source: global traffic	DNS traffic detected: DNS query: cdn.bidbrain.app
Source: global traffic	DNS traffic detected: DNS query: g.bidbrain.app
Source: global traffic	DNS traffic detected: DNS query: serve.bidbrain.app
Source: global traffic	DNS traffic detected: DNS query: g.rtbrain.app
Source: global traffic	DNS traffic detected: DNS query: cdn.rtbrain.app
Source: global traffic	DNS traffic detected: DNS query: serve.rtbrain.app
Source: global traffic	DNS traffic detected: DNS query: dclk-match.dotomi.com
Source: global traffic	DNS traffic detected: DNS query: sync-tm.everesttech.net
Source: global traffic	DNS traffic detected: DNS query: ads.travelaudience.com
Source: global traffic	DNS traffic detected: DNS query: a.c.appier.net
Source: global traffic	DNS traffic detected: DNS query: ums.acuityplatform.com
Source: global traffic	DNS traffic detected: DNS query: googlecm.hit.gemius.pl
Source: global traffic	DNS traffic detected: DNS query: gtrace.mediago.io
Source: global traffic	DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: cms.quantserve.com
Source: global traffic	DNS traffic detected: DNS query: um.simpli.fi
Source: global traffic	DNS traffic detected: DNS query: match.adsrvr.org
Source: global traffic	DNS traffic detected: DNS query: gcm.ctnsnet.com
Source: global traffic	DNS traffic detected: DNS query: creativecdn.com
Source: global traffic	DNS traffic detected: DNS query: dis.criteo.com
Source: global traffic	DNS traffic detected: DNS query: match.prod.bidr.io
Source: global traffic	DNS traffic detected: DNS query: an.yandex.ru
Source: global traffic	DNS traffic detected: DNS query: analytics.pangle-ads.com
Source: global traffic	DNS traffic detected: DNS query: www.temu.com
Source: global traffic	DNS traffic detected: DNS query: widget.us.criteo.com
Source: global traffic	DNS traffic detected: DNS query: www.carmax.com
Source: global traffic	DNS traffic detected: DNS query: adclick.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: assets.adobedtm.com
Source: global traffic	DNS traffic detected: DNS query: content-images.carmax.com
Source: global traffic	DNS traffic detected: DNS query: img2.carmax.com
Source: global traffic	DNS traffic detected: DNS query: userinsights.carmax.com

Posts data to webserver

Source: unknown

HTTP traffic detected: POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1117065252:1732049276:5wQSqIrtQiJD7LADUZgRGxpzqUAbqbs_vhZPDz7JUoY/8e53454539d67d1c/mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8e HTTP/1.1Host: t.lyConnection: keep-aliveContent-Length: 4915sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-arch: "x86"Content-type: application/x-www-form-urlencodedsec-ch-ua-full-version: "117.0.5938.132"sec-ch-ua-platform-version: "10.0.0"sec-ch-ua-full-version-list: "Google Chrome";v="117.0.5938.132", "Not;A=Brand";v="8.0.0.0", "Chromium";v="117.0.5938.132"sec-ch-ua-bitness: "64"sec-ch-ua-model: ""CF-Challenge: mIL5fr7Ma1vZeT54CtLU1bIx_bo8gYWsDf6ZeHvHIOo-1732051502-1.2.1.1-9jEdlKMt0TdQFP1sdvTrGGvaIv97ekNAMAaOY8F1PYIAiyM3KxzQudQOjuMsUS8esec-ch-ua-platform: "Windows"Accept: */*Origin: https://t.lySec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://t.ly/expired?url=https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Tries to download or post to a non-existing HTTP route (HTTP/1.1 404 Not Found / 503 Service Unavailable / 403 Forbidden)

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 19 Nov 2024 21:25:01 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Tue, 19 Nov 2024 21:25:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeAccept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACritical-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UACross-Origin-Embedder-Policy: require-corpCross-Origin-Opener-Policy: same-originCross-Origin-Resource-Policy: same-originOrigin-Agent-Cluster: ?1Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()Referrer-Policy: same-originX-Content-Options: nosniffX-Frame-Options: SAMEORIGINcf-mitigated: challenge
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:05 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: 38I8D6MHqbdssAxGkNjvoKHU/LxqtjI1GjM=$23ASH/Gy8otVfhZbStrict-Transport-Security: max-age=15552000; includeSubDomains; preloadX-Content-Type-Options: nosniffServer: cloudflareCF-RAY: 8e534554df350f37-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:08 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: cJZvalGvsaG1c1yncBS3wHExVPhJOREzsso=$5xHrVAIjWeBq4XExServer: cloudflareCF-RAY: 8e53456b0f2842c8-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:11 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: OO+jS6ul45BmFuiRFR5jvqlaQlFdXIG6Pks=$CS6HbbQQLVcRI+MBServer: cloudflareCF-RAY: 8e53457d4c2132ca-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:20 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: VOElytjYIPJXnLCPqCzbm2TiDMYIx1CUHYM=$5146f+SLebSFcMHtServer: cloudflareCF-RAY: 8e5345b2f97bc3eb-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Tue, 19 Nov 2024 21:25:22 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: jPXayTNc+EIeTvCMBNjJzLTpqxeSUv0KA1Q=$Y/u4iCzSvXYrVrIVStrict-Transport-Security: max-age=15552000; includeSubDomains; preloadX-Content-Type-Options: nosniffServer: cloudflareCF-RAY: 8e5345bcfe820ca1-EWRalt-svc: h3=":443"; ma=86400

URLs found in memory or binary data

Source: chromecache_190.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_190.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: http://google.com
Source: chromecache_268.2.dr, chromecache_290.2.dr, chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: http://googleads.g.doubleclick.net
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: http://mathiasbynens.be/
Source: chromecache_268.2.dr, chromecache_290.2.dr, chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: http://pagead2.googlesyndication.com
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_196.2.dr, chromecache_291.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://addons.mozilla.org/en-US/firefox/addon/link-shortener/
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://addons.opera.com/en/extensions/details/url-shortener-4/
Source: chromecache_156.2.dr, chromecache_226.2.dr	String found in binary or memory: https://adsense.com.
Source: chromecache_208.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://api.t.ly/api/
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2022/11/How-do-I-shorten-a-URL-for-free.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2022/11/URL-Shortener-API.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2022/12/The-Hidden-Benefits-Of-Using-a-Link-Shortener.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2023/01/What-is-a-Url-Shortener-1.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2023/03/How-to-Create-a-Tiny-URL.jpg
Source: chromecache_281.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2023/04/Best-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/05/How-to-Track-QR-Code-Scans.webp
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/Dynamic-Links-Deprecation.webp
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/The-End-of-Google-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/Understanding-HTTP-Status-Codes.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/07/Worlds-Shortest-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/08/How-to-Shorten-Spotify-Links.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/08/Top-Extensions-scaled.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/09/How-to-Fix-ERR_QUIC_PROTOCOL_ERROR.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/09/How-to-Share-Spotify-Links-with-QR-Codes.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/10/Shrink-Your-QR-Codes-with-T.LY_.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/11/Build-Your-Own-URL-Shortener.jpg
Source: chromecache_297.2.dr	String found in binary or memory: https://blog.t.ly/wp-content/uploads/2024/11/How-Does-a-URL-Shortener-Work.jpg
Source: chromecache_179.2.dr, chromecache_286.2.dr, chromecache_151.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://cdn.ampproject.org/amp4ads-host-v0.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://cdn.ampproject.org/rtv/$
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://chromewebstore.google.com/detail/url-shortener/oodfdmglhbbkkcngodjjagblikmoegpa
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cloud.google.com/contact
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://cloud.google.com/recaptcha-enterprise/billing-information
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://cse.google.com/cse.js
Source: chromecache_196.2.dr, chromecache_291.2.dr	String found in binary or memory: https://developers.google.com/ad-placement
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#are-there-any-qps-or-daily-limits-on-my-use-of-reca
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#localhost_support
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://developers.google.com/recaptcha/docs/faq#my-computer-or-network-may-be-sending-automated-que
Source: chromecache_177.2.dr, chromecache_209.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/bg/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/getconfig/sodar
Source: chromecache_209.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232
Source: chromecache_209.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232
Source: chromecache_253.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/$
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://ep3.adtrafficquality.google/ivt/worklet/caw.js
Source: chromecache_184.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Google
Source: chromecache_254.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=
Source: chromecache_184.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Google
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://fundingchoicesmessages.google.com/i/$
Source: chromecache_208.2.dr	String found in binary or memory: https://google.com
Source: chromecache_208.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/html/$
Source: chromecache_208.2.dr, chromecache_263.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_177.2.dr, chromecache_209.2.dr, chromecache_253.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/bg/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/getconfig/sodar
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=colleague-executed&name=
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&bin=
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&name=invalid_geo&context=10
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=extra&rnd=
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&lidartos
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&start&control&fle=1&s
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-fallback2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-later2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-pagehide2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-start2
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=reach&proto=
Source: chromecache_220.2.dr, chromecache_183.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=fccs&
Source: chromecache_156.2.dr, chromecache_226.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=plmetrics
Source: chromecache_290.2.dr, chromecache_196.2.dr, chromecache_291.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rcs_internal
Source: chromecache_209.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=232
Source: chromecache_179.2.dr, chromecache_286.2.dr, chromecache_151.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_264.2.dr, chromecache_187.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=urind
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/html/$
Source: chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/$
Source: chromecache_268.2.dr, chromecache_290.2.dr, chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=$
Source: chromecache_281.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5561763581314444
Source: chromecache_268.2.dr, chromecache_156.2.dr, chromecache_290.2.dr, chromecache_264.2.dr, chromecache_226.2.dr, chromecache_184.2.dr, chromecache_187.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/err_rep.js
Source: chromecache_268.2.dr, chromecache_156.2.dr, chromecache_226.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/logging_library.js
Source: chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/$
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping
Source: chromecache_184.2.dr, chromecache_306.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping?e=1
Source: chromecache_311.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?
Source: chromecache_209.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=231
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=232
Source: chromecache_178.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_212.2.dr	String found in binary or memory: https://publickeyservice.msmt.gcp.privacysandboxservices.com
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://r.wdfl.co/rw.js
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/car.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/cocar.js
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/static/topics/topics_frame.html
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_189.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha#6262736
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha/#6175971
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://support.google.com/recaptcha/?hl=en#6223828
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/#website
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/?ref=expired
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/affiliates
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/docs
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/expired
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/extension
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/extension-install-cta
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/facebook
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/faq
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/browser/chrome_64x64.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/browser/firefox_64x64.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/browser/opera_64x64.png
Source: chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/promo/tly-promo.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/img/tly-logo.png
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/linkedin
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/privacy
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/qr-code-generator
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/register
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/terms
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/tools
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://t.ly/twitter
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_179.2.dr, chromecache_286.2.dr, chromecache_151.2.dr, chromecache_153.2.dr, chromecache_240.2.dr, chromecache_275.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_253.2.dr	String found in binary or memory: https://tpc.googlesyndication.com
Source: chromecache_177.2.dr, chromecache_253.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/$
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://twitter.com/TLYShortener
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.crunchbase.com/organization/t-ly
Source: chromecache_240.2.dr, chromecache_275.2.dr	String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_208.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_156.2.dr, chromecache_226.2.dr	String found in binary or memory: https://www.google.com/adsense
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.google.com/adsense/search/async-ads.js
Source: chromecache_254.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr, chromecache_296.2.dr, chromecache_255.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/
Source: chromecache_268.2.dr, chromecache_177.2.dr, chromecache_209.2.dr, chromecache_184.2.dr, chromecache_253.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/aframe
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.google.com/s2/favicons?sz=64&domain_url=
Source: chromecache_208.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://www.googleadservices.com/.well-known/private-aggregation/report-shared-storage
Source: chromecache_254.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/conversion/16521530460/?gad_source=1&adview_type=3
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/managed/js/activeview/
Source: chromecache_208.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_179.2.dr, chromecache_153.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_207.2.dr, chromecache_189.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=AW-10875945736
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=UA-89207177-8
Source: chromecache_179.2.dr, chromecache_153.2.dr, chromecache_229.2.dr, chromecache_208.2.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_147.2.dr, chromecache_212.2.dr	String found in binary or memory: https://www.googletagservices.com/agrp/
Source: chromecache_205.2.dr, chromecache_280.2.dr, chromecache_178.2.dr	String found in binary or memory: https://www.gstatic.c..?/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__.
Source: chromecache_184.2.dr	String found in binary or memory: https://www.gstatic.com
Source: chromecache_268.2.dr, chromecache_184.2.dr	String found in binary or memory: https://www.gstatic.com/prose/protected/$
Source: chromecache_224.2.dr, chromecache_296.2.dr, chromecache_255.2.dr, chromecache_168.2.dr	String found in binary or memory: https://www.gstatic.com/recaptcha/releases/-ZG7BC9TxCVEbzIO2m429usb/recaptcha__en.js
Source: chromecache_281.2.dr, chromecache_297.2.dr	String found in binary or memory: https://www.linkedin.com/company/tlyshortener/
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_286.2.dr, chromecache_151.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api

Uses HTTPS

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49985
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50211 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50452 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49974
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 50417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50440 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 50359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49958
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49954
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49953
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49952
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 50382 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 50462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 50247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 50313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50208 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 50466 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50348
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50358
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50111
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50353
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50356
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 49952 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 50442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50361
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50371
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 50478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50410 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49942 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50304
Source: unknown	Network traffic detected: HTTP traffic on port 50444 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49954 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50302
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50301
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 50384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50316
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50311
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50313
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 50454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50324
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50323
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50409 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50389 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50400 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 50434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50076
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50458 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50481 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50094
Source: unknown	Network traffic detected: HTTP traffic on port 49983 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50095
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50018
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50017
Source: unknown	Network traffic detected: HTTP traffic on port 50193 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50259
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50424 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50055 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 50353 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50015
Source: unknown	Network traffic detected: HTTP traffic on port 50456 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50230 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50263
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 50318 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50265
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50266
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49985 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50270
Source: unknown	Network traffic detected: HTTP traffic on port 50021 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50271
Source: unknown	Network traffic detected: HTTP traffic on port 50067 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50468 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50039
Source: unknown	Network traffic detected: HTTP traffic on port 50298 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50011 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50032
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50274
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50034
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50276
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50033
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50275
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50036
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50277
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50038
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50037
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50279
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50281
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50280
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50041
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50283
Source: unknown	Network traffic detected: HTTP traffic on port 50412 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50341 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49973 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50203 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50276 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50446 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50033 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50043
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50285
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50284
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50045
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50047
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50289
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50046
Source: unknown	Network traffic detected: HTTP traffic on port 50375 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50049
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50048
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50290
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50050
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50292
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50291
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50052
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50293
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50168 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50311 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50414 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50260 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50357 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49958 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50018 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50448 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50461 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49981 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50380 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50099 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50156 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50043 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50402 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50473 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50100 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50345 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50249 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50379 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50207 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50323 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50006 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50181 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50436 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49942
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49940
Source: unknown	Network traffic detected: HTTP traffic on port 50296 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50098
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50097
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50099
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50158 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50404 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50399 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49939
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49938
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49937
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49933
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49932
Source: unknown	Network traffic detected: HTTP traffic on port 50008 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49971 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 50367 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50438 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50250 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 50191 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50426 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50262 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50355 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 49948 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50471 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50041 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50284 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50333 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50097 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50239 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50395 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50475 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858

Uses secure TLS version for HTTPS connections

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49751 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:49773 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.4:50137 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.4:50281 version: TLS 1.2

System Summary

Classification label

Source: classification engine

Classification label: clean1.win@28/267@134/48

Spawns processes

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1656 --field-trial-handle=2008,i,6985356235388339202,7807025746520084771,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://t.ly/dwbac&c=E,1,N1Fkgbs30vFI4hVNC23IwzcGWdoiGmPs0ZvFGPwtNNTh7aGG4BoOH3_l8lywKuzibrCFjpWPm-9c3YM8qGpdZo19gntH7emJCLdSaHAnZQ0,&typo=1"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1656 --field-trial-handle=2008,i,6985356235388339202,7807025746520084771,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Found graphical window changes (likely an installer)

Source: Window Recorder

Window detected: More than 3 window changes detected