Windows Analysis Report
http://datechf.cc/de/receive/79469380

AV Detection

Source: http://datechf.cc/de/receive/79469380

Avira URL Cloud: detection malicious, Label: phishing

Phishing

Source: https://datechf.cc/de/receive/79469380

LLM: Score: 9 Reasons: The brand TWINT is a known Swiss mobile payment solution., The legitimate domain for TWINT is twint.ch., The provided URL (datechf.cc) does not match the legitimate domain name., The domain extension .cc is unusual for a Swiss brand and raises suspicion., The URL does not contain any recognizable association with TWINT., Requesting sensitive information like phone number and TWINT PIN on an unrecognized domain is a common phishing tactic. DOM: 0.2.pages.csv

Source: https://datechf.cc/de/receive/79469380

HTTP Parser: Base64 decoded: <script>

Source: https://datechf.cc/de/receive/79469380

HTTP Parser: Total embedded image size: 825345

Source: https://datechf.cc/de/receive/79469380

HTTP Parser: Total embedded background img size: 412208

Source: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/google-play/

HTTP Parser: Base64 decoded: <svg xmlns="http://www.w3.org/2000/svg" width="32" height="32" fill="none"><path fill="#B20F03" d="M16 3a13 13 0 1 0 13 13A13.015 13.015 0 0 0 16 3m0 24a11 11 0 1 1 11-11 11.01 11.01 0 0 1-11 11"/><path fill="#B20F03" d="M17.038 18.615H14.87L14.563 9.5h2....

Source: https://datechf.cc/de/receive/79469380	HTTP Parser: No favicon
Source: https://datechf.cc/de/receive/79469380	HTTP Parser: No favicon
Source: https://datechf.cc/de/receive/79469380	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/google-play/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/google-play/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/google-play/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/google-play/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/spenden/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/spenden/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/spenden/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/versicherung/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/versicherung/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/versicherung/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/versicherung/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/versicherung/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/versicherung/velo/	HTTP Parser: No favicon
Source: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/netflix/	HTTP Parser: No favicon

Compliance

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49754 version: TLS 1.2

Software Vulnerabilities

Source: chrome.exe

Memory has grown: Private usage: 0MB later: 49MB

Networking

Source: global traffic

TCP traffic: 192.168.2.4:60546 -> 1.1.1.1:53

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 93.184.221.240
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /de/receive/79469380 HTTP/1.1Host: datechf.ccConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/axios/1.6.8/axios.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://datechf.ccsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jquery-3.7.1.slim.min.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://datechf.ccsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://datechf.cc/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/socket.io.js HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1Host: translate.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://datechf.cc/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ajax/libs/axios/1.6.8/axios.min.js HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /jquery-3.7.1.slim.min.js HTTP/1.1Host: code.jquery.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /action/0?ti=20058379&tm=gtm002&Ver=2&mid=02a8a785-8918-43e2-b5d0-e92e6622cee3&sid=720096c0d19411eea29537e3b25514f1&vid=acb5f8f0164d11eeb349c77596053fd5&vids=0&msclkid=N&pi=918639831&lg=ru-RU&sw=1680&sh=1050&sc=30&tl=TWINT%3A%20Die%20Bezahl-App%20der%20Schweiz%20-%20Bezahlen,%20Geld%20versenden%20%26%20vieles%20mehr&p=https%3A%2F%2Fwww.twint.ch%2F&r=&lt=490&evt=pageLoad&sv=1&rn=879876 HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://datechf.cc/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE
Source: global traffic	HTTP traffic detected: GET /loader.js? HTTP/1.1Host: www.smartsuppchat.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://datechf.cc/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf450 HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w
Source: global traffic	HTTP traffic detected: GET /socket.io/socket.io.js HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w
Source: global traffic	HTTP traffic detected: GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1Host: translate.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf450 HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w
Source: global traffic	HTTP traffic detected: GET /loader.js? HTTP/1.1Host: www.smartsuppchat.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /widget/2c2a729197af9ea70bef8e5db0c0d79373d6af7d.json HTTP/1.1Host: bootstrap.smartsuppchat.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plainAccept: */*Origin: https://datechf.ccSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf4WM&sid=xSgUJ84KMgPLXcJ2ADHj HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket&sid=xSgUJ84KMgPLXcJ2ADHj HTTP/1.1Host: datechf.ccConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://datechf.ccSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9wSec-WebSocket-Key: unyc/2Yjs0iXPkC6FMVTpw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /images/cleardot.gif HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://datechf.cc/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/cleardot.gif HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://datechf.cc/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf4z9&sid=xSgUJ84KMgPLXcJ2ADHj HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf4WI&sid=xSgUJ84KMgPLXcJ2ADHj HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf4WM&sid=xSgUJ84KMgPLXcJ2ADHj HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /images/cleardot.gif HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf4zB&sid=xSgUJ84KMgPLXcJ2ADHj HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf4z9&sid=xSgUJ84KMgPLXcJ2ADHj HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /images/cleardot.gif HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD
Source: global traffic	HTTP traffic detected: GET /gen204?sl=auto&tl=de&textlen=1433&ctt=1&ttt=3111&ttl=2143&sr=1&nca=te_time&client=te&logld=vTE_20240925 HTTP/1.1Host: translate.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://datechf.cc/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf5mn HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf5mn HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket&sid=9y9cewKasiXpUlx9ADHm HTTP/1.1Host: datechf.ccConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://datechf.ccSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/deSec-WebSocket-Key: T0fz0iYS4HrXrOD7vQoP3A==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf6S0&sid=9y9cewKasiXpUlx9ADHm HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf6Ru&sid=9y9cewKasiXpUlx9ADHm HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf6S0&sid=9y9cewKasiXpUlx9ADHm HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf6ny&sid=9y9cewKasiXpUlx9ADHm HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/ec4b873d446c/api.js?onload=Jeuhg1&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.twint.chsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/15pzp/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /turnstile/v0/g/ec4b873d446c/api.js?onload=Jeuhg1&render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8c9898691a4b42b5&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/15pzp/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/15pzp/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf7k6 HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8c9898691a4b42b5&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf7k6 HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf8A-&sid=wblwJSknquM5SMA3ADHp HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket&sid=wblwJSknquM5SMA3ADHp HTTP/1.1Host: datechf.ccConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://datechf.ccSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/deSec-WebSocket-Key: W3ST8xe3H3d9xA2PYCRWBA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1747044856:1727406813:cYobLX1V0bNGFw4HsDfHR7tNyeWvFZHZq9lR0vUDSLA/8c9898691a4b42b5/154eb201ebda143 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/pat/8c9898691a4b42b5/1727409719717/5b06ee5dbbd1b2452cb1acf6647d2475161453c780a73d0285d7d820c113f77a/uIY9KT1wjH83wWA HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/15pzp/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf8Au&sid=wblwJSknquM5SMA3ADHp HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf8A-&sid=wblwJSknquM5SMA3ADHp HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf8by&sid=wblwJSknquM5SMA3ADHp HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/z2exq/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf9Q5 HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8c98989bea707d00&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/z2exq/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf9vB&sid=rK5nYzdFNB7SnldaADHs HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket&sid=rK5nYzdFNB7SnldaADHs HTTP/1.1Host: datechf.ccConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://datechf.ccSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/deSec-WebSocket-Key: ERIjIkcgONXtsWcIdRuEwQ==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/i/8c9898691a4b42b5/1727409719721/QRnLOEdUTmV-wSC HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/15pzp/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8c98989bea707d00&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf9Q5 HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf9v3&sid=rK5nYzdFNB7SnldaADHs HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nf9vB&sid=rK5nYzdFNB7SnldaADHs HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfAEk&sid=rK5nYzdFNB7SnldaADHs HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/i/8c9898691a4b42b5/1727409719721/QRnLOEdUTmV-wSC HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1747044856:1727406813:cYobLX1V0bNGFw4HsDfHR7tNyeWvFZHZq9lR0vUDSLA/8c9898691a4b42b5/154eb201ebda143 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1013387493:1727406779:YeLLeSo_U6RZZGVQuSYB98sLFp2Tgq99RTAz7RsFCL0/8c98989bea707d00/b235806045ed28b HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jkyme/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/ HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8c9898c28eda4378&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jkyme/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/baf1656f-0c9f-4cd8-83fe-a5ce8d8c9eed/OtAutoBlock.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/i/8c98989bea707d00/1727409729545/yrXd159Ts3jd8Vz HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/z2exq/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/otSDKStub.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/baf1656f-0c9f-4cd8-83fe-a5ce8d8c9eed/OtAutoBlock.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /consent/baf1656f-0c9f-4cd8-83fe-a5ce8d8c9eed/baf1656f-0c9f-4cd8-83fe-a5ce8d8c9eed.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8c9898c28eda4378&lang=auto HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/i/8c98989bea707d00/1727409729545/yrXd159Ts3jd8Vz HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/pat/8c98989bea707d00/1727409729549/6e772fe038b38ec32bda048e9279175be3e9a3c1b033612b98a2703d39605abc/_6b6v8N3gCA3UaK HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/z2exq/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfBLz HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /consent/baf1656f-0c9f-4cd8-83fe-a5ce8d8c9eed/baf1656f-0c9f-4cd8-83fe-a5ce8d8c9eed.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1731196884:1727406774:ogyKtD3DYRZvneb8A8Xd4gumCbdnDgJl3yl7WoSTagU/8c9898c28eda4378/cf4fc23845fcc6d HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfBLz HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfBk-&sid=qkaZApVbB7RCdyB5ADHv HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket&sid=qkaZApVbB7RCdyB5ADHv HTTP/1.1Host: datechf.ccConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://datechf.ccSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/deSec-WebSocket-Key: YzgEtue9jvyMxPYWhtacPA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/i/8c9898c28eda4378/1727409733188/7Hf4hPCc6PpUz1G HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jkyme/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfC8J&sid=qkaZApVbB7RCdyB5ADHv HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /consent/baf1656f-0c9f-4cd8-83fe-a5ce8d8c9eed/01921dfd-0535-7c88-9558-f9c8250e558c/de.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bat.js HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MR=0
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/946203707?random=1727409735110&cv=11&fst=1727409735110&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F&hn=www.googleadservices.com&frm=0&tiba=Veloversicherung%20mit%20TWINT%20abschliessen%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409735110&cv=11&fst=1727409735110&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F&hn=www.googleadservices.com&frm=0&tiba=Veloversicherung%20mit%20TWINT%20abschliessen%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/assets/otFloatingRoundedIcon.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/assets/v2/otPcCenter.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/assets/otCookieSettingsButton.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/946203707?random=1727409736078&cv=11&fst=1727409736078&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F%3F__cf_chl_tk%3DvPDafy5u7fTr24UoQidgupFmfFsp3K2ZYE8LkGIqA1g-1727409712-0.0.1.1-4734&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Google%20Play%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /p/action/20058379.js HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MR=0
Source: global traffic	HTTP traffic detected: GET /signals/config/979879722096658?v=2.9.168&r=stable&domain=www.twint.ch&hme=3ba426d944c98eb3ce406a0f93fc097d0320a486b65b445a33b2eda3a5aa3429&ex_m=70%2C119%2C105%2C109%2C61%2C4%2C98%2C69%2C16%2C95%2C87%2C51%2C54%2C170%2C173%2C185%2C181%2C182%2C184%2C29%2C99%2C53%2C76%2C183%2C165%2C168%2C178%2C179%2C186%2C129%2C41%2C34%2C141%2C15%2C50%2C192%2C191%2C131%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C91%2C17%2C14%2C94%2C90%2C89%2C106%2C52%2C108%2C39%2C107%2C30%2C92%2C26%2C166%2C169%2C138%2C28%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C74%2C100%2C27%2C75%2C9%2C8%2C79%2C48%2C21%2C102%2C101%2C103%2C96%2C10%2C20%2C3%2C38%2C19%2C84%2C56%2C82%2C33%2C73%2C0%2C93%2C32%2C81%2C86%2C47%2C46%2C85%2C37%2C5%2C88%2C80%2C44%2C35%2C83%2C2%2C36%2C63%2C42%2C104%2C45%2C78%2C68%2C110%2C60%2C59%2C31%2C97%2C58%2C55%2C49%2C77%2C72%2C24%2C111 HTTP/1.1Host: connect.facebook.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/fls/rul/activityi;fledge=1;src=9818618;type=twint002;cat=twint0;ord=1895166089217;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=137932440;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F? HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /activityi;src=9818618;type=twint002;cat=twint0;ord=1895166089217;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=137932440;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint002;cat=twint0;ord=1895166089217;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=137932440;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger, event-source;navigation-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409735110&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F&hn=www.googleadservices.com&frm=0&tiba=Veloversicherung%20mit%20TWINT%20abschliessen%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnfDjnBfoqWX8gWwYQN_2l4SiJ06y1Qag&random=1750163495&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_close.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/c6763161-a85e-4d6f-9902-c9d4575334af/209d2df7-c2dd-4023-807a-b382cfc1c6a0/f8ae775d-1572-46f6-ab4d-b468dd952de8/MicrosoftTeams-image_(53).png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/c6763161-a85e-4d6f-9902-c9d4575334af/3c138d7e-9ef4-4168-8713-9b0f422d7140/328b026b-df30-40ce-be3e-cf9ec7a8cf13/twint_logo_q_pos_bg.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_guard_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfBkw&sid=qkaZApVbB7RCdyB5ADHv HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/otBannerSdk.js HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfBk-&sid=qkaZApVbB7RCdyB5ADHv HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/i/8c9898c28eda4378/1727409733188/7Hf4hPCc6PpUz1G HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /action/0?ti=20058379&tm=gtm002&Ver=2&mid=95270a66-e649-4deb-a4ab-3b09c746e031&sid=497e5f707c8511efa859ef9731879154&vid=498037407c8511ef8c4a6b44ef6ef254&vids=1&msclkid=N&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Veloversicherung%20mit%20TWINT%20abschliessen%20%C2%BB%20TWINT&p=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F&r=&lt=686&evt=pageLoad&sv=1&cdb=AQET&rn=935116 HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MR=0
Source: global traffic	HTTP traffic detected: GET /activityi;dc_pre=CIDIkN-e4ogDFcSHgwcdx90GEg;src=9818618;type=twint002;cat=twint0;ord=1895166089217;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=137932440;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=&if=false&ts=1727409739025&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=683abd&ler=empty&cdl=API_unavailable&it=1727409736851&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=&if=false&ts=1727409739025&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=683abd&ler=empty&cdl=API_unavailable&it=1727409736851&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger, event-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ddm/fls/z/dc_pre=CIDIkN-e4ogDFcSHgwcdx90GEg;src=9818618;type=twint002;cat=twint0;ord=1895166089217;npa=0;auiddc=*;ps=1;pcor=137932440;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F HTTP/1.1Host: adservice.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://9818618.fls.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /logos/c6763161-a85e-4d6f-9902-c9d4575334af/209d2df7-c2dd-4023-807a-b382cfc1c6a0/f8ae775d-1572-46f6-ab4d-b468dd952de8/MicrosoftTeams-image_(53).png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Range: bytes=244800-244800If-Range: 0x8DBAD5A5C6086B9
Source: global traffic	HTTP traffic detected: GET /consent/baf1656f-0c9f-4cd8-83fe-a5ce8d8c9eed/01921dfd-0535-7c88-9558-f9c8250e558c/de.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/pat/8c9898c28eda4378/1727409733189/025777101fe1a45b0f5d87c612f46fac53b6d59d903f2a5f242cb7915cf2c14c/x8Gv9uqo--nZHa1 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/jkyme/0x4AAAAAAADnOjc0PNeA8qVm/light/fbE/normal/auto/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfC8Q&sid=qkaZApVbB7RCdyB5ADHv HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /bat.js HTTP/1.1Host: bat.bing.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MR=0
Source: global traffic	HTTP traffic detected: GET /en_US/fbevents.js HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409736078&cv=11&fst=1727409736078&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F%3F__cf_chl_tk%3DvPDafy5u7fTr24UoQidgupFmfFsp3K2ZYE8LkGIqA1g-1727409712-0.0.1.1-4734&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Google%20Play%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activityi;src=9818618;type=twint000;cat=twint0;ord=2448675382325;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=867644488;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /td/fls/rul/activityi;fledge=1;src=9818618;type=twint000;cat=twint0;ord=2448675382325;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=867644488;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F? HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint000;cat=twint0;ord=2448675382325;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=867644488;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/assets/otCookieSettingsButton.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1013387493:1727406779:YeLLeSo_U6RZZGVQuSYB98sLFp2Tgq99RTAz7RsFCL0/8c98989bea707d00/b235806045ed28b HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/assets/otFloatingRoundedIcon.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfCqH&sid=qkaZApVbB7RCdyB5ADHv HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfC8J&sid=qkaZApVbB7RCdyB5ADHv HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/assets/otCommonStyles.css HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409735110&cv=11&fst=1727409735110&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F&hn=www.googleadservices.com&frm=0&tiba=Veloversicherung%20mit%20TWINT%20abschliessen%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint002;cat=twint0;ord=1895166089217;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=137932440;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /scripttemplates/202307.1.0/assets/v2/otPcCenter.json HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/static/powered_by_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409735110&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2Fvelo%2F&hn=www.googleadservices.com&frm=0&tiba=Veloversicherung%20mit%20TWINT%20abschliessen%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwDpaXnfDjnBfoqWX8gWwYQN_2l4SiJ06y1Qag&random=1750163495&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_close.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /signals/config/979879722096658?v=2.9.168&r=stable&domain=www.twint.ch&hme=3ba426d944c98eb3ce406a0f93fc097d0320a486b65b445a33b2eda3a5aa3429&ex_m=70%2C119%2C105%2C109%2C61%2C4%2C98%2C69%2C16%2C95%2C87%2C51%2C54%2C170%2C173%2C185%2C181%2C182%2C184%2C29%2C99%2C53%2C76%2C183%2C165%2C168%2C178%2C179%2C186%2C129%2C41%2C34%2C141%2C15%2C50%2C192%2C191%2C131%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C91%2C17%2C14%2C94%2C90%2C89%2C106%2C52%2C108%2C39%2C107%2C30%2C92%2C26%2C166%2C169%2C138%2C28%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C74%2C100%2C27%2C75%2C9%2C8%2C79%2C48%2C21%2C102%2C101%2C103%2C96%2C10%2C20%2C3%2C38%2C19%2C84%2C56%2C82%2C33%2C73%2C0%2C93%2C32%2C81%2C86%2C47%2C46%2C85%2C37%2C5%2C88%2C80%2C44%2C35%2C83%2C2%2C36%2C63%2C42%2C104%2C45%2C78%2C68%2C110%2C60%2C59%2C31%2C97%2C58%2C55%2C49%2C77%2C72%2C24%2C111 HTTP/1.1Host: connect.facebook.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409743210&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=ab3925&ler=empty&cdl=API_unavailable&it=1727409742898&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /p/action/20058379.js HTTP/1.1Host: bat.bing.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MR=0
Source: global traffic	HTTP traffic detected: GET /action/0?ti=20058379&tm=gtm002&Ver=2&mid=469668cb-f2c0-4a39-bff5-f3069aec2bc1&sid=497e5f707c8511efa859ef9731879154&vid=498037407c8511ef8c4a6b44ef6ef254&vids=0&msclkid=N&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Kaufe%20Google%20Play%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&p=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F&r=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F%3F__cf_chl_tk%3DvPDafy5u7fTr24UoQidgupFmfFsp3K2ZYE8LkGIqA1g-1727409712-0.0.1.1-4734&lt=3686&evt=pageLoad&sv=1&cdb=AQET&rn=61301 HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MR=0; MSPTC=2of7DkoixaLfYUbWyihudepkmANZsPUZb-bl4_5CISU
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409743210&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=ab3925&ler=empty&cdl=API_unavailable&it=1727409742898&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger;navigation-source, event-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfEQ- HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /activityi;dc_pre=CMGggOKe4ogDFT2Igwcdeksm6g;src=9818618;type=twint000;cat=twint0;ord=2448675382325;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=867644488;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /td/rul/946203707?random=1727409744002&cv=11&fst=1727409744002&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F%3F__cf_chl_tk%3D8Ylek.WKI04G6TXvVTCL_69k6NRX5ocFRXcdiigbSf8-1727409721-0.0.1.1-4670&hn=www.googleadservices.com&frm=0&tiba=Sicher%20und%20schnell%20Spenden%20direkt%20in%20der%20TWINT%20App&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /logos/static/ot_guard_logo.svg HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /logos/c6763161-a85e-4d6f-9902-c9d4575334af/3c138d7e-9ef4-4168-8713-9b0f422d7140/328b026b-df30-40ce-be3e-cf9ec7a8cf13/twint_logo_q_pos_bg.png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409736078&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F%3F__cf_chl_tk%3DvPDafy5u7fTr24UoQidgupFmfFsp3K2ZYE8LkGIqA1g-1727409712-0.0.1.1-4734&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Google%20Play%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnf2oQDLOilvPE3AkGZM8K7zLJFKHoP3GwJFqN6CxNlis8qHfYP&random=2946198191&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /logos/c6763161-a85e-4d6f-9902-c9d4575334af/209d2df7-c2dd-4023-807a-b382cfc1c6a0/f8ae775d-1572-46f6-ab4d-b468dd952de8/MicrosoftTeams-image_(53).png HTTP/1.1Host: cdn.cookielaw.orgConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=&if=false&ts=1727409739025&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=683abd&ler=empty&cdl=API_unavailable&it=1727409736851&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=&if=false&ts=1727409739025&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=683abd&ler=empty&cdl=API_unavailable&it=1727409736851&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ddm/fls/z/dc_pre=CMGggOKe4ogDFT2Igwcdeksm6g;src=9818618;type=twint000;cat=twint0;ord=2448675382325;npa=0;auiddc=*;ps=1;pcor=867644488;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F HTTP/1.1Host: adservice.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://9818618.fls.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket&sid=FTghqIbk_2IPVTtyADHy HTTP/1.1Host: datechf.ccConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://datechf.ccSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/deSec-WebSocket-Key: ZOGscY/4b6Dee1qc3ERDVw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfEwn&sid=FTghqIbk_2IPVTtyADHy HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfFIz&sid=FTghqIbk_2IPVTtyADHy HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409744002&cv=11&fst=1727409744002&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F%3F__cf_chl_tk%3D8Ylek.WKI04G6TXvVTCL_69k6NRX5ocFRXcdiigbSf8-1727409721-0.0.1.1-4670&hn=www.googleadservices.com&frm=0&tiba=Sicher%20und%20schnell%20Spenden%20direkt%20in%20der%20TWINT%20App&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activityi;src=9818618;type=twint00;cat=pvtwi0;ord=9421055585359;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1564699894;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /td/fls/rul/activityi;fledge=1;src=9818618;type=twint00;cat=pvtwi0;ord=9421055585359;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1564699894;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F? HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint00;cat=pvtwi0;ord=9421055585359;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1564699894;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409736078&cv=11&fst=1727409736078&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F%3F__cf_chl_tk%3DvPDafy5u7fTr24UoQidgupFmfFsp3K2ZYE8LkGIqA1g-1727409712-0.0.1.1-4734&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Google%20Play%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409743210&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=ab3925&ler=empty&cdl=API_unavailable&it=1727409742898&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint000;cat=twint0;ord=2448675382325;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=867644488;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409748737&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=654d6e&ler=empty&cdl=API_unavailable&it=1727409748414&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /activityi;dc_pre=CKq-zuSe4ogDFYSHgwcdrd8U9g;src=9818618;type=twint00;cat=pvtwi0;ord=9421055585359;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1564699894;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409748737&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=654d6e&ler=empty&cdl=API_unavailable&it=1727409748414&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger, event-source=navigation-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /action/0?ti=20058379&tm=gtm002&Ver=2&mid=413e2505-368e-465b-8eb3-ffe788848299&sid=497e5f707c8511efa859ef9731879154&vid=498037407c8511ef8c4a6b44ef6ef254&vids=0&msclkid=N&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Sicher%20und%20schnell%20Spenden%20direkt%20in%20der%20TWINT%20App&p=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F&r=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F%3F__cf_chl_tk%3D8Ylek.WKI04G6TXvVTCL_69k6NRX5ocFRXcdiigbSf8-1727409721-0.0.1.1-4670&lt=3631&evt=pageLoad&sv=1&cdb=AQET&rn=448074 HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MR=0; MSPTC=2of7DkoixaLfYUbWyihudepkmANZsPUZb-bl4_5CISU
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409743210&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=ab3925&ler=empty&cdl=API_unavailable&it=1727409742898&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409744002&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F%3F__cf_chl_tk%3D8Ylek.WKI04G6TXvVTCL_69k6NRX5ocFRXcdiigbSf8-1727409721-0.0.1.1-4670&hn=www.googleadservices.com&frm=0&tiba=Sicher%20und%20schnell%20Spenden%20direkt%20in%20der%20TWINT%20App&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnf2wzw5r2qZw1p22bAF3afrRFHrWIghWAnAwsNxvVm_xQQf4Bn&random=537469945&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /ddm/fls/z/dc_pre=CKq-zuSe4ogDFYSHgwcdrd8U9g;src=9818618;type=twint00;cat=pvtwi0;ord=9421055585359;npa=0;auiddc=*;ps=1;pcor=1564699894;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F HTTP/1.1Host: adservice.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://9818618.fls.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /td/rul/946203707?random=1727409752296&cv=11&fst=1727409752296&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F%3F__cf_chl_tk%3D5A09ioEQ0UuE6kMF8J70tFRZFy1rLN1KfmGgecubOiU-1727409728-0.0.1.1-4692&hn=www.googleadservices.com&frm=0&tiba=Versicherung%20mit%20TWINT%20abschliessen%20%7C%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/g/flow/ov1/1731196884:1727406774:ogyKtD3DYRZvneb8A8Xd4gumCbdnDgJl3yl7WoSTagU/8c9898c28eda4378/cf4fc23845fcc6d HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfEQ- HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfEwb&sid=FTghqIbk_2IPVTtyADHy HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfEwn&sid=FTghqIbk_2IPVTtyADHy HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfFJ0&sid=FTghqIbk_2IPVTtyADHy HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409736078&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fgoogle-play%2F%3F__cf_chl_tk%3DvPDafy5u7fTr24UoQidgupFmfFsp3K2ZYE8LkGIqA1g-1727409712-0.0.1.1-4734&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Google%20Play%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnf2oQDLOilvPE3AkGZM8K7zLJFKHoP3GwJFqN6CxNlis8qHfYP&random=2946198191&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"accept: application/jsonsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://www.twint.chSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /td/rul/946203707?random=1727409754779&cv=11&fst=1727409754779&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /td/rul/946203707?random=1727409754803&cv=11&fst=1727409754803&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfFeA&sid=FTghqIbk_2IPVTtyADHy HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409754779&cv=11&fst=1727409754779&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409744002&cv=11&fst=1727409744002&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F%3F__cf_chl_tk%3D8Ylek.WKI04G6TXvVTCL_69k6NRX5ocFRXcdiigbSf8-1727409721-0.0.1.1-4670&hn=www.googleadservices.com&frm=0&tiba=Sicher%20und%20schnell%20Spenden%20direkt%20in%20der%20TWINT%20App&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409754803&cv=11&fst=1727409754803&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint00;cat=pvtwi0;ord=9421055585359;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1564699894;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409748737&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=654d6e&ler=empty&cdl=API_unavailable&it=1727409748414&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409748737&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=654d6e&ler=empty&cdl=API_unavailable&it=1727409748414&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409744002&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fspenden%2F%3F__cf_chl_tk%3D8Ylek.WKI04G6TXvVTCL_69k6NRX5ocFRXcdiigbSf8-1727409721-0.0.1.1-4670&hn=www.googleadservices.com&frm=0&tiba=Sicher%20und%20schnell%20Spenden%20direkt%20in%20der%20TWINT%20App&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnf2wzw5r2qZw1p22bAF3afrRFHrWIghWAnAwsNxvVm_xQQf4Bn&random=537469945&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /td/fls/rul/activityi;fledge=1;src=9818618;type=twint000;cat=twint0;ord=8444076415182;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1986224265;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F? HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activityi;src=9818618;type=twint000;cat=twint0;ord=8444076415182;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1986224265;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint000;cat=twint0;ord=8444076415182;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1986224265;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger;navigation-source, event-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409754779&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnfD4PNL5GajCw4O2PROrEMkRUJ442nzdCQ5-cdQc1KvGRj4f_X&random=1170471227&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /activityi;dc_pre=CNb5keme4ogDFfCqgwcdUAQ1Qg;src=9818618;type=twint000;cat=twint0;ord=8444076415182;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1986224265;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409754803&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnfTxaXFEa455endocBtx5JKmZi27z5gQy0CTt7gOepkj5ItrRu&random=672796695&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409752296&cv=11&fst=1727409752296&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F%3F__cf_chl_tk%3D5A09ioEQ0UuE6kMF8J70tFRZFy1rLN1KfmGgecubOiU-1727409728-0.0.1.1-4692&hn=www.googleadservices.com&frm=0&tiba=Versicherung%20mit%20TWINT%20abschliessen%20%7C%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activityi;src=9818618;type=twint002;cat=twint0;ord=4668833148283;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1409597338;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /td/fls/rul/activityi;fledge=1;src=9818618;type=twint002;cat=twint0;ord=4668833148283;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1409597338;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F? HTTP/1.1Host: td.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /iframe_api HTTP/1.1Host: www.youtube.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=&if=false&ts=1727409758907&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=33f8d2&ler=empty&cdl=API_unavailable&it=1727409757585&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=&if=false&ts=1727409758907&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=33f8d2&ler=empty&cdl=API_unavailable&it=1727409757585&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: event-source, trigger, not-navigation-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfFIz&sid=FTghqIbk_2IPVTtyADHy HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /ddm/fls/z/dc_pre=CNb5keme4ogDFfCqgwcdUAQ1Qg;src=9818618;type=twint000;cat=twint0;ord=8444076415182;npa=0;auiddc=*;ps=1;pcor=1986224265;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F HTTP/1.1Host: adservice.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://9818618.fls.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /action/0?ti=20058379&tm=gtm002&Ver=2&mid=f28359a7-14ee-4342-9478-e8e28ca87905&sid=497e5f707c8511efa859ef9731879154&vid=498037407c8511ef8c4a6b44ef6ef254&vids=0&msclkid=N&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&p=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&r=&lt=1923&evt=pageLoad&sv=1&cdb=AQET&rn=172087 HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MR=0; MSPTC=2of7DkoixaLfYUbWyihudepkmANZsPUZb-bl4_5CISU
Source: global traffic	HTTP traffic detected: GET /activityi;dc_pre=COOh1Ome4ogDFcOHgwcd2l8z9Q;src=9818618;type=twint002;cat=twint0;ord=4668833148283;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1409597338;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F? HTTP/1.1Host: 9818618.fls.doubleclick.netConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint002;cat=twint0;ord=4668833148283;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1409597338;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger, event-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /action/0?ti=20058379&tm=gtm002&Ver=2&mid=22c20d2e-7c34-4136-ae23-48da5e538363&sid=497e5f707c8511efa859ef9731879154&vid=498037407c8511ef8c4a6b44ef6ef254&vids=0&msclkid=N&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Versicherung%20mit%20TWINT%20abschliessen%20%7C%20TWINT&p=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F&r=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F%3F__cf_chl_tk%3D5A09ioEQ0UuE6kMF8J70tFRZFy1rLN1KfmGgecubOiU-1727409728-0.0.1.1-4692&lt=2113&evt=pageLoad&sv=1&cdb=AQET&rn=915018 HTTP/1.1Host: bat.bing.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: MUID=375E6F2E0D8F6B9C2CEB7C8E098F6DFE; MR=0; MSPTC=2of7DkoixaLfYUbWyihudepkmANZsPUZb-bl4_5CISU
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409752296&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F%3F__cf_chl_tk%3D5A09ioEQ0UuE6kMF8J70tFRZFy1rLN1KfmGgecubOiU-1727409728-0.0.1.1-4692&hn=www.googleadservices.com&frm=0&tiba=Versicherung%20mit%20TWINT%20abschliessen%20%7C%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnfiBfL-gMZMcox3N5VPDcanwndPU4HiC7yGD5gbT7lMJwSNvp_&random=3862314837&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409760274&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=5a650c&ler=empty&cdl=API_unavailable&it=1727409759036&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409760274&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=5a650c&ler=empty&cdl=API_unavailable&it=1727409759036&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageAttribution-Reporting-Eligible: trigger;navigation-source, event-sourceReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ddm/fls/z/dc_pre=COOh1Ome4ogDFcOHgwcd2l8z9Q;src=9818618;type=twint002;cat=twint0;ord=4668833148283;npa=0;auiddc=*;ps=1;pcor=1409597338;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F HTTP/1.1Host: adservice.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://9818618.fls.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /s/player/b0557ce3/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1Host: www.youtube.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.twint.ch/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: YSC=Q_eHeCsPKMA; VISITOR_INFO1_LIVE=_TzoU-TzW1A; VISITOR_PRIVACY_METADATA=CgJVUxIEGgAgYg%3D%3D
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfIu8 HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /cookieconsentpub/v1/geo/location HTTP/1.1Host: geolocation.onetrust.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /js/th/KZ9qBfv2Fvj8--thF3jkrqmjFIXwxVfodGy5wvrcirQ.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.youtube-nocookie.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /vi/rrdmkY1xtjg/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGEsgZShDMA8=&rs=AOn4CLD0Sj8pWlWnPKIRxnXk58RdyoG3-g HTTP/1.1Host: i.ytimg.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.youtube-nocookie.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ytc/AIdro_nsnpDHndRIgw_D137nMXybt_A9C6gggxF9A7gF4rjCOvU=s68-c-k-c0x00ffffff-no-rj HTTP/1.1Host: yt3.ggpht.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.youtube-nocookie.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfJU9&sid=3r9bDDVSXbEFGIhqADH1 HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=websocket&sid=3r9bDDVSXbEFGIhqADH1 HTTP/1.1Host: datechf.ccConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://datechf.ccSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/deSec-WebSocket-Key: x8n/D9MV+Q3kp8cTjMFqvA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=&if=false&ts=1727409758907&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=33f8d2&ler=empty&cdl=API_unavailable&it=1727409757585&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409754779&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnfD4PNL5GajCw4O2PROrEMkRUJ442nzdCQ5-cdQc1KvGRj4f_X&random=1170471227&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409754779&cv=11&fst=1727409754779&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint000;cat=twint0;ord=8444076415182;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1986224265;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /iframe_api HTTP/1.1Host: www.youtube.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409754803&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnfTxaXFEa455endocBtx5JKmZi27z5gQy0CTt7gOepkj5ItrRu&random=672796695&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /s/player/26636eff/player_ias.vflset/en_US/embed.js HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409754803&cv=11&fst=1727409754803&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fdigitale-gutscheine%2Fnetflix%2F&hn=www.googleadservices.com&frm=0&tiba=Kaufe%20Netflix%20Guthaben%20direkt%20in%20der%20TWINT%20App%20%C2%BB%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /pagead/viewthroughconversion/946203707/?random=1727409752296&cv=11&fst=1727409752296&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F%3F__cf_chl_tk%3D5A09ioEQ0UuE6kMF8J70tFRZFy1rLN1KfmGgecubOiU-1727409728-0.0.1.1-4692&hn=www.googleadservices.com&frm=0&tiba=Versicherung%20mit%20TWINT%20abschliessen%20%7C%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=&if=false&ts=1727409758907&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=33f8d2&ler=empty&cdl=API_unavailable&it=1727409757585&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/player/26636eff/www-embed-player.vflset/www-embed-player.js HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfIu8 HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /activity;register_conversion=1;src=9818618;type=twint002;cat=twint0;ord=4668833148283;npa=0;auiddc=1403402495.1727409735;ps=1;pcor=1409597338;uaa=x86;uab=64;uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132;uamb=0;uam=;uap=Windows;uapv=10.0.0;uaw=0;pscdl=noapi;frm=0;gtm=45fe49p0v9190730279z876304729za201zb76304729;gcs=G111;gcd=13t3t3t3t5l1;dma=0;tag_exp=101671035~101747727;epver=2;~oref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F? HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: ar_debug=1; IDE=AHWqTUnaxrRQiOXDkuDPypDvKrx_28Q0spLOcJvV9FpcEPQeJgRmNFlJQAQ_CJMG
Source: global traffic	HTTP traffic detected: GET /tr/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409760274&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=5a650c&ler=empty&cdl=API_unavailable&it=1727409759036&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=GET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/1p-user-list/946203707/?random=1727409752296&cv=11&fst=1727409600000&bg=ffffff&guid=ON&async=1&gtm=45be49p0v9117572465z876304729za200zb9190789414&gcd=13t3t3t3t5l1&dma=0&tag_exp=101671035~101747727&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F&ref=https%3A%2F%2Fwww.twint.ch%2Fprivatkunden%2Ffunktionen%2Fversicherung%2F%3F__cf_chl_tk%3D5A09ioEQ0UuE6kMF8J70tFRZFy1rLN1KfmGgecubOiU-1727409728-0.0.1.1-4692&hn=www.googleadservices.com&frm=0&tiba=Versicherung%20mit%20TWINT%20abschliessen%20%7C%20TWINT&npa=0&pscdl=noapi&auid=1403402495.1727409735&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=3&is_vtc=1&cid=CAQSKQDpaXnfiBfL-gMZMcox3N5VPDcanwndPU4HiC7yGD5gbT7lMJwSNvp_&random=3862314837&rmt_tld=0&ipr=y HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /privacy_sandbox/pixel/register/trigger/?id=979879722096658&ev=PageView&dl=https%3A%2F%2Fwww.twint.ch&rl=https%3A%2F%2Fwww.twint.ch&if=false&ts=1727409760274&sw=1280&sh=1024&v=2.9.168&r=stable&ec=0&o=4125&fbp=fb.1.1727409739018.104976150382192680&cs_est=true&pm=1&hrl=5a650c&ler=empty&cdl=API_unavailable&it=1727409759036&coo=false&cs_cc=1&cas=1184151431702574%2C7836316349762126%2C7350041391718351&rqm=FGET HTTP/1.1Host: www.facebook.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/player/26636eff/player_ias.vflset/en_US/base.js HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /s/player/b0557ce3/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1Host: www.youtube.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: YSC=hPSAp1_Qe-w; VISITOR_INFO1_LIVE=EzDlWw_gZng; VISITOR_PRIVACY_METADATA=CgJVUxIEGgAgQQ%3D%3D
Source: global traffic	HTTP traffic detected: GET /js/th/KZ9qBfv2Fvj8--thF3jkrqmjFIXwxVfodGy5wvrcirQ.js HTTP/1.1Host: www.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=uHE3MPhWkkCAHJpDH1pishVOR2DYGb4VCGR8FWemchSsyuvuwmsiE1fPmcYb8cy-vat5744oZWk9lzdQx-eGkMtCG5oHkHJxpbmzc-IPDj-LYdAi_7nLYb4BOjEbMLc04Iw9jJ28d0aZ82FWxcJUVm6xZxGsIZdSvdTjN3etGqpmcJVcLA
Source: global traffic	HTTP traffic detected: GET /s/player/26636eff/player_ias.vflset/en_US/remote.js HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfJU4&sid=3r9bDDVSXbEFGIhqADH1 HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfJU9&sid=3r9bDDVSXbEFGIhqADH1 HTTP/1.1Host: datechf.ccConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /vi/rrdmkY1xtjg/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGEsgZShDMA8=&rs=AOn4CLD0Sj8pWlWnPKIRxnXk58RdyoG3-g HTTP/1.1Host: i.ytimg.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /socket.io/?EIO=4&transport=polling&t=P8nfK9r&sid=3r9bDDVSXbEFGIhqADH1 HTTP/1.1Host: datechf.ccConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w; googtrans=/auto/de; googtrans=/auto/de
Source: global traffic	HTTP traffic detected: GET /ytc/AIdro_nsnpDHndRIgw_D137nMXybt_A9C6gggxF9A7gF4rjCOvU=s68-c-k-c0x00ffffff-no-rj HTTP/1.1Host: yt3.ggpht.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=DvegMHshKafqyLE7vjXEVT3vAMSSVvLlzd_HYvTMA8erdASaCGxeburEWtXCvMEhx4Xbp9qHNP9Xa06jNYkqWbmAk8hDPZ_BP-s8cIJozN6Esw_WQxDsAk7O7JfiTiKN9Hzc6MA5GYuiDCvQLCFDNftL7SUsWjRDODT93dX59hfxAWTmh_U-9-fS1Q
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=DvegMHshKafqyLE7vjXEVT3vAMSSVvLlzd_HYvTMA8erdASaCGxeburEWtXCvMEhx4Xbp9qHNP9Xa06jNYkqWbmAk8hDPZ_BP-s8cIJozN6Esw_WQxDsAk7O7JfiTiKN9Hzc6MA5GYuiDCvQLCFDNftL7SUsWjRDODT93dX59hfxAWTmh_U-9-fS1Q
Source: global traffic	HTTP traffic detected: GET /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /log?format=json&hasfast=true&authuser=0 HTTP/1.1Host: play.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiTocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __Secure-BUCKET=CMwD; NID=517=DvegMHshKafqyLE7vjXEVT3vAMSSVvLlzd_HYvTMA8erdASaCGxeburEWtXCvMEhx4Xbp9qHNP9Xa06jNYkqWbmAk8hDPZ_BP-s8cIJozN6Esw_WQxDsAk7O7JfiTiKN9Hzc6MA5GYuiDCvQLCFDNftL7SUsWjRDODT93dX59hfxAWTmh_U-9-fS1Q
Source: global traffic	HTTP traffic detected: GET /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1Host: www.youtube-nocookie.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_349.2.dr	String found in binary or memory: <a href="https://www.facebook.com/twintapp" target="_blank" equals www.facebook.com (Facebook)
Source: chromecache_349.2.dr	String found in binary or memory: <a href="https://www.youtube.com/channel/UC6Y2-XBcccmo4l_3qTKWOyg" equals www.youtube.com (Youtube)
Source: chromecache_349.2.dr	String found in binary or memory: src="https://www.facebook.com/tr?id=979879722096658&amp;ev=PageView&amp;noscript=1"></noscript> equals www.facebook.com (Facebook)
Source: chromecache_349.2.dr	String found in binary or memory: <meta property="article:publisher" content="https://www.facebook.com/twintapp"> equals www.facebook.com (Facebook)
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: (g.rk(c,"redirector.googlevideo.com"),d=c.toString()):c.j.match("rr?[1-9].*\\.c\\.youtube\\.com$")?(g.rk(c,"www.youtube.com"),d=c.toString()):(c=iwa(d),jE(c)&&(d=c));c=new g.XL(d);c.set("cmo=pf","1");e&&c.set("cmo=td","a1.googlevideo.com");return c}; equals www.youtube.com (Youtube)
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: 0?"http":"https";this.Ca=iE((b?b.customBaseYoutubeUrl:a.BASE_YT_URL)||"")||iE(this.mf)||this.protocol+"://www.youtube.com/";h=b?b.eventLabel:a.el;d="detailpage";h==="adunit"?d=this.D?"embedded":"detailpage":h==="embedded"||this.N?d=is(d,h,GJa):h&&(d="embedded");this.Ja=d;Qqa();h=null;d=b?b.playerStyle:a.ps;f=g.Vb(HJa,d);!d||f&&!this.N||(h=d);this.playerStyle=h;this.K=g.Vb(HJa,this.playerStyle);this.houseBrandUserStatus=b==null?void 0:b.houseBrandUserStatus;this.qa=this.K&&this.playerStyle!=="play"&& equals www.youtube.com (Youtube)
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: <a href="https://ch.linkedin.com/company/twint" target="_blank" rel="nofollow noopener"><span class="sr-only">LinkedIn</span><svg height="100" viewBox="0 0 100 100" width="100" xmlns="http://www.w3.org/2000/svg"><path d="m77.2816379 0h-70.10415992c-3.83061325 0-7.17747798 2.75625-7.17747798 6.541875v70.26c0 3.80625 3.34686473 7.198125 7.17747798 7.198125h70.08353502c3.8512382 0 6.7388589-3.414375 6.7388589-7.198125v-70.26c.0223703-3.785625-2.8876207-6.541875-6.718234-6.541875zm-51.2435928 70.018125h-12.0337131v-37.415625h12.0337131zm-5.6006078-43.104375h-.0862497c-3.8512382 0-6.3449806-2.866875-6.3449806-6.455625 0-3.654375 2.5593672-6.45375 6.4968551-6.45375s6.3468555 2.77875 6.4331053 6.45375c-.001875 3.58875-2.4956174 6.455625-6.4987301 6.455625zm49.5804729 43.104375h-12.0337131v-20.458125c0-4.90125-1.7512446-8.25-6.1049813-8.25-3.3262398 0-5.2949837 2.25-6.170606 4.441875-.328124.7875-.4162487 1.86-.4162487 2.955v21.31125h-12.0337131v-37.415625h12.0337131v5.206875c1.7512446-2.49375 4.4868612-6.0825 10.8524667-6.0825 7.8993507 0 13.8749574 5.206875 13.8749574 16.4325z" fill="#fff" transform="translate(8 8)" /></svg></a> equals www.linkedin.com (Linkedin)
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: <a href="https://twitter.com/twintapp" target="_blank" rel="nofollow noopener"><span class="sr-only">Twitter</span><svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" width="1080" height="1080" viewBox="0 0 1080 1080" xml:space="preserve"><desc>Created with Fabric.js 5.2.4</desc><defs></defs><g transform="matrix(1 0 0 1 540 540)" id="51f1a822-b8ac-4d2e-8063-29c4a5df59d5"><rect style="stroke: none; stroke-width: 1; stroke-dasharray: none; stroke-linecap: butt; stroke-dashoffset: 0; stroke-linejoin: miter; stroke-miterlimit: 4; fill: rgb(255,255,255); fill-rule: nonzero; opacity: 1; visibility: hidden;" vector-effect="non-scaling-stroke" x="-540" y="-540" rx="0" ry="0" width="1080" height="1080" /></g><g transform="matrix(1 0 0 1 540 540)" id="61540981-1d4a-4a7b-898e-3fa1ed726447"></g><g transform="matrix(1 0 0 1 540 540)" id="path1009"><path style="stroke: rgb(0,0,0); stroke-width: 0; stroke-dasharray: none; stroke-linecap: butt; stroke-dashoffset: 0; stroke-linejoin: miter; stroke-miterlimit: 4; fill: rgb(200,200,200); fill-rule: nonzero; opacity: 1;" vector-effect="non-scaling-stroke" transform=" translate(-781.89, -635.65)" d="M 283.94 167.31 L 670.3299999999999 683.95 L 281.5 1104 L 369.01 1104 L 709.4300000000001 736.24 L 984.48 1104 L 1282.28 1104 L 874.15 558.3 L 1236.07 167.30999999999995 L 1148.56 167.30999999999995 L 835.05 506.00999999999993 L 581.74 167.30999999999995 L 283.94 167.30999999999995 z M 412.63 231.77 L 549.44 231.77 L 1153.5700000000002 1039.53 L 1016.7600000000002 1039.53 L 412.63 231.77 z" stroke-linecap="round" /></g></svg></a> equals www.twitter.com (Twitter)
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: <a href="https://www.facebook.com/twintapp" target="_blank" rel="nofollow noopener"><span class="sr-only">Facebook</span><svg height="100" viewBox="0 0 100 100" width="100" xmlns="http://www.w3.org/2000/svg"><path d="m86.1928251 43.2597516c0-23.8894253-19.2540178-43.2597516-43-43.2597516-23.7459821 0-42.99999999 19.3703263-42.99999999 43.2597516 0 21.5912511 15.72187499 39.4880421 36.28124999 42.7363859v-30.2277514h-10.9208482v-12.5086345h10.9208482v-9.5325952c0-10.8400441 6.4212054-16.8326784 16.2420982-16.8326784 4.7050447 0 9.627009.8458826 9.627009.8458826v10.6469202h-5.4249108c-5.3385267 0-7.008616 3.3333183-7.008616 6.7593362v8.1150659h11.9248214l-1.9042857 12.5086344h-10.0205357v30.2296827c20.5612946-3.2464126 36.2831696-21.1432036 36.2831696-42.7402484z" fill="#fff" fill-rule="evenodd" transform="translate(6.807 7)" /></svg></a> equals www.facebook.com (Facebook)
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: <a href="https://www.youtube.com/channel/UC6Y2-XBcccmo4l_3qTKWOyg" target="_blank" rel="nofollow noopener"><span class="sr-only">YouTube</span><svg height="100" viewBox="0 0 100 100" width="100" xmlns="http://www.w3.org/2000/svg"><path d="m96.4534847 16.1184935c0-8.55445464-6.2716895-15.43603812-14.0212997-15.43603812-10.4970272-.49235639-21.202479-.68245538-32.1428824-.68245538h-3.4105864c-10.9138766 0-21.6382761.19009899-32.1353032.68435637-7.7306626 0-14.00235209 6.91960328-14.00235209 15.47405783-.47369256 6.7656231-.6745382 13.5331472-.66316958 20.3006713-.0189477 6.7675241.19579292 13.5413848.64422188 20.3215822 0 8.5544546 6.27168949 15.4930677 14.00235209 15.4930677 11.0275628.5132673 22.3393411.7413861 33.8405964.7223762 11.5202031.0380198 22.8004019-.2027722 33.8405965-.7223762 7.7496103 0 14.0212997-6.9386131 14.0212997-15.4930677.4547449-6.786534.6631696-13.5540581.6442219-20.3405921.0429482-6.7675241-.1629502-13.5413848-.6176951-20.3215821zm-57.1538494 38.989303v-37.3544517l27.4741684 18.6677209z" fill="#fff" transform="translate(1.923 14)" /></svg></a> equals www.youtube.com (Youtube)
Source: chromecache_413.2.dr	String found in binary or memory: <link itemprop="embedUrl" href="//www.youtube.com/watch?v=rrdmkY1xtjg" /> equals www.youtube.com (Youtube)
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: <meta property="article:publisher" content="https://www.facebook.com/twintapp" /> equals www.facebook.com (Facebook)
Source: chromecache_203.2.dr	String found in binary or memory: Io.prototype.Ia=function(){return this.C};var kna=(new Date).getTime();var xla="://secure-...imrworldwide.com/ ://cdn.imrworldwide.com/ ://aksecure.imrworldwide.com/ ://[^.]*.moatads.com ://youtube[0-9]+.moatpixel.com ://pm.adsafeprotected.com/youtube ://pm.test-adsafeprotected.com/youtube ://e[0-9]+.yt.srs.doubleverify.com www.google.com/pagead/xsul www.youtube.com/pagead/slav".split(" "),yla=/\bocr\b/;var Ala=/(?:\[|%5B)([a-zA-Z0-9_]+)(?:\]|%5D)/g;var Qab=0,Rab=0,Sab=0;var Ro;g.Ko=null;g.Mo=!1;g.So=1;Ro=Symbol("SIGNAL");g.To={version:0,s_:0,Pm:!1,eg:void 0,Ry:void 0,Bn:void 0,NL:0,ij:void 0,Ou:void 0,aF:!1,pP:!1,P1:function(){return!1}, equals www.youtube.com (Youtube)
Source: chromecache_320.2.dr	String found in binary or memory: L.getElementsByTagName("iframe"),la=S.length,na=0;na<la;na++)if(!u&&c(S[na],H.Ge)){hJ("https://www.youtube.com/iframe_api");u=!0;break}})}}else F(v.vtp_gtmOnSuccess)}var q=["www.youtube.com","www.youtube-nocookie.com"],r={UNSTARTED:-1,ENDED:0,PLAYING:1,PAUSED:2,BUFFERING:3,CUED:5},t,u=!1;Z.__ytl=n;Z.__ytl.o="ytl";Z.__ytl.isVendorTemplate=!0;Z.__ytl.priorityOverride=0;Z.__ytl.isInfrastructure=!1; equals www.youtube.com (Youtube)
Source: chromecache_203.2.dr	String found in binary or memory: LIa=function(a,b){if(!a.j["0"]){var c=new VF("0","fakesb",{video:new RF(0,0,0,void 0,void 0,"auto")});a.j["0"]=b?new oN(new g.XL("http://www.youtube.com/videoplayback"),c,"fake"):new FN(new g.XL("http://www.youtube.com/videoplayback"),c,new $M(0,0),new $M(0,0))}}; equals www.youtube.com (Youtube)
Source: chromecache_239.2.dr, chromecache_228.2.dr, chromecache_251.2.dr, chromecache_320.2.dr	String found in binary or memory: Math.round(q);v["gtm.videoElapsedTime"]=Math.round(f);v["gtm.videoPercent"]=r;v["gtm.videoVisible"]=t;return v},Yj:function(){e=zb()},nd:function(){d()}}};var gc=ja(["data-gtm-yt-inspected-"]),FC=["www.youtube.com","www.youtube-nocookie.com"],GC,HC=!1; equals www.youtube.com (Youtube)
Source: chromecache_203.2.dr	String found in binary or memory: a))):this.api.U().L("enable_adb_handling_in_sabr")&&c==="BROWSER_OR_EXTENSION_ERROR"&&!d.K?(d=d.hostLanguage,a="//support.google.com/youtube/answer/3037019#zippy=%2Cupdate-your-browser-and-check-your-extensions",d&&(a=g.Ui(a,{hl:d})),this.Cd(rY(this,"BROWSER_OR_EXTENSION_ERROR",a))):this.Cd(g.pY(a.errorMessage)):this.Cd(rY(this,"HTML5_NO_AVAILABLE_FORMATS_FALLBACK_WITH_LINK_SHORT","//www.youtube.com/supported_browsers")):(a=d.hostLanguage,c="//support.google.com/youtube/?p=player_error1",a&&(c=g.Ui(c, equals www.youtube.com (Youtube)
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: a.details.rc!=="429"?a.errorCode==="ump.spsrejectfailure"&&(e="HTML5_SPS_UMP_STATUS_REJECTED"):(e="TOO_MANY_REQUESTS",f="6");this.ea.Qf(a.errorCode,a.severity,e,DF(a.details),f)}else this.ea.publish("nonfatalerror",a),d=/^pp/.test(this.videoData.clientPlaybackNonce),this.Fd(a.errorCode,a.details),d&&a.errorCode==="manifest.net.connect"&&(a="https://www.youtube.com/generate_204?cpn="+this.videoData.clientPlaybackNonce+"&t="+(0,g.It)(),iT(a,"manifest",function(h){b.K=!0;b.ma("pathprobe",h)},function(h){b.Fd(h.errorCode, equals www.youtube.com (Youtube)
Source: chromecache_203.2.dr	String found in binary or memory: a.ismb);this.eq?(r=a.vss_host||"s.youtube.com",r==="s.youtube.com"&&(r=sP(this.Ca)||"www.youtube.com")):r="video.google.com";this.Rn=r;tP(this,a,!0);this.La=new OO;g.P(this,this.La);q=b?b.innertubeApiKey:ks("",a.innertube_api_key);p=b?b.innertubeApiVersion:ks("",a.innertube_api_version);r=b?b.innertubeContextClientVersion:ks("",a.innertube_context_client_version);q=g.$q("INNERTUBE_API_KEY")||q;p=g.$q("INNERTUBE_API_VERSION")||p;l=g.$q("INNERTUBE_CONTEXT_CLIENT_CONFIG_INFO");m=HO(this);n=typeof this.j.c=== equals www.youtube.com (Youtube)
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: b=this.api.U();a=this.api.getVideoData();var c="";b.C||(b=g.xP(b),b.indexOf("www.")===0&&(b=b.substring(4)),c=g.DR(a)?"Watch on YouTube Music":b==="youtube.com"?"Watch on YouTube":g.AE("Watch on $WEBSITE",{WEBSITE:b}));this.updateValue("title",c)}; equals www.youtube.com (Youtube)
Source: chromecache_218.2.dr, chromecache_249.2.dr, chromecache_220.2.dr, chromecache_237.2.dr	String found in binary or memory: c?"runIfCanceled":"runIfUncanceled",[]);if(!g.length)return!0;var k=lA(a,c,e);N(121);if(k["gtm.elementUrl"]==="https://www.facebook.com/tr/")return N(122),!0;if(d&&f){for(var m=Kb(b,g.length),n=0;n<g.length;++n)g[n](k,m);return m.done}for(var p=0;p<g.length;++p)g[p](k,function(){});return!0},oA=function(){var a=[],b=function(c){return ob(a,function(d){return d.form===c})};return{store:function(c,d){var e=b(c);e?e.button=d:a.push({form:c,button:d})},get:function(c){var d=b(c);return d?d.button:null}}}, equals www.facebook.com (Facebook)
Source: chromecache_385.2.dr, chromecache_400.2.dr	String found in binary or memory: function X(a,b){this.v={};this.playerInfo={};this.videoTitle="";this.j=this.g=null;this.h=0;this.m=!1;this.l=[];this.i=null;this.A={};this.options=null;if(!a)throw Error("YouTube player element ID required.");this.id=ra(this);b=Object.assign({title:"video player",videoId:"",width:640,height:360},b||{});var c=document;if(a=typeof a==="string"?c.getElementById(a):a){W.yt_embedsEnableRsaforFromIframeApi&&vb();c=a.tagName.toLowerCase()==="iframe";b.host||(b.host=c?ob(a.src):"https://www.youtube.com");this.options= equals www.youtube.com (Youtube)
Source: chromecache_385.2.dr, chromecache_400.2.dr	String found in binary or memory: function vb(){var a=new tb,b=["https://www.youtube.com"];b=b===void 0?sb:b;pa(function(c){switch(c.g){case 1:return C(c,ub(),2);case 2:if(!c.m){c.g=3;break}return C(c,Promise.all(b.map(function(d){var g;return pa(function(k){if(k.g==1)return k.l=2,C(k,navigator.permissions.query({name:"top-level-storage-access",requestedOrigin:d}),4);k.g!=2?(g=k.m,g.state==="prompt"&&a.g.push(d),k.g=0,k.l=0):(k.l=0,k.i=null,k.g=0)})})),4); equals www.youtube.com (Youtube)
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: g.KP=function(a){var b=g.xP(a);RJa.includes(b)&&(b="www.youtube.com");return a.protocol+"://"+b}; equals www.youtube.com (Youtube)
Source: chromecache_203.2.dr	String found in binary or memory: g.k.getVideoUrl=function(a,b,c,d,e,f,h){b={list:b};c&&(e?b.time_continue=c:b.t=c);c=h?"music.youtube.com":g.xP(this);e=c==="www.youtube.com";!f&&d&&e?f="https://youtu.be/"+a:g.oP(this)?(f="https://"+c+"/fire",b.v=a):(f&&e?(f=this.protocol+"://"+c+"/shorts/"+a,d&&(b.feature="share")):(f=this.protocol+"://"+c+"/watch",b.v=a),au&&(a=ana())&&(b.ebc=a));return g.Ui(f,b)}; equals www.youtube.com (Youtube)
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: g.xP=function(a){a=sP(a.Ca);return a==="www.youtube-nocookie.com"?"www.youtube.com":a}; equals www.youtube.com (Youtube)
Source: chromecache_228.2.dr, chromecache_251.2.dr	String found in binary or memory: if(!(e||f||g||k.length||m.length))return;var p={eh:e,ah:f,bh:g,Ph:k,Qh:m,Ge:n,Bb:b},q=C.YT;if(q)return q.ready&&q.ready(d),b;var r=C.onYouTubeIframeAPIReady;C.onYouTubeIframeAPIReady=function(){r&&r();d()};F(function(){for(var t=E.getElementsByTagName("script"),u=t.length,v=0;v<u;v++){var w=t[v].getAttribute("src");if(QC(w,"iframe_api")||QC(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!HC&&OC(x[A],p.Ge))return wc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_218.2.dr, chromecache_249.2.dr, chromecache_267.2.dr, chromecache_232.2.dr, chromecache_255.2.dr, chromecache_220.2.dr, chromecache_229.2.dr, chromecache_237.2.dr	String found in binary or memory: return b}DC.H="internal.enableAutoEventOnTimer";var gc=ja(["data-gtm-yt-inspected-"]),FC=["www.youtube.com","www.youtube-nocookie.com"],GC,HC=!1; equals www.youtube.com (Youtube)
Source: chromecache_405.2.dr	String found in binary or memory: return function(a,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var b=f.getFbeventsModules("signalsFBEventsGetTier"),c=d();function d(){try{if(a.trustedTypes&&a.trustedTypes.createPolicy){var b=a.trustedTypes;return b.createPolicy("facebook.com/signals/iwl",{createScriptURL:function(a){var b=new URL(a);b=b.hostname.endsWith(".facebook.com")&&b.pathname=="/signals/iwl.js";if(!b)throw new Error("Disallowed script URL");return a}})}}catch(a){}return null}e.exports=function(a,d){d=b(d);d=d==null?"www.facebook.com":"www."+d+".facebook.com";d="https://"+d+"/signals/iwl.js?pixel_id="+a;if(c!=null)return c.createScriptURL(d);else return d}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_405.2.dr	String found in binary or memory: return function(f,b,c,d){var e={exports:{}};e.exports;(function(){"use strict";var a=/^https:\/\/www\.([A-Za-z0-9\.]+)\.facebook\.com\/tr\/?$/,b=["https://www.facebook.com/tr","https://www.facebook.com/tr/"];e.exports=function(c){if(b.indexOf(c)!==-1)return null;var d=a.exec(c);if(d==null)throw new Error("Malformed tier: "+c);return d[1]}})();return e.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_405.2.dr	String found in binary or memory: return function(f,g,h,i){var j={exports:{}};j.exports;(function(){"use strict";var a={ENDPOINT:"https://www.facebook.com/tr/",INSTAGRAM_TRIGGER_ATTRIBUTION:"https://www.instagram.com/tr/",AEM_ENDPOINT:"https://www.facebook.com/.well-known/aggregated-event-measurement/",GPS_ENDPOINT:"https://www.facebook.com/privacy_sandbox/pixel/register/trigger/",TOPICS_API_ENDPOINT:"https://www.facebook.com/privacy_sandbox/topics/registration/"};j.exports=a})();return j.exports}(a,b,c,d)}); equals www.facebook.com (Facebook)
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: this.Y.Aa&&(a.authuser=this.Y.Aa);this.Y.pageId&&(a.pageid=this.Y.pageId);isNaN(this.cryptoPeriodIndex)||(a.cpi=this.cryptoPeriodIndex.toString());var e=(e=/_(TV|STB|GAME|OTT|ATV|BDP)_/.exec(g.Bb()))?e[1]:"";e==="ATV"&&(a.cdt=e);this.G=a;this.G.session_id=d;this.oa=!0;this.B.flavor==="widevine"&&(this.G.hdr="1");this.B.flavor==="playready"&&(b=Number(JO(b.experiments,"playready_first_play_expiration")),!isNaN(b)&&b>=0&&(this.G.mfpe=""+b),this.oa=!1);b="";g.lO(this.B)?kO(this.B)?(d=c.B)&&(b="https://www.youtube.com/api/drm/fps?ek="+ equals www.youtube.com (Youtube)
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: var D2={};var Mdb={Fs:[{JB:/Unable to load player module/,weight:20},{JB:/Failed to fetch/,weight:500},{JB:/XHR API fetch failed/,weight:10},{JB:/JSON parsing failed after XHR fetch/,weight:10},{JB:/Retrying OnePlatform request/,weight:10},{JB:/CSN Missing or undefined during playback association/,weight:100}],Mr:[{callback:K7a,weight:500}]};var X7a=/[&\?]action_proxy=1/,W7a=/[&\?]token=([\w-]*)/,Y7a=/[&\?]video_id=([\w-]*)/,Z7a=/[&\?]index=([\d-]*)/,$7a=/[&\?]m_pos_ms=([\d-]*)/,b8a=/[&\?]vvt=([\w-]*)/,O7a="ca_type dt el flash u_tz u_his u_h u_w u_ah u_aw u_cd u_nplug u_nmime frm u_java bc bih biw brdim vis wgl".split(" "),a8a="www.youtube-nocookie.com youtube-nocookie.com www.youtube-nocookie.com:443 youtube.googleapis.com www.youtubeedu.com www.youtubeeducation.com video.google.com redirector.gvt1.com".split(" "),R7a={android:"ANDROID", equals www.youtube.com (Youtube)
Source: chromecache_218.2.dr, chromecache_249.2.dr, chromecache_239.2.dr, chromecache_220.2.dr, chromecache_320.2.dr, chromecache_237.2.dr	String found in binary or memory: var SB=function(a,b,c,d,e){var f=Jz("fsl",c?"nv.mwt":"mwt",0),g;g=c?Jz("fsl","nv.ids",[]):Jz("fsl","ids",[]);if(!g.length)return!0;var k=Oz(a,"gtm.formSubmit",g),m=a.action;m&&m.tagName&&(m=a.cloneNode(!1).action);N(121);if(m==="https://www.facebook.com/tr/")return N(122),!0;k["gtm.elementUrl"]=m;k["gtm.formCanceled"]=c;a.getAttribute("name")!=null&&(k["gtm.interactedFormName"]=a.getAttribute("name"));e&&(k["gtm.formSubmitElement"]=e,k["gtm.formSubmitElementText"]=e.value);if(d&&f){if(!wy(k,yy(b, equals www.facebook.com (Facebook)
Source: chromecache_343.2.dr	String found in binary or memory: var scriptUrl = 'https:\/\/www.youtube.com\/s\/player\/b0557ce3\/www-widgetapi.vflset\/www-widgetapi.js';try{var ttPolicy=window.trustedTypes.createPolicy("youtube-widget-api",{createScriptURL:function(x){return x}});scriptUrl=ttPolicy.createScriptURL(scriptUrl)}catch(e){}var YT;if(!window["YT"])YT={loading:0,loaded:0};var YTConfig;if(!window["YTConfig"])YTConfig={"host":"https://www.youtube.com"}; equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: datechf.cc
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: code.jquery.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: translate.google.com
Source: global traffic	DNS traffic detected: DNS query: www.smartsuppchat.com
Source: global traffic	DNS traffic detected: DNS query: bootstrap.smartsuppchat.com
Source: global traffic	DNS traffic detected: DNS query: www.twint.ch
Source: global traffic	DNS traffic detected: DNS query: a.nel.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: challenges.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: cdn.cookielaw.org
Source: global traffic	DNS traffic detected: DNS query: geolocation.onetrust.com
Source: global traffic	DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: snap.licdn.com
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: px.ads.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: 9818618.fls.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: ad.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: www.linkedin.com
Source: global traffic	DNS traffic detected: DNS query: adservice.google.com
Source: global traffic	DNS traffic detected: DNS query: www.youtube-nocookie.com
Source: global traffic	DNS traffic detected: DNS query: i.ytimg.com
Source: global traffic	DNS traffic detected: DNS query: www.youtube.com
Source: global traffic	DNS traffic detected: DNS query: yt3.ggpht.com
Source: global traffic	DNS traffic detected: DNS query: play.google.com

Source: unknown

HTTP traffic detected: POST /socket.io/?EIO=4&transport=polling&t=P8nf4WI&sid=xSgUJ84KMgPLXcJ2ADHj HTTP/1.1Host: datechf.ccConnection: keep-aliveContent-Length: 2sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Accept: */*Content-type: text/plain;charset=UTF-8sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Origin: https://datechf.ccSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://datechf.cc/de/receive/79469380Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: connect.sid=s%3A%23Europe39005686.Uf7vJ6guFdHYBTEo8rIEABrh5QFZPn9FJkFJWZgvk9w

Source: global traffic	HTTP traffic detected: HTTP/1.1 403 ForbiddenDate: Fri, 27 Sep 2024 04:01:45 GMTContent-Type: application/json; charset=utf-8Content-Length: 57Connection: closex-version: 8b3ca176698fc26311ade373172146d69a1a7c02Vary: Accept-EncodingAccess-Control-Allow-Origin: *Cache-Control: private, max-age=0, must-revalidateX-Hit: redis
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Fri, 27 Sep 2024 04:02:00 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: Y99CckoNAXL9mcFCpmxoQngv0rtdpOyPQPg=$bsizApDkpiJDll5PServer: cloudflareCF-RAY: 8c9898825aa843c9-EWR
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Fri, 27 Sep 2024 04:02:10 GMTContent-Type: application/jsonContent-Length: 7Connection: closecache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0cf-chl-out: wLfF0offVEKx3Fq6+P/dDzBTyTaI6nYnisM=$vHh89sbsoo1Qgj8oServer: cloudflareCF-RAY: 8c9898bf5c39c404-EWR
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Fri, 27 Sep 2024 04:02:10 GMTContent-Type: application/jsonContent-Length: 7Connection: closecf-chl-out: X8oUXB0b6H7D+TT5145BcxIaI3mWrre9jnU=$beds3qn73PKM7Djicache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Server: cloudflareCF-RAY: 8c9898bf7cacc454-EWR
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Fri, 27 Sep 2024 04:02:14 GMTContent-Type: application/jsonContent-Length: 7Connection: closecf-chl-out: TGKSqQyj7h4B+ceuE4AjU9pCyXkpeYmM3ts=$RYg7JzL5M+rU5YL8cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Server: cloudflareCF-RAY: 8c9898d82b03435d-EWR
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Fri, 27 Sep 2024 04:02:25 GMTContent-Type: application/jsonContent-Length: 7Connection: closecf-chl-out: gIMCcoHADNfdAm4Udw1ITf07EPcCjwSNICU=$Rrl8ts7ssKJ40bDXcache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Server: cloudflareCF-RAY: 8c98991dcf147280-EWRalt-svc: h3=":443"; ma=86400
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundDate: Fri, 27 Sep 2024 04:02:35 GMTContent-Type: application/jsonContent-Length: 7Connection: closecf-chl-out: vhldPlgk37Nfvpkdii+w309ER42GU1XUplg=$ia8chxqtU8ljiS4Ucache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0Server: cloudflareCF-RAY: 8c98995a0a36440c-EWR

Source: chromecache_412.2.dr, chromecache_318.2.dr, chromecache_203.2.dr, chromecache_253.2.dr	String found in binary or memory: http://tools.ietf.org/html/rfc1950
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: http://twint.ch/download-migros-bank
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: http://twint.ch/download-tkb
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: http://www.broofa.com
Source: chromecache_203.2.dr	String found in binary or memory: http://www.youtube.com/videoplayback
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: http://youtube.com/drm/2012/10/10
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: http://youtube.com/streaming/metadata/segment/102015
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: http://youtube.com/streaming/otf/durations/112015
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: http://youtube.com/yt/2012/10/10
Source: chromecache_229.2.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://ad.doubleclick.net/ddm/activity/src=14196387;type=sm-co0;cat=twint0;dc_lat=;dc_rdid=;tag_for
Source: chromecache_239.2.dr, chromecache_267.2.dr, chromecache_232.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_229.2.dr	String found in binary or memory: https://ade.googlesyndication.com
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://admin.youtube.com
Source: chromecache_229.2.dr, chromecache_237.2.dr	String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_325.2.dr	String found in binary or memory: https://aids.ch/
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://angular.dev/license
Source: chromecache_349.2.dr	String found in binary or memory: https://api.imgbb.com/1/upload
Source: chromecache_349.2.dr	String found in binary or memory: https://assets-v2.lottiefiles.com/a/b90ff028-1177-11ee-81af-97de0bdd79c1/3mdk9wAzDF.gif);position:
Source: chromecache_349.2.dr	String found in binary or memory: https://banks.twint.ch/
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://caniuse.com/url
Source: chromecache_218.2.dr, chromecache_249.2.dr, chromecache_239.2.dr, chromecache_228.2.dr, chromecache_267.2.dr, chromecache_251.2.dr, chromecache_232.2.dr, chromecache_255.2.dr, chromecache_220.2.dr, chromecache_320.2.dr, chromecache_229.2.dr, chromecache_237.2.dr	String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_333.2.dr, chromecache_275.2.dr	String found in binary or memory: https://cdn.cookielaw.org
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://cdn.cookielaw.org/consent/baf1656f-0c9f-4cd8-83fe-a5ce8d8c9eed/OtAutoBlock.js
Source: chromecache_349.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/c6763161-a85e-4d6f-9902-c9d4575334af/209d2df7-c2dd-4023-807a-b382cfc
Source: chromecache_349.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/c6763161-a85e-4d6f-9902-c9d4575334af/3c138d7e-9ef4-4168-8713-9b0f422
Source: chromecache_349.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_close.svg
Source: chromecache_349.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/ot_external_link.svg);
Source: chromecache_349.2.dr	String found in binary or memory: https://cdn.cookielaw.org/logos/static/powered_by_logo.svg
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://cdn.cookielaw.org/scripttemplates/otSDKStub.js
Source: chromecache_333.2.dr, chromecache_275.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/googleData.json
Source: chromecache_333.2.dr, chromecache_275.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/iab2Data.json
Source: chromecache_333.2.dr, chromecache_275.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/iab2V2Data.json
Source: chromecache_333.2.dr, chromecache_275.2.dr	String found in binary or memory: https://cdn.cookielaw.org/vendorlist/iabData.json
Source: chromecache_349.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/axios/1.6.8/axios.min.js
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://ch.linkedin.com/company/twint
Source: chromecache_325.2.dr	String found in binary or memory: https://chde.camaquito.org/home/
Source: chromecache_349.2.dr	String found in binary or memory: https://code.jquery.com/jquery-3.7.1.slim.min.js
Source: chromecache_407.2.dr, chromecache_405.2.dr	String found in binary or memory: https://connect.facebook.net/
Source: chromecache_407.2.dr, chromecache_405.2.dr	String found in binary or memory: https://connect.facebook.net/log/fbevents_telemetry/
Source: chromecache_325.2.dr	String found in binary or memory: https://connexio-develop.ch/
Source: chromecache_265.2.dr, chromecache_349.2.dr, chromecache_406.2.dr	String found in binary or memory: https://cookiepedia.co.uk/giving-consent-to-cookies
Source: chromecache_333.2.dr, chromecache_275.2.dr	String found in binary or memory: https://cookies-data.onetrust.io/bannersdk/v1/domaingroupcheck
Source: chromecache_325.2.dr	String found in binary or memory: https://de.alliancef.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://de.morija.org/
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/URL
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/WebSocket/send
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/WebSockets_API/Writing_WebSocket_servers#decoding_p
Source: chromecache_385.2.dr, chromecache_400.2.dr	String found in binary or memory: https://developers.google.com/youtube/iframe_api_reference#Events
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://docs.google.com/get_video_info
Source: chromecache_325.2.dr	String found in binary or memory: https://ethz-foundation.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://fastenaktion.ch/
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: https://fonts.googleapis.com
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://fonts.googleapis.com/
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
Source: chromecache_325.2.dr	String found in binary or memory: https://freethebees.ch/
Source: chromecache_333.2.dr, chromecache_275.2.dr	String found in binary or memory: https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
Source: chromecache_349.2.dr, chromecache_417.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://github.com/component/has-cors
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://github.com/galkn/parseuri
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://github.com/galkn/querystring
Source: chromecache_239.2.dr, chromecache_320.2.dr	String found in binary or memory: https://github.com/krux/postscribe/blob/master/LICENSE.
Source: chromecache_412.2.dr, chromecache_318.2.dr, chromecache_203.2.dr, chromecache_253.2.dr	String found in binary or memory: https://github.com/madler/zlib/blob/master/zlib.h
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://github.com/socketio/base64-arraybuffer
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://github.com/socketio/engine.io-client/commit/de2c561e4564efeb78f1bdb1ba39ef81b2822cb3
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://github.com/socketio/engine.io-client/commit/df32277c3f6d622eec5ed09f493cae3f3391d242
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://github.com/socketio/socket.io-client/commit/4ee1d5d94b3906a9c052b459f1a818b15f38f91c
Source: chromecache_349.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://github.com/unshiftio/yeast
Source: chromecache_320.2.dr, chromecache_237.2.dr	String found in binary or memory: https://google.com
Source: chromecache_320.2.dr, chromecache_237.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_325.2.dr	String found in binary or memory: https://grainofwheat.org/
Source: chromecache_349.2.dr	String found in binary or memory: https://i.ibb.co/dLFW7Pb/animation-gif.gif
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://i.ytimg.com/vi/
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://jnn-pa.googleapis.com
Source: chromecache_325.2.dr	String found in binary or memory: https://kirche-in-not.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://makeawish.ch/de/
Source: chromecache_325.2.dr	String found in binary or memory: https://medecinsdumonde.ch/de/
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://music.youtube.com
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://nodejs.org/api/events.html#events_event_newlistener
Source: chromecache_229.2.dr, chromecache_237.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_218.2.dr, chromecache_249.2.dr, chromecache_239.2.dr, chromecache_228.2.dr, chromecache_267.2.dr, chromecache_251.2.dr, chromecache_232.2.dr, chromecache_255.2.dr, chromecache_220.2.dr, chromecache_320.2.dr, chromecache_229.2.dr, chromecache_237.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_325.2.dr	String found in binary or memory: https://paneco.ch/
Source: chromecache_253.2.dr, chromecache_183.2.dr	String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_325.2.dr	String found in binary or memory: https://portal.twint.ch/partner/gui/?login
Source: chromecache_203.2.dr	String found in binary or memory: https://redux.js.org/api/store#subscribelistener
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://redux.js.org/tutorials/fundamentals/part-4-store#creating-a-store-with-enhancers
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://redux.js.org/tutorials/fundamentals/part-4-store#middleware
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://redux.js.org/tutorials/fundamentals/part-6-async-logic#using-the-redux-thunk-middleware
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://schema.org
Source: chromecache_349.2.dr	String found in binary or memory: https://schema.org/Question
Source: chromecache_413.2.dr	String found in binary or memory: https://schema.org/VideoObject
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://shop.twint.ch/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://shop.twint.ch/de/
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://socket.io/docs/v3/migrating-from-2-x-to-3-0/)
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://stackoverflow.com/questions/8511281/check-if-a-value-is-an-object-in-javascript
Source: chromecache_228.2.dr, chromecache_251.2.dr	String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://support.google.com/youtube/?p=missing_quality
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://support.google.com/youtube/?p=noaudio
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://support.google.com/youtube/?p=report_playback
Source: chromecache_203.2.dr	String found in binary or memory: https://support.google.com/youtube/answer/3037019#check_ad_blockers&zippy=%2Ccheck-your-extensions-i
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://support.google.com/youtube/answer/6276924
Source: chromecache_218.2.dr, chromecache_249.2.dr, chromecache_239.2.dr, chromecache_228.2.dr, chromecache_267.2.dr, chromecache_251.2.dr, chromecache_232.2.dr, chromecache_255.2.dr, chromecache_220.2.dr, chromecache_320.2.dr, chromecache_229.2.dr, chromecache_237.2.dr	String found in binary or memory: https://td.doubleclick.net
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: https://translate.google.com
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: https://translate.googleapis.com/element/log?format=json&hasfast=true
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://twitter.com/twintapp
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://viacon.corp.google.com
Source: chromecache_325.2.dr	String found in binary or memory: https://www.aha.ch/allergiezentrum-schweiz/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.alpeninitiative.ch
Source: chromecache_325.2.dr	String found in binary or memory: https://www.amnesty.ch/de
Source: chromecache_325.2.dr	String found in binary or memory: https://www.berghilfe.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.biovision.ch/home/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.buyfoodwithplastic.org/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.caritas.ch/de/startseite.html
Source: chromecache_325.2.dr	String found in binary or memory: https://www.dearfoundation.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.gfbv.ch/de/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.glueckskette.ch/
Source: chromecache_229.2.dr, chromecache_237.2.dr, chromecache_400.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.google.com/images/cleardot.gif
Source: chromecache_222.2.dr, chromecache_206.2.dr, chromecache_281.2.dr, chromecache_300.2.dr, chromecache_296.2.dr, chromecache_187.2.dr, chromecache_192.2.dr, chromecache_376.2.dr, chromecache_263.2.dr, chromecache_327.2.dr	String found in binary or memory: https://www.google.com/pagead/1p-user-list/946203707/?random
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.google.com/support/translate
Source: chromecache_320.2.dr, chromecache_229.2.dr, chromecache_237.2.dr	String found in binary or memory: https://www.googleadservices.com
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://www.googleapis.com/certificateprovisioning/v1/devicecertificates/create?key=AIzaSyB-5OLKTx2i
Source: chromecache_229.2.dr, chromecache_237.2.dr	String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_349.2.dr	String found in binary or memory: https://www.googletagmanager.com/
Source: chromecache_218.2.dr, chromecache_249.2.dr, chromecache_239.2.dr, chromecache_220.2.dr, chromecache_320.2.dr, chromecache_237.2.dr	String found in binary or memory: https://www.googletagmanager.com/a?
Source: chromecache_239.2.dr, chromecache_267.2.dr, chromecache_232.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_229.2.dr	String found in binary or memory: https://www.googletagmanager.com/dclk/ns/v1.js
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=AW-946203707
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=DC-14196387
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.googletagmanager.com/gtm.js?id=
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.googletagmanager.com/ns.html?id=GTM-MCR5GXQ
Source: chromecache_218.2.dr, chromecache_249.2.dr, chromecache_239.2.dr, chromecache_220.2.dr, chromecache_320.2.dr, chromecache_237.2.dr	String found in binary or memory: https://www.googletagmanager.com/static/service_worker/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.greenpeace.ch/de/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.qhDXWpKopYk.L.W.O/am=wA/d=0/rs=AN8
Source: chromecache_293.2.dr, chromecache_246.2.dr	String found in binary or memory: https://www.gstatic.com/cv/js/sender/v1/cast_sender.js
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
Source: chromecache_391.2.dr, chromecache_183.2.dr	String found in binary or memory: https://www.gstatic.com/images/branding/product/1x/translate_24dp.png
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://www.gstatic.com/ytlr/img/sign_in_avatar_default.png?rn=
Source: chromecache_325.2.dr	String found in binary or memory: https://www.heilsarmee.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.heks.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.helvetas.org/de/schweiz
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.instagram.com/twint_ag/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.kinderkrebs-schweiz.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.kinderkrebshilfe.ch/de
Source: chromecache_325.2.dr	String found in binary or memory: https://www.kinderschutz.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.kispi-spenden.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.krebsforschung.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.krebsliga.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.laureus.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.lunge-zuerich.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.medair.org/de/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.menschenfuermenschen.ch/
Source: chromecache_228.2.dr, chromecache_251.2.dr	String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_325.2.dr	String found in binary or memory: https://www.missio.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.omct.org/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.onetrust.com/products/cookie-consent/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.partage.ch/fr/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.plusport.ch/de/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.proinfirmis.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.promentesana.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.pronatura.ch/de
Source: chromecache_325.2.dr	String found in binary or memory: https://www.protier.ch/
Source: chromecache_315.2.dr, chromecache_242.2.dr	String found in binary or memory: https://www.rfc-editor.org/rfc/rfc3986#appendix-B
Source: chromecache_349.2.dr	String found in binary or memory: https://www.smartsuppchat.com/loader.js?
Source: chromecache_325.2.dr	String found in binary or memory: https://www.sosfuturesmamans.org/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.tiktok.com/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/#website
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/?lang=de
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/?s=
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/agb-app/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/apple-touch-icon.png
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/bank/bcv/
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/bank/credit-suisse/
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/bank/postfinance/
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/bank/raiffeisen/
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/bank/ubs/
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/bank/zkb/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/themes/twint/assets/css/frontend.css?v=1708602499
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/themes/twint/assets/css/frontend.css?ver=1727271305
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/themes/twint/assets/js/frontend.js?ver=1727271305
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/themes/twint/images/file-o.svg)
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/themes/twint/images/loader.svg)
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/themes/twint/images/twint-logo.svg
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/themes/twint/images/twint-plus.svg);
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/02/amnesty_international_logo_
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/02/app-icon-bcv-2-x
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/02/app-icon-postfinance
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/02/app-icon-raiffeisen-2-x
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/02/app-icon-ubs-2-x
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/02/app-icon-zkb-2-x
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/02/caritas_schweiz_logo_
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/03/HeilsArmee.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/04/app-icon-credit-suisse
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/06/app-icon-bcge-
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/06/app-icon-okb-
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2017/07/Zuger_KB_new.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2018/01/Appenzeller_Kantonalbank_Icon.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2018/12/Walliser_Kantonalbank_Icon.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2019/03/St_Galler_Kantonalbank_Icon.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2019/09/Einkauf-mitnehmen-150x150.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2019/09/Einkauf-mitnehmen-300x300.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2019/09/Einkauf-mitnehmen.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2019/09/Icon_Checkmarrk-150x150.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2019/09/Icon_Checkmarrk.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2019/10/GKB_App_Icon_new.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2019/12/fastenaktion_de.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/05/Helvetas_Logo_TWINT.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/06/App_Icon_BCF.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/08/App_Icon_BCJ.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/08/Smartphone-Spenden-Hand
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/09/Krebsliga_Schweiz_Logo.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/09/Medair_Logo.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/10/App_Icon_BCN.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/12/Aids-Hilfe-PNG.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/12/Berghilfe_de.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/12/FREETHEBEES-e1607356698648.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/12/Greenpeace_Logo.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/12/Logo_Glueckskette.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2020/12/heks_de.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/04/App_Icon_TKB.png
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/05/Multi-usecase-1-600x452.jpg
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/05/Valiant_App_Icon.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/05/app-icon-migros.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/05/website-donation-500x750.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/05/website-donation-800x800.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/05/website-donation.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/08/AI-Logo_WEB_320x400-Alpen-Initiative-1.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/08/BV_Logo_RGB-e1629213730794.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/08/Black-Circle.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/08/GfbV_Logo_Neutral-GfbV-Schweiz.svg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/08/Kinderkrebs-Logo-NGO.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/08/pro-infirmis-Logo-NGO-e1629350878881.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/Grain_of_Wheat_Logo-removebg-preview.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/Kispi_Logo-removebg-preview.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/Krebsforschung_Schweiz-removebg-preview.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/Logo_Dear_Fondation-removebg-preview.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/Lunge_Zuerich_Logo-removebg-preview.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/Missio_Logo_Claim_RGB-removebg-preview.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/PanEco.png
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/Versicherung_Header_800x800px-1.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/aha.png
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/grey_DE_v2
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/mfm.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/morija_de.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/partage.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/plusport.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/09/sosfuturemamanlogo.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/11/GLKB_App_Icon
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/Dontations_02_CloseU-1024x682.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/Dontations_02_CloseU-600x400.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/Dontations_02_CloseU-768x512.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/Dontations_02_CloseU.jpg
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/Headerbild_Startseite-1-1-500x750.png
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/Headerbild_Startseite-1-1.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/camaquito.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/connexio.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/kinderschutz.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/medecins_du_monde.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/omct_en.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/promentesana.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2021/12/pronatura.png
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/02/Versicherungen_Header
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/04/alliance_f.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/04/charity-bild-1200x800_2-1024x683.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/04/charity-bild-1200x800_2-600x400.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/04/charity-bild-1200x800_2-768x512.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/04/charity-bild-1200x800_2.jpg
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/04/eth_foundation_logo.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/04/kinderkrebshilfe_schweiz.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/04/laureus.png
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/04/make_a_wish_logo.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/05/App_Icon_BEKB_Schatten.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/05/App_Icon_BLKB_Schatten.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/05/App_Icon_SHKB_Schatten.png
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/05/Versicherungen_inkl_Velo
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/07/AEK_Schatten.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/08/AEK_Icon_Schatten.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/08/NKB_Icon_Schatten-002.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/08/SZKB_Logo_Schatten.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/08/Swissquote_Icon_Schatten-3.png
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/10/How-To-1-1.svg
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/10/How-To-2-1.svg
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/10/How-To-3-1.svg
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/11/Baloise_Icon_schatten.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/11/LUKB_Schatten-1.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/11/UKB_App_Schatten.png
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/12/Velo_Assistance.svg
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/12/Velo_Beschaedigung.svg
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/12/Velo_Diebstahl.svg
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/12/Velo_Icon_Boxout.svg
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/12/Veloversicherung_Header_DE-1-500x750.jpg
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/12/Veloversicherung_Header_DE-1-800x930.jpg
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2022/12/Veloversicherung_Header_DE-1.jpg
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/05/Credit-Agricole_App_Icon_schatten
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/05/yuh_App_Icon_Schatten.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/06/App_Icon_Banca-Stato_Schatten
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/06/Herunterladen.png
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/06/Home_Handy-Overlay_DE-e1686057501755.png
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/06/Versicherung_Reise.svg
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/06/Versicherung_Velo.svg
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Google-Play_Header_DE-500x750.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Google-Play_Header_DE-800x930.jpg
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Google-Play_Header_DE.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Google-Play_LP-1-100x67.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Google-Play_LP-1-1024x683.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Google-Play_LP-1-1536x1024.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Google-Play_LP-1-2048x1366.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Google-Play_LP-1-600x400.jpg
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Google-Play_LP-1-768x512.jpg
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Netflix_Header_DE-500x750.jpg
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Netflix_Header_DE-800x930.jpg
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Netflix_LP-100x67.jpg
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Netflix_LP-1024x683.jpg
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Netflix_LP-1536x1024.jpg
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Netflix_LP-2048x1366.jpg
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Netflix_LP-600x400.jpg
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/07/Digital-Goods_Netflix_LP-768x512.jpg
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/08/Tierversicherung_30x30mm_mitKreis.svg
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/08/Versicherung_Handy-1.svg
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/08/llb_App_Icon_schatten
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/09/QR-Code-2.0_Teaser-Geschaeftskunden_DE_1
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/09/radicant_App_Icon_schatten.png
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/12/Bank-Avera_App_Icon_schatten
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2023/12/VZ_App_Icon_schatten
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2024/01/Landingpage-Widget_Widget_Teaser_Rechteckig_DE-500x750.
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2024/01/MicrosoftTeams-image-69-860x570.jpg
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2024/03/App_Icon_Aplha-Rheintal_schatten
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2024/03/App_Icon_Bernerland_schatten
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2024/04/App_Icon_Bank-Thalwil_schatten
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2024/09/Donation-Campaign_Emergency
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2024/09/POS_Teaser_Rechteckig-Kopie
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/content/uploads/2024/09/Webseite_Teaser-1.png
Source: chromecache_265.2.dr, chromecache_349.2.dr, chromecache_406.2.dr	String found in binary or memory: https://www.twint.ch/datenschutz/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-aek/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-alpha-rheintal-bank
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-appkb
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-baloise/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-bancastato/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-bank-avera/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-bank-thawil
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-bcge
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-bcj
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-bcn/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-bcv/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-bekb
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-bernerland-bank/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-blkb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-ca-next-bank/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-credit-suisse
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-fkb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-gkb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-glkb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-llb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-lukb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-nkb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-okb
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-postfinance/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-radicant/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-raiffeisen/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-sgkb
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-shkb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-sq/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-szkb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-ubs/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-ukb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-valiant/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-vz/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-wkb
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-yuh/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-zkb/
Source: chromecache_413.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download-zugerkb
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/download/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/en/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/en/?lang=en
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/digital-vouchers/google-play/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/digital-vouchers/google-play/?lang=en
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/digital-vouchers/netflix/
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/digital-vouchers/netflix/?lang=en
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/donation/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/donation/?lang=en
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/insurance/
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/insurance/?lang=en
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/insurance/bicycle/
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/en/private-customers/functions/insurance/bicycle/?lang=en
Source: chromecache_268.2.dr, chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/faq-category/digitale-gutscheine/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/faq-category/spenden/
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/faq-category/versicherung/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/faq/ich-habe-meine-twint-pin-vergessen-kann-ich-tun/?audience=private_customer
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/faq/ich-oder-einer-meiner-kontakte-kann-kein-geld-mehr-empfangen-weshalb-ist-da
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/faq/kann-ich-mehrere-twint-apps-verwenden/?audience=private_customer
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/faq/welche-auflade-und-bezugslimiten-gibt-es-fuer-twint/?audience=private_custo
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/faq/wie-kann-ich-guthaben-auf-meine-twint-app-laden/?audience=private_customer
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/favicon-32x32.png
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/fr/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/fr/?lang=fr
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/assurance/
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/assurance/?lang=fr
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/assurance/velo/
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/assurance/velo/?lang=fr
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/bons-numeriques/google-play/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/bons-numeriques/google-play/?lang=fr
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/bons-numeriques/netflix/
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/bons-numeriques/netflix/?lang=fr
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/don/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/fr/clients-prives/fonctions/don/?lang=fr
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/support/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/app-shop/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/automat/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/integratoren/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/kasse/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/kundenkarten/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/onlineshop/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/qr-code-sticker/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/qr-code-sticker/#section-betrag
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/rechnung-via-twint-qr-code/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/spaeter-bezahlen/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/unsere-loesungen/zahlterminal/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/geschaeftskunden/werbemittel/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/impressum/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/it/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/it/?lang=it
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/assicurazione/
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/assicurazione/?lang=it
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/assicurazione/bicicletta/
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/assicurazione/bicicletta/?lang=it
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/buoni-digitali/google-play/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/buoni-digitali/google-play/?lang=it
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/buoni-digitali/netflix/
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/buoni-digitali/netflix/?lang=it
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/donazione/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/it/clienti-privati/funzioni/donazione/?lang=it
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/newsletter/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/bezahlen/an-der-kasse/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/bezahlen/an-der-kasse/#wettbewerb
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/bezahlen/an-der-kasse/#widget
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/bezahlen/kundenkarten/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/bezahlen/onlineshop/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/bezahlen/spaeter-bezahlen/
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/dein-twint-support/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/dein-twint-support/#section-faq
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/bargeldbezug/
Source: chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/google-play/
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/google-play/#breadcrumb
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/google-play/#primaryimage
Source: chromecache_268.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/google-play/?lang=de
Source: chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/netflix/
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/netflix/#breadcrumb
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/netflix/#primaryimage
Source: chromecache_393.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/netflix/?lang=de
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/digitale-gutscheine/paysafecard/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/geld-senden-und-anfordern/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/handy-abo-vergleich/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/kaffee-bestellen/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/mobilitaet/billettkauf/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/mobilitaet/parking/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/mobilitaet/tanken/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/spenden/
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/spenden/#breadcrumb
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/spenden/#primaryimage
Source: chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/spenden/?lang=de
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/spin-win/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/super-deals/
Source: chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/#breadcrumb
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/#faq
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/#primaryimage
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/?lang=de
Source: chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/handy/
Source: chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/haustier/
Source: chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/reise/
Source: chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/velo/
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/velo/#breadcrumb
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/velo/#primaryimage
Source: chromecache_368.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/funktionen/versicherung/velo/?lang=de
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/support/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/support/#faq
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/support/#video-tutorials
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/support/sicherheit/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/privatkunden/support/sicherheit/sicherheitstipps/#gefaelschte-briefe
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/rechtliches/
Source: chromecache_349.2.dr	String found in binary or memory: https://www.twint.ch/site.webmanifest
Source: chromecache_413.2.dr	String found in binary or memory: https://www.twint.ch/supportanfrage
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/unternehmen/arbeiten-bei-twint/
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/unternehmen/news/
Source: chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/unternehmen/ueber-uns/
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.twint.ch/unternehmen/ueber-uns/#section-fakten
Source: chromecache_385.2.dr, chromecache_343.2.dr, chromecache_400.2.dr	String found in binary or memory: https://www.youtube.com
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://www.youtube.com/api/drm/fps?ek=
Source: chromecache_268.2.dr, chromecache_393.2.dr, chromecache_413.2.dr, chromecache_368.2.dr, chromecache_349.2.dr, chromecache_325.2.dr	String found in binary or memory: https://www.youtube.com/channel/UC6Y2-XBcccmo4l_3qTKWOyg
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://www.youtube.com/generate_204?cpn=
Source: chromecache_239.2.dr, chromecache_228.2.dr, chromecache_251.2.dr, chromecache_320.2.dr	String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://youtu.be/
Source: chromecache_203.2.dr	String found in binary or memory: https://youtube.com/api/drm/fps?ek=uninitialized
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://youtubei.googleapis.com/youtubei/
Source: chromecache_412.2.dr, chromecache_203.2.dr	String found in binary or memory: https://yurt.corp.google.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50154 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 50383 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 50314 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50222 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50268 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49943 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49965
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49964
Source: unknown	Network traffic detected: HTTP traffic on port 50120 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49961
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49989 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50246 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50130 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50371 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 49887 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50403
Source: unknown	Network traffic detected: HTTP traffic on port 50119 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50402
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49951
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50405
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50407
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50401
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50178 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49955 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 50210 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 50382 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49945 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 50187 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50324 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 50335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 50209 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50407 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49957 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49887
Source: unknown	Network traffic detected: HTTP traffic on port 50336 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 50313 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 50281 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50397 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50110 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 50381 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49994
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50072 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50027 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 50013 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50337
Source: unknown	Network traffic detected: HTTP traffic on port 50036 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50215
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50336
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50386 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50174 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50139 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50116 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50210
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50212
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50333
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50214
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50105
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50060 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50100
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50223
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50101
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50222
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50104
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50224
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50025 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49964 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50363 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50116
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50113
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50112
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50233
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50356
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 50127 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50006
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50009
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50008
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49672
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50241
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50240
Source: unknown	Network traffic detected: HTTP traffic on port 50150 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50243
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 50393 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50363
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50245
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50002
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 50224 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50004
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50246
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50371
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49941 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50082 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50306 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50105 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49997 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50129 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50184 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49965 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49977 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 50117 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 50035 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 50278 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50309
Source: unknown	Network traffic detected: HTTP traffic on port 50152 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50373 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50212 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 50384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 50256 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50092 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50200 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50313
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50163 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50204
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50206
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50209
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49931 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50200
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50203
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50324
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50175
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50174
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50298
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50178
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 49961 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50022 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50184
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50366 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50125 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50389 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50251 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49950 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49996 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50010 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50185
Source: unknown	Network traffic detected: HTTP traffic on port 50091 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50113 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50187
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50190
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 50159 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50195
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50204 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50195 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50009 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50034 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50388 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50275 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50197
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50199
Source: unknown	Network traffic detected: HTTP traffic on port 50332 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50297 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50079 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50354 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50090
Source: unknown	Network traffic detected: HTTP traffic on port 50241 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50092
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50091
Source: unknown	Network traffic detected: HTTP traffic on port 49938 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50023 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50365 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50139
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50138
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49951 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50010
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50131
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50373
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50130
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50251
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50372
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50012
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50375
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50011
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50014
Source: unknown	Network traffic detected: HTTP traffic on port 50090 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50256
Source: unknown	Network traffic detected: HTTP traffic on port 50376 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50013
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50376
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50137
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50379
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50257
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50261
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50382
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50260
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50381
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50215 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50029
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50028
Source: unknown	Network traffic detected: HTTP traffic on port 50387 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50299 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50021
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50384
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50020
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50262
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50383
Source: unknown	Network traffic detected: HTTP traffic on port 50391 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50023
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50386
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50022
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50025
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50146
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50267
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50388
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50024
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50145
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50387
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50027
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50269

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49744 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49754 version: TLS 1.2

System Summary

Source: classification engine

Classification label: mal60.phis.win@38/398@114/42

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=1856,i,1715639760046732038,11749315745599090564,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://datechf.cc/de/receive/79469380"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6520 --field-trial-handle=1856,i,1715639760046732038,11749315745599090564,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4912 --field-trial-handle=1856,i,1715639760046732038,11749315745599090564,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2116 --field-trial-handle=1856,i,1715639760046732038,11749315745599090564,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6520 --field-trial-handle=1856,i,1715639760046732038,11749315745599090564,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4912 --field-trial-handle=1856,i,1715639760046732038,11749315745599090564,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8			Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown			Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected