Windows Analysis Report
https://www.wbtd.com/

Overview

General Information

Sample URL:	https://www.wbtd.com/
Analysis ID:	1525654
Tags:	urlscan
Infos:

Detection

Score:	48
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus detection for URL or domain

Connects to several IPs in different countries

HTML page contains hidden javascript code

HTML page contains string obfuscation

Classification

Signatures

AV Detection

Antivirus detection for URL or domain

Source: http://google.com

URL Reputation: Label: malware

HTML page contains hidden javascript code

Source: https://www.haoqq.com

HTTP Parser: Base64 decoded: [null,null,null,3]

HTML page contains string obfuscation

Source: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.html

HTTP Parser: Found new string: script (function() {var u = 'https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-BmwgLlXvLBDhkYHic6fuX49VdJ25tE_0myFee4RzIpazsSanc2sDjik01ZLPn36OhmSEWoGfGPz5SXZjf1xOgwqRv4oSvkenGiaEs91mTI-JWahTZGmKo_5Nu3puY7PuQQfNWMus2BDvFwBJs_XsqYHj3OkKx8mqSukz_RaZMUZM3fKt9xy2PP_tIheV93WR_VSb5wAOnhQbaycBDCbSlTgOR-esdxTnOh5-5Xx3mbVhao-kg&cry=1&dbm_d=AKAmf-Ctkfiisw4sUKcjWsLWg6bu1FonrD_Mrehk92SJHpzkPzXReqaMsEEEjWicDM03Zn_2Wf9BGLrKSJASO3hhy6pt7YFa5IQULRtat2VuW0hhBPMqk5NcbqW9y5kQCNZrDbSDVSB7OB35RuZUMf6LC3qM9xmJTV8Fuq_TEdx-19AENel1TSyxkg1glhQBMV89eX202AQar3P63zQt2Km56Zb24BgJSNEgKIQJnBNlQWCl1xtQTM0LWhgK0Ljkcjykqj-7P0UZ5tQPPeyh8ZfEY-QZQrpXAsljhHHemCDsvKSyVJLTj1LhSr8kBGfsE4uqWGL8T5eMjmL_ISvFHy0iuhuHON-8q9qBDvu3RxwngqWA_THWQN8Mx2SWx42vTnBAQKX1OSIRSC4rSycMXmkmEQGcd8rU_HWFGsBtaTzG__G8vDFhVOR1auBW31T7Ozkexq2V83hBFUf06JksnSITmSPWt9EIs_aPFXwvkirKukZw3B8s57wqYYSbvxlV3m6z7Venw8J2MbYCwoySSQihoQ2TG11k8WADxGUcWVpZHRD0ig78UvZmEGbREYz_CEimdL8OafEikmJprO1FD6Wq8FNAe8-7sIw7PFyZrGallNX2gPNqvGWAnowVOQ1-j-c17-X2yPX2ZMQDXdueKDbcXd309WBwLZxX6oBI28u0i6o9_2Q0Z...

Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://s0.2mdn.net	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.6:49768 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50066 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50325 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50325 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.6:50355 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50394 version: TLS 1.2

Connects to several IPs in different countries

Source: unknown

Network traffic detected: IP country count 10

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.wbtd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/plugins.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/styles.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/jquery.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/haoqq.gif HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/magento.svg HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/prestashop.png HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/wordpress.svg HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/shopify.svg HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/haoqq.gif HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/magento.svg HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/prestashop.png HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/jquery.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/css2.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/pages/assets/css/styles.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/wordpress.svg HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/css.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/pages/assets/css/styles.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/shopify.svg HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/css1.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/pages/assets/css/styles.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/popper.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/bootstrap.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/select2.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/fonts/92zatBhPNqw73oTd4g.woff2 HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.haoqq.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.haoqq.com/pages/assets/css/css2.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/owl.carousel.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/ion.rangeSlider.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=soKWxluS4tuRGfA&MD=yw2KXhkV HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/counterup.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/popper.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/custom.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/fonts/themify.woff HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.haoqq.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.haoqq.com/pages/assets/css/plugins.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/owl.carousel.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/bootstrap.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/fonts/7Auwp_0qiz-afTLGLQ.woff2 HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.haoqq.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.haoqq.com/pages/assets/css/css1.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/select2.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/ion.rangeSlider.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/counterup.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/custom.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/html/r20241001/r20190131/zrt_lookup_fy2021.html HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&adk=1812271804&adf=1573534164&abgtt=6&lmt=1728042057&plat=3%3A16%2C4%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.haoqq.com%2F&pra=5&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aicel=33&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&aiict=1&aipecl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055414&bpp=29&bdt=9079&idt=1807&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&nras=1&correlator=5260686608363&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=1859 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&slotname=5424108534&adk=3166978744&adf=3025194257&pi=t.ma~as.5424108534&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055443&bpp=2&bdt=9108&idt=1840&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0&nras=1&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=0&ady=3136&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&btvi=1&fsb=1&dtd=1846 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=884246868&pi=t.aa~a.3958040794~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055445&bpp=1&bdt=9109&idt=1853&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0%2C1200x280&nras=2&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=89&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1856 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/image/loader.gif HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/pages/assets/css/styles.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CDNeaS9T_ZpnWAa2dvPIP7626gAyM7O2yerX2tr76ErCQHxABIOfA1G1gyQagAZu5y5wDyAEJqAMByAPLBKoEzgFP0Muz49MN5LepIXnNX2sWNLxMALjBFfUbB0OZ2Y0CJtCvkfyDGTTHkvgwdHFxHOZPYjHlSnAkfjxVHg7khwWwbSF-mOD2pnLEQM0aRU-cye1QN1svxQfKt4w1qmK1C6_lgsJpSig58jbAj5r_X7Xa2RcNQkg64BuGTdiTL6Ze5Zc8uCeSGxuJNBBw3Mos-MSRXrVt2jk195dptrpa4u92Fh3hUoYfOGkZLPzpSB6kEGmMZPHIo9hsmqYNijUzO_i8hzKhl_YCoGzyT_FAcMAE78rGuP0EiAX82IfGBaAGLoAHzca0Y6gH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB_fCsQLYBwDyBwQQmMgH0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYicHTqNL0iAOaCXtodHRwczovL3d3dy5tYXJxdWlzYXB0cy5jb20vP2xmX3NvdXJjZT0xMjM1JnV0bV9jYW1wYWlnbj0xNDg5MTAzOTk2JnV0bV9zb3VyY2U9Z29vZ2xlJnV0bV9tZWRpdW09Y3BjJnV0bV90ZXJtPSZnYWRfc291cmNlPTWACgHICwHaDBAKChDQ1e2A6umXvDkSAgED2BMD0BUBgBcBshceChoIABIUcHViLTE2NzMzOTkxNjA3MTA3MTgYABgBuhcCOAGyGAkSApNOGC4iAQDQGAE&sigh=G4BK4_YU2lA&uach_m=%5BUACH%5D&ase=2&cid=CAQSTwDpaXnfveAUNmBW3DIP4C91nkml_SMN3Hg2AHSGSs7Ftop1asYQtYb9NO9VmWgne4QnS7GY0ln__zk75HuRrRfdwuTWEC3iNDnMml_kF4EYAQ&template_id=5000&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: not-navigation-source, trigger, event-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=884246868&pi=t.aa~a.3958040794~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055445&bpp=1&bdt=9109&idt=1853&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0%2C1200x280&nras=2&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=89&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1856Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=280&adk=1905944345&adf=1676256590&pi=t.aa~a.3301965335~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=2&bdt=13042&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280&nras=3&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=1549&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=4&uci=a!4&btvi=2&fsb=1&dtd=2024 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXZNRBPFFhGTePxR6V1Vq40hv67Cvsin5qeuZSjDBD85mlwe1HI4SQhunsqyCln6wwKPWmIyE2bvL_R5249nJ3PvBa1tvqv_dr8hSthcXDsPiuhzU3msSPWN6duzO7QXBomMmBGiA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDYxLDM5NDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tLyIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=280&adk=1905944345&adf=1676256590&pi=t.aa~a.1089130404~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=1&bdt=13042&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280&nras=4&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=1259&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=5&uci=a!5&btvi=3&fsb=1&dtd=2042 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=3371909064&adf=397776184&pi=t.aa~a.1089127196~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=2&bdt=13043&idt=2&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280%2C1200x280&nras=5&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=3625&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=7&uci=a!7&btvi=4&fsb=1&dtd=2062 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/image/loader.gif HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=2063629977&pi=t.aa~a.1836389361~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042064&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059375&bpp=1&bdt=13039&idt=1&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280%2C1200x280%2C1200x90%2C1263x907%2C468x60&nras=8&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=3475&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=6&uci=a!6&btvi=6&fsb=1&dtd=4876 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxUppim6GlhNn98Sy4cq18snKjQ7Zb0LLow_-Ky3kt084XagRObmnO6ruMYJouPgI6-o6iQUp0I2TbjrqAfTZo2XNrPYi2-cTiCIY9lCNM8wdPHyKV4jdfL3QLadzLsUWTOxmRuv2w==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDYyLDc0MDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuLUdCIl0sImh0dHBzOi8vd3d3Lmhhb3FxLmNvbS8iLG51bGwsW1s4LCJlc2tXWFNGSHNRZyJdLFs5LCJlbi1VUyJdLFsxOCwiW1tbMF1dXSJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app/win?id=920622745182&ap=Zv_USgAPJr4ITwp0ACc964yYG2BsjvfLazwgjA&brid=1-EKQ74uci3ZpK6g_GPVxw&t=b HTTP/1.1Host: 8proof.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /xbbe/pixel?d=CLbFxQEQq9bcARio-uKYAjAB&v=APEucNWPqLPCeuK9miqpQiuXE3w1U1FpIl8GWlrvRuOX_pUYIBo069Thk7kxKuAxAOYnXOz_r-3C-2nGyozMuaheFJuIT7y3BVT71_CsqAMJMJ9MwPZjQG0 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=3371909064&adf=397776184&pi=t.aa~a.1089127196~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=2&bdt=13043&idt=2&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280%2C1200x280&nras=5&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=3625&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=7&uci=a!7&btvi=4&fsb=1&dtd=2062Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CmacBStT_Zr7NPPSUvPIP6_ucmQm-vcfmYdeIqO67DcCNtwEQASAAYMkGggEXY2EtcHViLTE2NzMzOTkxNjA3MTA3MTjIAQmoAwHIAwKqBMIBT9D06km8FS4J7JT2ZSJ7nsBXDLMjgaS_vobYRCDTEuxYRJpSGuVWBjQv-7xIATyrcVeji8OYABqqTSJqZtpZLYgKvSmkmx-Qu_lumE-wvy5IDGWHkQJjbdnFAbg5FcBCyL7V9EAB-wT9For-ayhyljKQx8bdTqvMJDz88CXlmBUEoWuoIrazM6RfEhzvU6MPdKqni6PSj-7JQxG5YokJtHWIh7IeSO6yG7K09oYcQ-5Ukwy2DqIF8_4hdHYde5gJ_6eABqehs8-1-siQMKAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYxKnRqNL0iAOACgH6CwIIAYAMAdAVAYAXAbIXHAoYEhRwdWItMTY3MzM5OTE2MDcxMDcxOBgAGAw&sigh=j6kRbNrdK5I&uach_m=%5BUACH%5D&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8BgB HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssANYIaq92euECwoJBoaf_mr5m-WCHhq0GSDEfjngwhwWVrab6AspGuYTxR3PHCwn27MtROBt_BM6cXqHKRuo1oZ_CYCSK2IcoiQ2ASf2dB6ysTNiiHFnSkwvzrCYYKr-_4GoIX_Qd0wgM-9b_BViOs6mRYW_FAMzgL-2FbCj-4VKzzvqhtHn2DXKmmTKLPEVuNGyEUoESvMrJNMJg_Ts4rePjN5sAbx-M9YFMMKuHWW8Am4y4gRXwonQqMclf4u9NRTtjnc-Bzx_n9Vp6mpgg7T6lyvkp7cIPy73pcq4c6VLWjLX9k6c2EzN9U35yZzallIoSVEh8cM4iNNA7FpeIcPwrUT8HA8fWy1UkAj_Grxg6VJRFswjFZY11l-f3aOhRHOqnx9lNmFrbXt_wUbULSWxuUMlkcP8Z0JiKZ0RsKVKbR4rZsFY_kgswW_T1MpaF7QeB_ucHs3NU7hNJ41C4eHmnwOw9Gd31miU76S1sAUId2RnmRCWN1ECVtgn8WLlFE1L8HgxpJzkFZexXRy8BGoVPh2I6z4swT6TAzP_ZOkuzan7Vuq8EDZKDrRSij2o0q8MEzv6zoFhQUYfeoqNefqzyg2bFqrZUS2RdOICTzz7Rvq1_9ZlXZilNEFA5djowi5fpoZnGQFLj8w2ac62f1tHZ614V_H5CtItmOeMr728RcZXwtkb9PlWx5cVBopcB-3IYm1bvN--XnAe44FCG3iSktsGPJRtJHBEx9OI76cdP1ygTA26oxpulY7bcTLv5J8ewkrcUC6EgK7rlW0ou3xNjt89HbulEoW5_SbY6yMYyuStW8kMs-doSSOVSdxxaLoYP8N61OMmS2SNFEPXZq_L7DZNUNdZr9tnRGlgNURksTvFC-Sy4vFibw_tr1nQNT6B2ie1vbAcAy0D08IaJqmvGygGVN4scO9V5AJOVX9IpoYfSe8dwP9gmmBt_9nb3pViRIyvdjKsA6FJk0Ap8endytum64zXQkcgJpMz6FphRHEIuHEl9yDbhloOMMN3b1MIgsbpMUjU39MpjHZLdvIit1uVmTEGhLVqoEWubTYRTfBHTskXC3lBa1GJYtx2R8mSkFdsU7SaFqmy7EYzlsZ81AKqXiU1VSUYcrZAEj_bqMKdtvhhc4tuwecLV8Eun_7JcMIpGHH3JSYuM1e6VAwqCqFqbI5ysGTW4EgPpEuGHTKwNo0ERSdOLTjqTZhsf8vRpXuaQH7A0vQ9MXL_ky2ZKQiMUtusv-UYG4lVVPSExE-Kne1rONhCG91pwbKEbqPG-k759yZoPcKPwTIKKbU9cZvk7m6dktmewAZty_L4_OFl1zw7WBz04R_b-gWCJ56c42CjuDP-lta9AbrIdnpKLqgnA4ZxepWkv4ML0cDEJlMbdNK3U4plrb4gnVUh0t&sai=AMfl-YRhaXmOTGQX9jQ4eWDM3MRSUnJPzRrJlkxrjo7MHsTBZDkO_17mCp5R8g2-N5lapcVMmSECjG3C5NbL2hzW7hTUJfW5FBvEjdgM3onfWjLzdCjtxO_UqCF_Cw77hoQgzTspuLUrpf0G1Ndr43qP0YKFcdH_hS-lB6y6eFYpDi5FsnPYQqDHuiuzjpyf2Dl_P35V2cvHBxE5-tAsz5bLcGwPVGLnOqNLdG2zKHWLTA_lcBs4ocpdyqoXnaRueqFOZgrYbamSkRtHPP_pAtxhV-0EDySTvmdhtDhI9MM0Ck2kK56xLAYfvYKPwSYUWjcpiCh3930fWQn19iBspug4sZn-NX7hVPAT9ym--dXiRc4irWCxoGzHrLS9L1lY-OkCKeiSwBv67xYwRtvNip2uO0QiUW-cIexwSDpC&sig=Cg0ArKJSzCIx7rquL3v-EAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=0&cisv=r20241001.82346&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: not-trigger, not-navigation-source, event-sourceReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /usersync/googleadx/?google_gid=CAESEAvzusCYvKmt2gkuBquT8pc&google_cver=1&google_push=AXcoOmTwIyt4e4yXQx9lN73aYgUXRi5oVuQcAQV3YKf4X10ZMqCKM9DTgjo4doK24yKl6PsWS6AMAM38_9Ull1QIWkEQqJOHk-6yrw HTTP/1.1Host: b1sync.zemanta.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmQSzC5C28pLStKXw6cnCDgYtDmb02nZs8CRLDZNTHqqdUV3nd42z4t072GipsN10sg314x9S-mLGUsd1gJTxb-zNADAAWLa&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: dis.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /match/47/?remote_uid=CAESEGoQnRhkVqcuY7XSc-z5Mtc&c_param1=AXcoOmQDJHHlzqr4eH5ZupQ5A7svWZ67X9fEHbwsf9SwO2hQCYAZ9sh6oKH6jmYabyCKENfazFNMv_g7QlZw4fo8ZdbJprpovR1h&gdpr=%%GDPR%%&addtl_consent=%%ADDTL_CONSENT%%&google_cver=1 HTTP/1.1Host: s.uuidksinc.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /r/cs?pid=3&google_gid=CAESEE-2hABbNlvCQmyOE9XNGr8&google_cver=1&google_push=AXcoOmQovd5f9-nww3m33jllHguDkNcr67y1MfGmJWvpYovBsHf2nNgx76pivAVE-PdlwLWRl53ng4jRHpGT4NCpY_NAJ_38phXupw HTTP/1.1Host: ad.turn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=casale_media2_dsp_secure&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /rrum?ixi=0&cm_dsp_id=85&gdpr=0&cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dsp_secure%26google_cm%26google_hm%3D HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=appnexus&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13JACtVvlHwGv1kKZ8F7RBS0xG_qaVY5s6m2wTjamPBJObAKRt9MedOCqlvszxZ7x7huRaf7 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQ-ZUcu7T0mvdhQ_JTm4iH4HTpbfmsP-NJ6mkTEfjYqWQ4FE3cjWLEaR7h6-LaIOaQflmL_KBIh1OpmrGXlUjRVzpYA8g HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /simgad/7138348558614381586 HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sync/adx?google_gid=CAESEJyXJmH3Ccek7-QgafqrVj8&google_cver=1&google_push=AXcoOmRrukcpI3h6PezLMMUoYE8A5_O1p1n0cxhpK3ZcX1ogniTVasABBgXrEaQKZmmV6BZxNBsBtZhRkKJl4vIpcjkYcyDayZgmTA HTTP/1.1Host: pr-bh.ybp.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /usersync/googleadx/?google_cver=1&google_gid=CAESEAvzusCYvKmt2gkuBquT8pc&google_push=AXcoOmTwIyt4e4yXQx9lN73aYgUXRi5oVuQcAQV3YKf4X10ZMqCKM9DTgjo4doK24yKl6PsWS6AMAM38_9Ull1QIWkEQqJOHk-6yrw&s=2 HTTP/1.1Host: b1sync.zemanta.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: zuid=4s7FapyoS-IWC5mSxvJw
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVH38ovtr9fgT8GOp4INOEd4n59XjgUwhiPYlCSyO7JSEmY6NN_96J1Ljm1M6KeUUvehDGZqHWFTnc6VmLThMAKsiqCqiaJJqEw_4cGqP_lYvCDpic4JgYonekz98kntYU4DeiNw6xrDZStRlIb0Jaqk2VS7MI_TgwbyXmfRUbs4V0M3yEkQ4YGQESz/_/ade/baloo.php/ad/index_/ads_ifr./adswidejs./tg.php?uid= HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /getuid?https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=${BASE64_UID_ENC} HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXZNRBPFFhGTePxR6V1Vq40hv67Cvsin5qeuZSjDBD85mlwe1HI4SQhunsqyCln6wwKPWmIyE2bvL_R5249nJ3PvBa1tvqv_dr8hSthcXDsPiuhzU3msSPWN6duzO7QXBomMmBGiA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDYxLDM5NDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tLyIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1&gdpr=0 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rrum?cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dsp_secure%26google_cm%26google_hm%3D&cm_dsp_id=85&gdpr=0&ixi=0&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UUtHM6u0AADLRAE9ESQAA; CMPS=3875; CMPRO=3875
Source: global traffic	HTTP traffic detected: GET /app/win?id=920622745182&ap=Zv_USgAPJr4ITwp0ACc964yYG2BsjvfLazwgjA&brid=1-EKQ74uci3ZpK6g_GPVxw&t=b HTTP/1.1Host: 8proof.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=turn1&google_cm&google_sc&google_hm=MzQxODA4ODg1NjE3MDcwNjc1Mg==&gdpr=&gdpr_consent=&process_consent=T HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=kadam&google_push=AXcoOmQDJHHlzqr4eH5ZupQ5A7svWZ67X9fEHbwsf9SwO2hQCYAZ9sh6oKH6jmYabyCKENfazFNMv_g7QlZw4fo8ZdbJprpovR1h HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmQSzC5C28pLStKXw6cnCDgYtDmb02nZs8CRLDZNTHqqdUV3nd42z4t072GipsN10sg314x9S-mLGUsd1gJTxb-zNADAAWLa&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dappnexus%26google_hm%3D%24%7BBASE64_UID_ENC%7D HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XANDR_PANID=nyn1WojFzMuWa1dDQZWnn90XtrdhhLATJ2htgUEpxlQhzOd11smQaZibcfYXKnvSl14h528x1j5XOWRrjA4lJrjzKg5ypMleIjqdgVhMR2Q.; receive-cookie-deprecation=1; uuid2=7058645915368902725
Source: global traffic	HTTP traffic detected: GET /setuid?entity=101&gdpr=0&code=CAESEDP2bThm3Z2ZMBLJNUoTxTs&google_cver=1 HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XANDR_PANID=nyn1WojFzMuWa1dDQZWnn90XtrdhhLATJ2htgUEpxlQhzOd11smQaZibcfYXKnvSl14h528x1j5XOWRrjA4lJrjzKg5ypMleIjqdgVhMR2Q.; receive-cookie-deprecation=1; uuid2=7058645915368902725
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zemanta&google_push=AXcoOmTwIyt4e4yXQx9lN73aYgUXRi5oVuQcAQV3YKf4X10ZMqCKM9DTgjo4doK24yKl6PsWS6AMAM38_9Ull1QIWkEQqJOHk-6yrw&google_hm=NHM3RmFweW9TLUlXQzVtU3h2Snc= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=yahoo&google_push=AXcoOmRrukcpI3h6PezLMMUoYE8A5_O1p1n0cxhpK3ZcX1ogniTVasABBgXrEaQKZmmV6BZxNBsBtZhRkKJl4vIpcjkYcyDayZgmTA&google_hm=eS1GWHlJb3hsRTJwSGdGMHQyUG4yNXI4SFc1NHV1WjliQn5B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssANYIaq92euECwoJBoaf_mr5m-WCHhq0GSDEfjngwhwWVrab6AspGuYTxR3PHCwn27MtROBt_BM6cXqHKRuo1oZ_CYCSK2IcoiQ2ASf2dB6ysTNiiHFnSkwvzrCYYKr-_4GoIX_Qd0wgM-9b_BViOs6mRYW_FAMzgL-2FbCj-4VKzzvqhtHn2DXKmmTKLPEVuNGyEUoESvMrJNMJg_Ts4rePjN5sAbx-M9YFMMKuHWW8Am4y4gRXwonQqMclf4u9NRTtjnc-Bzx_n9Vp6mpgg7T6lyvkp7cIPy73pcq4c6VLWjLX9k6c2EzN9U35yZzallIoSVEh8cM4iNNA7FpeIcPwrUT8HA8fWy1UkAj_Grxg6VJRFswjFZY11l-f3aOhRHOqnx9lNmFrbXt_wUbULSWxuUMlkcP8Z0JiKZ0RsKVKbR4rZsFY_kgswW_T1MpaF7QeB_ucHs3NU7hNJ41C4eHmnwOw9Gd31miU76S1sAUId2RnmRCWN1ECVtgn8WLlFE1L8HgxpJzkFZexXRy8BGoVPh2I6z4swT6TAzP_ZOkuzan7Vuq8EDZKDrRSij2o0q8MEzv6zoFhQUYfeoqNefqzyg2bFqrZUS2RdOICTzz7Rvq1_9ZlXZilNEFA5djowi5fpoZnGQFLj8w2ac62f1tHZ614V_H5CtItmOeMr728RcZXwtkb9PlWx5cVBopcB-3IYm1bvN--XnAe44FCG3iSktsGPJRtJHBEx9OI76cdP1ygTA26oxpulY7bcTLv5J8ewkrcUC6EgK7rlW0ou3xNjt89HbulEoW5_SbY6yMYyuStW8kMs-doSSOVSdxxaLoYP8N61OMmS2SNFEPXZq_L7DZNUNdZr9tnRGlgNURksTvFC-Sy4vFibw_tr1nQNT6B2ie1vbAcAy0D08IaJqmvGygGVN4scO9V5AJOVX9IpoYfSe8dwP9gmmBt_9nb3pViRIyvdjKsA6FJk0Ap8endytum64zXQkcgJpMz6FphRHEIuHEl9yDbhloOMMN3b1MIgsbpMUjU39MpjHZLdvIit1uVmTEGhLVqoEWubTYRTfBHTskXC3lBa1GJYtx2R8mSkFdsU7SaFqmy7EYzlsZ81AKqXiU1VSUYcrZAEj_bqMKdtvhhc4tuwecLV8Eun_7JcMIpGHH3JSYuM1e6VAwqCqFqbI5ysGTW4EgPpEuGHTKwNo0ERSdOLTjqTZhsf8vRpXuaQH7A0vQ9MXL_ky2ZKQiMUtusv-UYG4lVVPSExE-Kne1rONhCG91pwbKEbqPG-k759yZoPcKPwTIKKbU9cZvk7m6dktmewAZty_L4_OFl1zw7WBz04R_b-gWCJ56c42CjuDP-lta9AbrIdnpKLqgnA4ZxepWkv4ML0cDEJlMbdNK3U4plrb4gnVUh0t&sai=AMfl-YRhaXmOTGQX9jQ4eWDM3MRSUnJPzRrJlkxrjo7MHsTBZDkO_17mCp5R8g2-N5lapcVMmSECjG3C5NbL2hzW7hTUJfW5FBvEjdgM3onfWjLzdCjtxO_UqCF_Cw77hoQgzTspuLUrpf0G1Ndr43qP0YKFcdH_hS-lB6y6eFYpDi5FsnPYQqDHuiuzjpyf2Dl_P35V2cvHBxE5-tAsz5bLcGwPVGLnOqNLdG2zKHWLTA_lcBs4ocpdyqoXnaRueqFOZgrYbamSkRtHPP_pAtxhV-0EDySTvmdhtDhI9MM0Ck2kK56xLAYfvYKPwSYUWjcpiCh3930fWQn19iBspug4sZn-NX7hVPAT9ym--dXiRc4irWCxoGzHrLS9L1lY-OkCKeiSwBv67xYwRtvNip2uO0QiUW-cIexwSDpC&sig=Cg0ArKJSzCIx7rquL3v-EAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=0&cisv=r20241001.82346&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssANYIaq92euECwoJBoaf_mr5m-WCHhq0GSDEfjngwhwWVrab6AspGuYTxR3PHCwn27MtROBt_BM6cXqHKRuo1oZ_CYCSK2IcoiQ2ASf2dB6ysTNiiHFnSkwvzrCYYKr-_4GoIX_Qd0wgM-9b_BViOs6mRYW_FAMzgL-2FbCj-4VKzzvqhtHn2DXKmmTKLPEVuNGyEUoESvMrJNMJg_Ts4rePjN5sAbx-M9YFMMKuHWW8Am4y4gRXwonQqMclf4u9NRTtjnc-Bzx_n9Vp6mpgg7T6lyvkp7cIPy73pcq4c6VLWjLX9k6c2EzN9U35yZzallIoSVEh8cM4iNNA7FpeIcPwrUT8HA8fWy1UkAj_Grxg6VJRFswjFZY11l-f3aOhRHOqnx9lNmFrbXt_wUbULSWxuUMlkcP8Z0JiKZ0RsKVKbR4rZsFY_kgswW_T1MpaF7QeB_ucHs3NU7hNJ41C4eHmnwOw9Gd31miU76S1sAUId2RnmRCWN1ECVtgn8WLlFE1L8HgxpJzkFZexXRy8BGoVPh2I6z4swT6TAzP_ZOkuzan7Vuq8EDZKDrRSij2o0q8MEzv6zoFhQUYfeoqNefqzyg2bFqrZUS2RdOICTzz7Rvq1_9ZlXZilNEFA5djowi5fpoZnGQFLj8w2ac62f1tHZ614V_H5CtItmOeMr728RcZXwtkb9PlWx5cVBopcB-3IYm1bvN--XnAe44FCG3iSktsGPJRtJHBEx9OI76cdP1ygTA26oxpulY7bcTLv5J8ewkrcUC6EgK7rlW0ou3xNjt89HbulEoW5_SbY6yMYyuStW8kMs-doSSOVSdxxaLoYP8N61OMmS2SNFEPXZq_L7DZNUNdZr9tnRGlgNURksTvFC-Sy4vFibw_tr1nQNT6B2ie1vbAcAy0D08IaJqmvGygGVN4scO9V5AJOVX9IpoYfSe8dwP9gmmBt_9nb3pViRIyvdjKsA6FJk0Ap8endytum64zXQkcgJpMz6FphRHEIuHEl9yDbhloOMMN3b1MIgsbpMUjU39MpjHZLdvIit1uVmTEGhLVqoEWubTYRTfBHTskXC3lBa1GJYtx2R8mSkFdsU7SaFqmy7EYzlsZ81AKqXiU1VSUYcrZAEj_bqMKdtvhhc4tuwecLV8Eun_7JcMIpGHH3JSYuM1e6VAwqCqFqbI5ysGTW4EgPpEuGHTKwNo0ERSdOLTjqTZhsf8vRpXuaQH7A0vQ9MXL_ky2ZKQiMUtusv-UYG4lVVPSExE-Kne1rONhCG91pwbKEbqPG-k759yZoPcKPwTIKKbU9cZvk7m6dktmewAZty_L4_OFl1zw7WBz04R_b-gWCJ56c42CjuDP-lta9AbrIdnpKLqgnA4ZxepWkv4ML0cDEJlMbdNK3U4plrb4gnVUh0t&sai=AMfl-YRhaXmOTGQX9jQ4eWDM3MRSUnJPzRrJlkxrjo7MHsTBZDkO_17mCp5R8g2-N5lapcVMmSECjG3C5NbL2hzW7hTUJfW5FBvEjdgM3onfWjLzdCjtxO_UqCF_Cw77hoQgzTspuLUrpf0G1Ndr43qP0YKFcdH_hS-lB6y6eFYpDi5FsnPYQqDHuiuzjpyf2Dl_P35V2cvHBxE5-tAsz5bLcGwPVGLnOqNLdG2zKHWLTA_lcBs4ocpdyqoXnaRueqFOZgrYbamSkRtHPP_pAtxhV-0EDySTvmdhtDhI9MM0Ck2kK56xLAYfvYKPwSYUWjcpiCh3930fWQn19iBspug4sZn-NX7hVPAT9ym--dXiRc4irWCxoGzHrLS9L1lY-OkCKeiSwBv67xYwRtvNip2uO0QiUW-cIexwSDpC&sig=Cg0ArKJSzCIx7rquL3v-EAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=2486&vt=11&dtpt=2484&dett=2&cstd=0&cisv=r20241001.82346&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, not-trigger, not-navigation-sourceReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie:
Source: global traffic	HTTP traffic detected: GET /pixel?google_hm=b3VnRks2a2lCV3lPZnlKYlU5VF9aZw%3D%3D&google_nid=appier&google_push=AXcoOmSotlzXlITazuWCK3xBXY5xuChDBGEGIjGTS0t6K3S2l6WFtyeTYa2rAqT0_BU3OMnNoZndHNO1ql6rTBknJSdrWerSLKKqMQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxUppim6GlhNn98Sy4cq18snKjQ7Zb0LLow_-Ky3kt084XagRObmnO6ruMYJouPgI6-o6iQUp0I2TbjrqAfTZo2XNrPYi2-cTiCIY9lCNM8wdPHyKV4jdfL3QLadzLsUWTOxmRuv2w==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDYyLDc0MDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuLUdCIl0sImh0dHBzOi8vd3d3Lmhhb3FxLmNvbS8iLG51bGwsW1s4LCJlc2tXWFNGSHNRZyJdLFs5LCJlbi1VUyJdLFsxOCwiW1tbMF1dXSJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CmacBStT_Zr7NPPSUvPIP6_ucmQm-vcfmYdeIqO67DcCNtwEQASAAYMkGggEXY2EtcHViLTE2NzMzOTkxNjA3MTA3MTjIAQmoAwHIAwKqBMIBT9D06km8FS4J7JT2ZSJ7nsBXDLMjgaS_vobYRCDTEuxYRJpSGuVWBjQv-7xIATyrcVeji8OYABqqTSJqZtpZLYgKvSmkmx-Qu_lumE-wvy5IDGWHkQJjbdnFAbg5FcBCyL7V9EAB-wT9For-ayhyljKQx8bdTqvMJDz88CXlmBUEoWuoIrazM6RfEhzvU6MPdKqni6PSj-7JQxG5YokJtHWIh7IeSO6yG7K09oYcQ-5Ukwy2DqIF8_4hdHYde5gJ_6eABqehs8-1-siQMKAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYxKnRqNL0iAOACgH6CwIIAYAMAdAVAYAXAbIXHAoYEhRwdWItMTY3MzM5OTE2MDcxMDcxOBgAGAw&sigh=j6kRbNrdK5I&uach_m=%5BUACH%5D&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8BgB HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVH38ovtr9fgT8GOp4INOEd4n59XjgUwhiPYlCSyO7JSEmY6NN_96J1Ljm1M6KeUUvehDGZqHWFTnc6VmLThMAKsiqCqiaJJqEw_4cGqP_lYvCDpic4JgYonekz98kntYU4DeiNw6xrDZStRlIb0Jaqk2VS7MI_TgwbyXmfRUbs4V0M3yEkQ4YGQESz/_/ade/baloo.php/ad/index_/ads_ifr./adswidejs./tg.php?uid= HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /simgad/7138348558614381586 HTTP/1.1Host: s0.2mdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1&gdpr=0&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UVdHM6EAAABI2AE7Q7AAA; CMPS=512; CMPRO=512
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=casale_media2_dsp_secure&google_cm&google_hm=Zv-UUtHM6u0AADLRAE9ESQAA HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVXyEvQ8rr_BoQhqFBmSyhHFBY8TVHaXqWthoyB0cqzuBrNmLKKWj9DvZo73bHB3Zg42zHyHtCxZLCLhMD0SVD9dQ8OYiBt_wWfDGQEiJrh-njbg3paxBCGtFSliXExuETImT-9GQ==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDY3LDI2MTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4tR0IiLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tLyIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=appnexus&google_hm=NzA1ODY0NTkxNTM2ODkwMjcyNQ%3D%3D HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=dotomi&google_ula=17128,0&google_hm=AQAJG877fWervgJRuHq6AQEBAQEBAQCTVlRxLgEBAJNWVHEu&expiration=1728128470&google_cver=1&is_secure=true&google_gid=CAESEBzuFVvX7Ht-61AXmEGHQ6Q&google_push=AXcoOmSP2oyq_i5tQjau2lDivP3OkqgDjjl5FOJxQ-X2F_KTj7-x4-18dN4dECcg0YTA99153bVKErWmRI9LQC3RokKFc8wlkaHi HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /r/cms/id/0/ddc/1/pid/18/uid/?gdpr=&gdpr_consent=&google_gid=CAESEE-2hABbNlvCQmyOE9XNGr8&google_cver=1 HTTP/1.1Host: r.turn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=3418088856170706752
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UVdHM6EAAABI2AE7Q7AAA; CMPS=512; CMPRO=512
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmQSzC5C28pLStKXw6cnCDgYtDmb02nZs8CRLDZNTHqqdUV3nd42z4t072GipsN10sg314x9S-mLGUsd1gJTxb-zNADAAWLa&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssANYIaq92euECwoJBoaf_mr5m-WCHhq0GSDEfjngwhwWVrab6AspGuYTxR3PHCwn27MtROBt_BM6cXqHKRuo1oZ_CYCSK2IcoiQ2ASf2dB6ysTNiiHFnSkwvzrCYYKr-_4GoIX_Qd0wgM-9b_BViOs6mRYW_FAMzgL-2FbCj-4VKzzvqhtHn2DXKmmTKLPEVuNGyEUoESvMrJNMJg_Ts4rePjN5sAbx-M9YFMMKuHWW8Am4y4gRXwonQqMclf4u9NRTtjnc-Bzx_n9Vp6mpgg7T6lyvkp7cIPy73pcq4c6VLWjLX9k6c2EzN9U35yZzallIoSVEh8cM4iNNA7FpeIcPwrUT8HA8fWy1UkAj_Grxg6VJRFswjFZY11l-f3aOhRHOqnx9lNmFrbXt_wUbULSWxuUMlkcP8Z0JiKZ0RsKVKbR4rZsFY_kgswW_T1MpaF7QeB_ucHs3NU7hNJ41C4eHmnwOw9Gd31miU76S1sAUId2RnmRCWN1ECVtgn8WLlFE1L8HgxpJzkFZexXRy8BGoVPh2I6z4swT6TAzP_ZOkuzan7Vuq8EDZKDrRSij2o0q8MEzv6zoFhQUYfeoqNefqzyg2bFqrZUS2RdOICTzz7Rvq1_9ZlXZilNEFA5djowi5fpoZnGQFLj8w2ac62f1tHZ614V_H5CtItmOeMr728RcZXwtkb9PlWx5cVBopcB-3IYm1bvN--XnAe44FCG3iSktsGPJRtJHBEx9OI76cdP1ygTA26oxpulY7bcTLv5J8ewkrcUC6EgK7rlW0ou3xNjt89HbulEoW5_SbY6yMYyuStW8kMs-doSSOVSdxxaLoYP8N61OMmS2SNFEPXZq_L7DZNUNdZr9tnRGlgNURksTvFC-Sy4vFibw_tr1nQNT6B2ie1vbAcAy0D08IaJqmvGygGVN4scO9V5AJOVX9IpoYfSe8dwP9gmmBt_9nb3pViRIyvdjKsA6FJk0Ap8endytum64zXQkcgJpMz6FphRHEIuHEl9yDbhloOMMN3b1MIgsbpMUjU39MpjHZLdvIit1uVmTEGhLVqoEWubTYRTfBHTskXC3lBa1GJYtx2R8mSkFdsU7SaFqmy7EYzlsZ81AKqXiU1VSUYcrZAEj_bqMKdtvhhc4tuwecLV8Eun_7JcMIpGHH3JSYuM1e6VAwqCqFqbI5ysGTW4EgPpEuGHTKwNo0ERSdOLTjqTZhsf8vRpXuaQH7A0vQ9MXL_ky2ZKQiMUtusv-UYG4lVVPSExE-Kne1rONhCG91pwbKEbqPG-k759yZoPcKPwTIKKbU9cZvk7m6dktmewAZty_L4_OFl1zw7WBz04R_b-gWCJ56c42CjuDP-lta9AbrIdnpKLqgnA4ZxepWkv4ML0cDEJlMbdNK3U4plrb4gnVUh0t&sai=AMfl-YRhaXmOTGQX9jQ4eWDM3MRSUnJPzRrJlkxrjo7MHsTBZDkO_17mCp5R8g2-N5lapcVMmSECjG3C5NbL2hzW7hTUJfW5FBvEjdgM3onfWjLzdCjtxO_UqCF_Cw77hoQgzTspuLUrpf0G1Ndr43qP0YKFcdH_hS-lB6y6eFYpDi5FsnPYQqDHuiuzjpyf2Dl_P35V2cvHBxE5-tAsz5bLcGwPVGLnOqNLdG2zKHWLTA_lcBs4ocpdyqoXnaRueqFOZgrYbamSkRtHPP_pAtxhV-0EDySTvmdhtDhI9MM0Ck2kK56xLAYfvYKPwSYUWjcpiCh3930fWQn19iBspug4sZn-NX7hVPAT9ym--dXiRc4irWCxoGzHrLS9L1lY-OkCKeiSwBv67xYwRtvNip2uO0QiUW-cIexwSDpC&sig=Cg0ArKJSzCIx7rquL3v-EAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=2486&vt=11&dtpt=2484&dett=2&cstd=0&cisv=r20241001.82346&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zemanta&google_push=AXcoOmTwIyt4e4yXQx9lN73aYgUXRi5oVuQcAQV3YKf4X10ZMqCKM9DTgjo4doK24yKl6PsWS6AMAM38_9Ull1QIWkEQqJOHk-6yrw&google_hm=NHM3RmFweW9TLUlXQzVtU3h2Snc= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_hm=b3VnRks2a2lCV3lPZnlKYlU5VF9aZw%3D%3D&google_nid=appier&google_push=AXcoOmSotlzXlITazuWCK3xBXY5xuChDBGEGIjGTS0t6K3S2l6WFtyeTYa2rAqT0_BU3OMnNoZndHNO1ql6rTBknJSdrWerSLKKqMQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=yahoo&google_push=AXcoOmRrukcpI3h6PezLMMUoYE8A5_O1p1n0cxhpK3ZcX1ogniTVasABBgXrEaQKZmmV6BZxNBsBtZhRkKJl4vIpcjkYcyDayZgmTA&google_hm=eS1GWHlJb3hsRTJwSGdGMHQyUG4yNXI4SFc1NHV1WjliQn5B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=kadam&google_push=AXcoOmQDJHHlzqr4eH5ZupQ5A7svWZ67X9fEHbwsf9SwO2hQCYAZ9sh6oKH6jmYabyCKENfazFNMv_g7QlZw4fo8ZdbJprpovR1h HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /setuid?entity=101&gdpr=0&code=CAESEDP2bThm3Z2ZMBLJNUoTxTs&google_cver=1 HTTP/1.1Host: ib.adnxs.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uuid2=7058645915368902725; anj=dTM7k!M41.D>6NRF']wIg2GVMnpT7Q!]tbPl1M>e)ZlrFUfJ+tGXxo7N8O6<:buev?6a<NS0f6jMVqrz_/!fcx3tA.3If)y3KL9D3I?+sUpwu.
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=appnexus&google_hm=NzA1ODY0NTkxNTM2ODkwMjcyNQ%3D%3D HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=dotomi&google_ula=17128,0&google_hm=AQAJG877fWervgJRuHq6AQEBAQEBAQCTVlRxLgEBAJNWVHEu&expiration=1728128470&google_cver=1&is_secure=true&google_gid=CAESEBzuFVvX7Ht-61AXmEGHQ6Q&google_push=AXcoOmSP2oyq_i5tQjau2lDivP3OkqgDjjl5FOJxQ-X2F_KTj7-x4-18dN4dECcg0YTA99153bVKErWmRI9LQC3RokKFc8wlkaHi HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1&gdpr=0&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UVdHM6EAAABI2AE7Q7AAA; CMPS=512; CMPRO=512
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVXyEvQ8rr_BoQhqFBmSyhHFBY8TVHaXqWthoyB0cqzuBrNmLKKWj9DvZo73bHB3Zg42zHyHtCxZLCLhMD0SVD9dQ8OYiBt_wWfDGQEiJrh-njbg3paxBCGtFSliXExuETImT-9GQ==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDY3LDI2MTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4tR0IiLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tLyIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UVdHM6EAAABI2AE7Q7AAA; CMPS=512; CMPRO=512
Source: global traffic	HTTP traffic detected: GET /r/cms/id/0/ddc/1/pid/18/uid/?gdpr=&gdpr_consent=&google_gid=CAESEE-2hABbNlvCQmyOE9XNGr8&google_cver=1 HTTP/1.1Host: r.turn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=3418088856170706752
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/aframe HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /news/i/3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/tag-light.png HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/news/i/3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&adk=1812271804&adf=1573534164&abgtt=6&lmt=1728042079&plat=3%3A16%2C4%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&pra=5&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&aipecl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042079520&bpp=21&bdt=294&idt=70&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&nras=1&correlator=7979588698718&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=115 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&slotname=5424108534&adk=3166978744&adf=3025194257&pi=t.ma~as.5424108534&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042079&rafmt=1&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042079541&bpp=3&bdt=315&idt=117&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0&nras=1&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=0&ady=1504&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&btvi=1&fsb=1&dtd=125 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=884246868&pi=t.aa~a.3958040794~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042079&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042079544&bpp=1&bdt=318&idt=137&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280&nras=2&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=89&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=141 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pages/assets/fonts/fontawesome-webfont.woff HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.haoqq.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.haoqq.com/pages/assets/css/plugins.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/tag-light.png HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CF3eTStT_Zr3NPPSUvPIP6_ucmQnLxLaNesry_oSVC2QQASDnwNRtYMkGoAGwuqHXA8gBCagDAcgDywSqBNIBT9DwTZzcreVd7WdKxYcnKcQNLegB1X7jM1Zr-u0QfT-UwlSRamFVdnwIJ2JktFCc1Qh441o2neoo3VdK4OOZOhn9tZSSrHwYnOrmYtlyRhjqeEPvZ0VA-axbUcKlZQ5cedEmjySxqCUpiBtAKW7LOLrMiChjG7QjY4W3P_Z_U4wZDUXD8_tCnFOo4pwi0SnthxUZWuRmEjGY1U_vzMyOUsLaG9PDsq6Fw235HlhwYXO4wqww3buw10Q5D3WpdG63Z6ooJtZVu5tCirxz-g6NwCGCwAT_wMCy-QGIBZatr7kGkgUECAQYAZIFBAgFGASgBi6AB62DrnaoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgH98KxAtgHAPIHBRC0jMUC0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYxKnRqNL0iAOaCaUBaHR0cHM6Ly93d3cua2F5YWsuY29tL3NlbWkvZ2RudGV4dC9ob3RlbF9nZW5lcmFsL2FueS9lbi5odG1sP2FpZD02Njk0NjM0MzAzOSZ0aWQ9JmxvY3A9Mjg0MCZsb2NpPSZuPWQmZD1jJmZpZD0mY2lkPTQxNzM2NTQ1MTc1MyZwaWQ9d3d3Lmhhb3FxLmNvbSZhY2VpZD0mZ2FkX3NvdXJjZT01gAoByAsB2gwQCgoQkKPHtJrPpJw1EgIBA9gTDIgUBNAVAYAXAbIXHgoaCAASFHB1Yi0xNjczMzk5MTYwNzEwNzE4GAAYAboXAjgBshgJEgKnTxguIgEA0BgB6BgB&sigh=X_XUzysFvXU&cmd=ChdjYS1wdWItMTY3MzM5OTE2MDcxMDcxOBDuAxgB&uach_m=%5BUACH%5D&ase=2&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8BgB&template_id=494&vis=1&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, triggerReferer: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CF9t9S9T_ZpnWAa2dvPIP7626gAyM7O2yerX2tr76ErCQHxABIOfA1G1gyQagAZu5y5wDyAEJqAMByAPLBKoE0QFP0Muz49MN5LepIXnNX2sWNLxMALjBFfUbB0OZ2Y0CJtCvkfyDGTTHkvgwdHFxHOZPYjHlSnAkfjxVHg7khwWwbSF-mOD2pnLEQM0aRU-cye1QN1svxQfKt4w1qmK1C6_lgsJpSig58jbAj5r_X7Xa2RcNQkg64BuGTdiTL6Ze5Zc8uCeSGxuJNBBw3Mos-MSRXrVt2jk195dptrpa4u92Fh3hUsQdGfv1pzrs8tjVhcOhyHP7idLok4gVELaBFlQ0MBGNjxisfmlICQGD-VcfacAE78rGuP0EiAX82IfGBaAGLoAHzca0Y6gH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WInB06jS9IgDsQmZiQGFumlbPoAKAZgLAcgLAYAMAdoMFQoKENDV7YDq6Ze8ORICAQNAAUoBJKoNAlVTyA0B2BMD0BUB-BYBgBcBshcCGAG6FwI4AbIYCRICk04YLiIBANAYAQ&sigh=u-MddZClIwg&cid=CAQSTwDpaXnfveAUNmBW3DIP4C91nkml_SMN3Hg2AHSGSs7Ftop1asYQtYb9NO9VmWgne4QnS7GY0ln__zk75HuRrRfdwuTWEC3iNDnMml_kF4E&label=window_focus&gqid=StT_ZrmHOoyI1PIPyfqEgQk&qqid=CNmn16jS9IgDFa0OTwgd75YOwA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=884246868&pi=t.aa~a.3958040794~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055445&bpp=1&bdt=9109&idt=1853&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0%2C1200x280&nras=2&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=89&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1856Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CW9SqT9T_ZuXJErmPvPIPmYyg6Qe8lYK7erW-qerjEr__uePXAhABIOfA1G1gyQagAcjHtfICyAEJqAMByAObBKoE9QFP0LdA_QtCVxOC6UdH1mV_RjR01OPBl6YIph7NQYCRLj6m1RRHTEN_IsaYLCeCkeipgYxf_DYYCKwmrnn20t63B6etYUanxrvkfUwUGpGuCDCEcwIkbcTcMYP1GgsHZ_gXC4wkPbVi4EU8TRb_cDMWTxwJ-hCsTvrI92ByxwLQqQsd-gqbWJF6_onNQ0jaAUmw26prJ99x14CcDtosYlge6ozapmLCQkpDWen9-WOPDZ8L5u-4YbJzElVx2vIKrz4l0Eb2ZKyCGWrJ4zOEvbVo5NasVQVNm_jNUkTpg4nacMYeIWk_JAegu4fGCJLzaRfUgAmvxcAEiMWN0LcE4AQDiAWy6fyESZAGAaAGTIAHoLjKjQGoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB-C9sQKoB_-esQKoB9-fsQKoB_jCsQKoB_vCsQLYBwDSCCYIgGEQARgfMgKKAjoLgECAwICAgKCogAJIvf3BOlim_Neq0vSIA4AKAZgLAcgLAYAMAaoNAlVTsBP-08cX0BMA2BMK2BQB0BUB-BYBgBcBshcCGALoFwSyGAkSAuVZGEwiAQA&sigh=v-kmi5WLZvs&cid=CAQSOwDpaXnfmOv4SBG4QY_5UnCklWXEdYWC3Np8BnW-7nO9_2RuSzEtrFw_9hE3gto6oqNw6mYSrKEf-Ile&label=window_focus&gqid=T9T_ZtuDDbPmx_APnKXP2Qw&qqid=CKWt3KrS9IgDFbkHTwgdGQYofQ&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=3371909064&adf=397776184&pi=t.aa~a.1089127196~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=2&bdt=13043&idt=2&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280%2C1200x280&nras=5&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=3625&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CFkeFStT_Zr3NPPSUvPIP6_ucmQnLxLaNesry_oSVC2QQASDnwNRtYMkGoAGwuqHXA8gBCagDAcgDywSqBNUBT9DwTZzcreVd7WdKxYcnKcQNLegB1X7jM1Zr-u0QfT-UwlSRamFVdnwIJ2JktFCc1Qh441o2neoo3VdK4OOZOhn9tZSSrHwYnOrmYtlyRhjqeEPvZ0VA-axbUcKlZQ5cedEmjySxqCUpiBtAKW7LOLrMiChjG7QjY4W3P_Z_U4wZDUXD8_tCnFOo4pwi0SnthxUZWuRmEjGY1U_vzMyOUsLaG9PDsq6Fw235HhpyQOF0dBgRUA_vJbQhzq2FXmQzboQwlji9o1qQIp9f4sAebAAPTei8wAT_wMCy-QGIBZatr7kGoAYugAetg652qAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WMSp0ajS9IgDsQnoOb0IcHAWJ4AKAZgLAcgLAYAMAdoMEAoKEJCjx7Saz6ScNRICAQOqDQJVU8gNAdgTDIgUBNAVAfgWAYAXAbIXAhgBuhcCOAGyGAkSAqdPGC4iAQDQGAHoGAE&sigh=E8pEeiVYDmU&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8A&label=window_focus&gqid=StT_ZpzqN_fox_APxrqS4QI&qqid=CL2a1ajS9IgDFXQKTwgd6z0nkw&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=731747807&adf=1645902383&pi=t.aa~a.3940796168~rp.4&w=1140&abgtt=6&fwrn=1&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1140x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&fwrattr=false&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280&nras=3&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=62&ady=1189&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=4&uci=a!4&btvi=2&fsb=1&dtd=1342 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=4075358053&adf=2063629977&pi=t.aa~a.2231736124~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1140x90&nras=4&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=1605&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=5&uci=a!5&btvi=3&fsb=1&dtd=1354 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVifTah-veLB2rSHOQe0IKZPYwlRiX35dRmH46TWedosDWvfXDDZ-bvXXGc0yGV8rU0PvB-mhhXDlDQU9jXsfzgZs8za28qE3AojEGnKd6WmIUV8mLyW141ijTuqwB6WzDwmtk2Ig==?fccs=W1siQUtzUm9sX1UzYkRuRTllck5UaXR1SkNIdUZqZjhURXdPTnVzSDcxczU5TlVqOXdMeHA3UUFNX1lSM2pCODJHLUR6SjFDYnhUekUzb1hqbkpuM2tmQjdsVzFXck9PSmpodXNWNGpvalBNT3oxaXNhQWN1Szk0bTQxdkktcGdTQ2NtMHhYMHplcTJvRDYySlhJN1lsRXh5NS1xbm9NckF6ZU93PT0iXSxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsWzE3MjgwNDIwODMsMTY2MDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbN11dLCJodHRwczovL3d3dy5oYW9xcS5jb20vbmV3cy9pLzNCOUM4M0UwLTU5QkEtNkVDQi1ERjcxLTY3QzY1ODVCMEUyOC5odG1sIixudWxsLFtbOCwiZXNrV1hTRkhzUWciXSxbOSwiZW4tVVMiXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQkr0JJgssmDkJ2FOoy1zXJuHY33xopr66TxI5_P2ixGa7v499Hr6UyVMO5I4JSxPUYk6JfT43GcQTJqX13u3S6Ks_78A HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaSTJhR1OewMZkk8y1BcO3CQvZVbfqSnCW9083mQ4nofBlUtk-Ozne0ZnJ-3ALD6ENYc8MiLZzQWyNz_zigWQ_sTmwCZiA HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dcm/dcmads.js HTTP/1.1Host: www.googletagservices.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /xbbe/pixel?d=CPfHxOMEEM2_2-oEGNKikZsCMAE&v=APEucNXhnXjF2sJ9tyF-VUC9xWNRJ5NC-o5pBxJKQb83I3CuqwyAcmRD3qKflRXX69i79_9PlTMDWa044gbi9Vl0jovCTNPXMg HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEGEiavs7xorMj9f6JVwxzhA&google_cver=1&google_push=AXcoOmSulyuPz4s2VMwaw06B9jFvCD3Ea4zvFVN_jiFcqjgfjyvBrnsuuio5aJjQ9PpNZwTI7nE9QdVgHFylTAP5InkPiSOlbvVM-5Q HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmQCvToyhvfM6gk2vMYoxrJQZorSrtw93am8KOb5SbI2bnCwv6k0SKPOy8pZBCOmRCfwi8Bd0Z54Ptt6QOOx0dSi30UFYLO6Zm11 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adx/user/cookie_syn?pubid=Z29vZ2xlYWR4&google_gid=CAESEMubsfg7aw9eHiY9QDqBVSA&google_cver=1&google_push=AXcoOmQ0Ne2aCV1Mlh6kz-lVa1oTUCTyGJj1orcPFFdDIkOjVJMxBKSk4nE9PC0fD6n4emS4V77hLq_syWMU1Wh8rW2O_2_MW0DbPM7t HTTP/1.1Host: gw-iad-bid.ymmobi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CFkeFStT_Zr3NPPSUvPIP6_ucmQnLxLaNesry_oSVC2QQASDnwNRtYMkGoAGwuqHXA8gBCagDAcgDywSqBNUBT9DwTZzcreVd7WdKxYcnKcQNLegB1X7jM1Zr-u0QfT-UwlSRamFVdnwIJ2JktFCc1Qh441o2neoo3VdK4OOZOhn9tZSSrHwYnOrmYtlyRhjqeEPvZ0VA-axbUcKlZQ5cedEmjySxqCUpiBtAKW7LOLrMiChjG7QjY4W3P_Z_U4wZDUXD8_tCnFOo4pwi0SnthxUZWuRmEjGY1U_vzMyOUsLaG9PDsq6Fw235HhpyQOF0dBgRUA_vJbQhzq2FXmQzboQwlji9o1qQIp9f4sAebAAPTei8wAT_wMCy-QGIBZatr7kGoAYugAetg652qAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WMSp0ajS9IgDsQnoOb0IcHAWJ4AKAZgLAcgLAYAMAdoMEAoKEJCjx7Saz6ScNRICAQOqDQJVU8gNAdgTDIgUBNAVAfgWAYAXAbIXAhgBuhcCOAGyGAkSAqdPGC4iAQDQGAHoGAE&sigh=E8pEeiVYDmU&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8A&label=window_focus&gqid=StT_ZpzqN_fox_APxrqS4QI&qqid=CL2a1ajS9IgDFXQKTwgd6z0nkw&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmSMzdJch9f5yspzBreHk7MkJGMkYmQ7l_CBrHUxRVaoffKY4RNI2u5YLrO2puwm_HkGYBZSRSnlykknHeXLElmJuD0t50Kx0HxNIQ HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CF9t9S9T_ZpnWAa2dvPIP7626gAyM7O2yerX2tr76ErCQHxABIOfA1G1gyQagAZu5y5wDyAEJqAMByAPLBKoE0QFP0Muz49MN5LepIXnNX2sWNLxMALjBFfUbB0OZ2Y0CJtCvkfyDGTTHkvgwdHFxHOZPYjHlSnAkfjxVHg7khwWwbSF-mOD2pnLEQM0aRU-cye1QN1svxQfKt4w1qmK1C6_lgsJpSig58jbAj5r_X7Xa2RcNQkg64BuGTdiTL6Ze5Zc8uCeSGxuJNBBw3Mos-MSRXrVt2jk195dptrpa4u92Fh3hUsQdGfv1pzrs8tjVhcOhyHP7idLok4gVELaBFlQ0MBGNjxisfmlICQGD-VcfacAE78rGuP0EiAX82IfGBaAGLoAHzca0Y6gH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WInB06jS9IgDsQmZiQGFumlbPoAKAZgLAcgLAYAMAdoMFQoKENDV7YDq6Ze8ORICAQNAAUoBJKoNAlVTyA0B2BMD0BUB-BYBgBcBshcCGAG6FwI4AbIYCRICk04YLiIBANAYAQ&sigh=u-MddZClIwg&cid=CAQSTwDpaXnfveAUNmBW3DIP4C91nkml_SMN3Hg2AHSGSs7Ftop1asYQtYb9NO9VmWgne4QnS7GY0ln__zk75HuRrRfdwuTWEC3iNDnMml_kF4E&label=window_focus&gqid=StT_ZrmHOoyI1PIPyfqEgQk&qqid=CNmn16jS9IgDFa0OTwgd75YOwA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13JAzld3HP190wTQExCS7Y2g6rh8D1rl-YR7ypoQ1a9rkeuR9OA_f3v9hRwF-8cpc2HhTmCGUt4 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CW9SqT9T_ZuXJErmPvPIPmYyg6Qe8lYK7erW-qerjEr__uePXAhABIOfA1G1gyQagAcjHtfICyAEJqAMByAObBKoE9QFP0LdA_QtCVxOC6UdH1mV_RjR01OPBl6YIph7NQYCRLj6m1RRHTEN_IsaYLCeCkeipgYxf_DYYCKwmrnn20t63B6etYUanxrvkfUwUGpGuCDCEcwIkbcTcMYP1GgsHZ_gXC4wkPbVi4EU8TRb_cDMWTxwJ-hCsTvrI92ByxwLQqQsd-gqbWJF6_onNQ0jaAUmw26prJ99x14CcDtosYlge6ozapmLCQkpDWen9-WOPDZ8L5u-4YbJzElVx2vIKrz4l0Eb2ZKyCGWrJ4zOEvbVo5NasVQVNm_jNUkTpg4nacMYeIWk_JAegu4fGCJLzaRfUgAmvxcAEiMWN0LcE4AQDiAWy6fyESZAGAaAGTIAHoLjKjQGoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB-C9sQKoB_-esQKoB9-fsQKoB_jCsQKoB_vCsQLYBwDSCCYIgGEQARgfMgKKAjoLgECAwICAgKCogAJIvf3BOlim_Neq0vSIA4AKAZgLAcgLAYAMAaoNAlVTsBP-08cX0BMA2BMK2BQB0BUB-BYBgBcBshcCGALoFwSyGAkSAuVZGEwiAQA&sigh=v-kmi5WLZvs&cid=CAQSOwDpaXnfmOv4SBG4QY_5UnCklWXEdYWC3Np8BnW-7nO9_2RuSzEtrFw_9hE3gto6oqNw6mYSrKEf-Ile&label=window_focus&gqid=T9T_ZtuDDbPmx_APnKXP2Qw&qqid=CKWt3KrS9IgDFbkHTwgdGQYofQ&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVkOjNjJJKLKXvuqNrKTy8XeDRyBbVLvvzydWOUHoM4r_wYL4b4XxqUaWzbfgIYs1sXg3V8ofBDzWlbP2zmN-y2YZTKZlcdB_g-1OSRGY73RPSCizozY6nsIrD183r4qJf9tO5CMQ==?fccs=W1siQUtzUm9sX1UzYkRuRTllck5UaXR1SkNIdUZqZjhURXdPTnVzSDcxczU5TlVqOXdMeHA3UUFNX1lSM2pCODJHLUR6SjFDYnhUekUzb1hqbkpuM2tmQjdsVzFXck9PSmpodXNWNGpvalBNT3oxaXNhQWN1Szk0bTQxdkktcGdTQ2NtMHhYMHplcTJvRDYySlhJN1lsRXh5NS1xbm9NckF6ZU93PT0iXSxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsWzE3MjgwNDIwODQsNzIyMDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbNyw5XSxudWxsLDIsbnVsbCwiZW4tR0IiXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tL25ld3MvaS8zQjlDODNFMC01OUJBLTZFQ0ItREY3MS02N0M2NTg1QjBFMjguaHRtbCIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVifTah-veLB2rSHOQe0IKZPYwlRiX35dRmH46TWedosDWvfXDDZ-bvXXGc0yGV8rU0PvB-mhhXDlDQU9jXsfzgZs8za28qE3AojEGnKd6WmIUV8mLyW141ijTuqwB6WzDwmtk2Ig==?fccs=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 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEFi9PqLuqTCfmE2lDk5eZnw&google_cver=1&google_push=AXcoOmShV-Jtc0RSd1rbHkgI_Eyj-B0DmnvvLixLb2rNvHzkMf38HLb3pMjATPv7RlVFZyU8Y1Mcjw32FWGNm0ehaP1l1kshMV69yV9W HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmRbtMccDxJg2BjT3wnvT1aepLpjWQ_QuS-yRl_uN-efUYE_YqPR6ef0-7Yh5T8BxoQ4rpvAjuN3vlHpI_ROEJWbBvpxn8ySqG3c HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /w/1.0/cm?id=9ca165a9-d9fe-2ff6-d83d-d145a80b0d37&r=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dopenx%26google_hm%3D%7Bopenx_uuid_base64%7D HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=openx&google_cm&google_dbm HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEGEiavs7xorMj9f6JVwxzhA&google_cver=1&google_push=AXcoOmTyFCDwwx6UNnlLcmSN88RNjshcmNS5SmS2VOGMiQ0qsij0fWvXW6TkZOtmWF9T9iQmuHoMbQj8LlPgnZacn2DENsWg7qpOZYs HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _tracker=%7B%22UUID%22%3A%22B84BC440-1A69-41D3-077A-EED82B6DB51D%22%7D
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=teadstv_dbm&google_cm&google_dbm HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /track/cmb/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmQCvToyhvfM6gk2vMYoxrJQZorSrtw93am8KOb5SbI2bnCwv6k0SKPOy8pZBCOmRCfwi8Bd0Z54Ptt6QOOx0dSi30UFYLO6Zm11 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=e335e2e1-b80f-4249-b64b-19f1016b75ba; TDCPM=CAEYBSgCMgsI-qmH3oadsj0QBTgB
Source: global traffic	HTTP traffic detected: GET /v1/api/sync/AdxPixel?google_gid=CAESEAmTNgM_-pcFL5ffd_dk1kc&google_cver=1&google_push=AXcoOmTV2KSAc1N-m2G0xNU9LFPb6GLXMBggU8DeWZNW3cTP-vpAbscLRbseese_6eze5rzy_lCdZGSYwuDmUn2pmEk6Mpac1tSMy6k HTTP/1.1Host: tr.blismedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmQqDjvbOg9mh9Ke-eHDgTeGGYCzmctbUZo85ZhML4SeTOLGHbGXAx5LKbO3n6hKn0Nm2gEy5TVP3y-GOpx_XkUXiy4RoIvYa_o HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=e335e2e1-b80f-4249-b64b-19f1016b75ba; TDCPM=CAEYBSgCMgsI-qmH3oadsj0QBTgB
Source: global traffic	HTTP traffic detected: GET /adx/user/cookie_syn?pubid=Z29vZ2xlYWR4&google_gid=CAESEMubsfg7aw9eHiY9QDqBVSA&google_cver=1&google_push=AXcoOmTIr8seDQb_z6tw0YfTB36eULzlKSYmdeIO-RpgGl--1XRNf-DwqS-nBR9_-efeOV0xQL6nfUgai4DG0LXt7AK1rclHwHo31WXT HTTP/1.1Host: gw-iad-bid.ymmobi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjsvxYDsb__THUaY0R_4hEJClqTq60nsvnmUsuOvXD9kOk5IONGUjuMUywcV68vM4JfFFmhDfqQjgYGYy9qXp0lqbiDjviQGHzn9DydUL0BLMh061MKtRuQpvktto14K7ShTxrR3v1cwsbFi1AVSPCfvpGbdUVUkHKLuVvrloI2UxoOver-GnBpXgTvkNqRXXVOoBo0WE48_5KH18AIPRSHbAXOjb6NuVsGd4KVVDJJ2skKKpLubqXna2puUz47ca6zHerZzabTjmUgTa1rtyR7qjbQD7-Eeuii8SVp7W-MRsFUW8Zl_4IcF_QlJMPeh_MIvWEsZaprLhHnpTO2csXiP_W2zQR2wY_LwWepKdoHSyItVcowtLN-0896TATHux5z_C6DJacdT6gASN0yA8BUfIKZT-L0Pd5aDI8DV_ePzinLtws5F_OIhKxz8PZr4s5EgA3ksBnn38wNOnDzY-rcPr2rmJB5n7WLTB9yBfCwP4JM_Y65RsIw1gFj6TEfytjO3qFw8egQX0c1khOZz64rn31kfsQDSUJjdgGFQEfMehRMvmjhQnZiQQ92fbwYP-YBhT365muwcPr8KzB9n-_4gHUyCBG4vQHu4cGOipcB6o7favllQr12hcBzJlRxtg-iIiBc0jEUeNPFzfpGbNdTnuFoDq0eOPoosAWuD0LjeJ_TFQDsTqxShBEVeOpqqVGnUVfVVOh0KgY9315o7HIxUGx2UAwyvRtySE8jSmq5cAFrlte2ES5zErW2t1AgeQC2BS4zspuAxp43AkLKSheTNcgIA04JQzA94pYp481jWtr4-0GfokeRjuZbU5fFb49SG0HnM-wYDvr6DwadnOwuJP1ZSB5IbCuHFoAlD62alklOiy0g-jakLku9qP1bmH739Qn8IBGL71mBi1Ej3SYyAJjcBRn3vm2QHzdP4mGX-nGJISEPADY3v7NlNIPYeYXVOm5MUAdhkb00u-FIfFVeKz0XxbjRrAsEqDC06YRq7UTB96mqI3fc09KDVVigNkHJFOu4oRoErRcpBDenZlsWv_VCR4qTGBRq4oIq3idJoF3r2d6VzXrMPJP3R6FP3W3Ew1hte9eCuyWBRxv1ERwU3FDlirEhByh7AuBIAhbA9KMnaNrOmG4mWeLjYHhzv0IMx32QQPG7PeAHxfaqukeq9VgrCEyUp98BBbOFZAa8ZRvSQpO_rM3d1yl-SZA5cgRNYp28i0RYHgztcjjbehTEXsj_cs-9OSBsxd8xnYGnJQZUozk7Ydl3kjaSrdqvtidfyWYWyLEP9Kp1QEEsBGFqRzqzci7H-VGLxQJ7NpEwTrrQphT2OGwMiEw4HiHPE8rRnr0vOyz09HoIVwoUHMlc6hy2dn6g4y4mW9DshDds6evQ5re_ow1LUk-dxcQA&sai=AMfl-YTZxJ2Gyk7hXc2lVbJspSVACpbIcM50ZEG5oMSFhSivhYpOLlmzR-uy5NuYfU4MeGPzF7yMPB0j28uBTnlOvPs9z90FXKtU8WQ2zwNtwICIebA49c5qNgvEhlkinfK68tIE_hHOGRHXdSQW7wY8r2P-WWIuDA-KnJj76BsfUd4pODrx3EXBN-bgO_36K0CX8PNcH4g6ynlm0v2vpVpK3Vk_Ciy3SplHRi8KQrQRo-K4UK2GDBsq6EJJ3SyqhhCEL775xS-zCaEUfFmNsM2LzLmYce1rmLpSTwN1c43aE4zKg_HIsSNqKcAx-6scL-xh036ylBYb0-km77qnXgajBhEOBDsNMznDso9-bu23P3jT4FTGmGN0F7kGLKp4NP_E58WBMGFmduqgKRl7EZ5uCjf85XPOPs6XKsh2&sig=Cg0ArKJSzIvdSSM8R1wLEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=4&cbvp=2&dett=2&cstd=1&cisv=r20241001.86318&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, not-triggerReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEGEiavs7xorMj9f6JVwxzhA&google_cver=1&google_push=AXcoOmS_qwRyX3whO3xQLvSc2JgBrDnO1X6pF86whMgAw7VSZjEYKco6wzHdQ5JwZcDLi1z2zEFLH-9drso1Sc7wUKmGo6svitaLdac HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _tracker=%7B%22UUID%22%3A%22B84BC440-1A69-41D3-077A-EED82B6DB51D%22%7D
Source: global traffic	HTTP traffic detected: GET /xbbe/pixel?d=CLbFxQEQq9bcARio-uKYAjAB&v=APEucNWY-6eV-PamxnzS1IYVwACNrpTeCLFv0-YchtE3vR9t2wema9vG5z1iKaHit8wKiP_Fm7slvYlC4NPq7_TYrYF4LywVeWXrrF864smd7v7SXzepVaA HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=4075358053&adf=2063629977&pi=t.aa~a.2231736124~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1140x90&nras=4&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=1605&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=5&uci=a!5&btvi=3&fsb=1&dtd=1354Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmSulyuPz4s2VMwaw06B9jFvCD3Ea4zvFVN_jiFcqjgfjyvBrnsuuio5aJjQ9PpNZwTI7nE9QdVgHFylTAP5InkPiSOlbvVM-5Q HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /xbbe/pixel?d=CLbFxQEQq9bcARio-uKYAjAB&v=APEucNW0uDA7eulVQo62CO4fVaRDsljOIJWFDirYM-cKSquXh-s5PzT4pRuWgb8AH5Qo-aVZYddkP-uvlT149X22qRIcfZDD1bWCJ37Y7L4SNA_rQgcdA-U HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=731747807&adf=1645902383&pi=t.aa~a.3940796168~rp.4&w=1140&abgtt=6&fwrn=1&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1140x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&fwrattr=false&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280&nras=3&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=62&ady=1189&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=4&uci=a!4&btvi=2&fsb=1&dtd=1342Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssczs0X-KB6qYP2KlivIqRJ99DIQD1UwVoZBOQNyJSMchHZUm_LOkMvlEHlRAmsBrk4MPryuOx_x2GbHD2CoVZp5GKZDonXWYm3MoumJZlTzzJZYohLFLUV8nh9uJATzOfH9kc-uRMjzLf5WqB3mexrRpd0QSPgLU9fgZ21vsoWRYG4pegpnLPHaYnD6M5cE4Vc13QMOq4SVWXJS15lUH2Sa3sAIs7dZ7eNS96hHVLPoiTLGLyMeMwg2yc8co__iXwlCz77ocS_v3e2EZ7FYrQqZTOrZRUhHVbCxOm371lrOVR1A0xiX9heWbeypHLLTJOJmXJbcsFT_GFafBzi1rwkV7Z3qHceQh9BDMWYne68NHJ-bhEN-2Zn-NkBsfYC-TtALOEfWVQe-x0DIRw1CPuRtOoVFO9qxsVC5fr0OhLMrh2yjzQ4Zcp6eOk9r3W7o_vX7pQax5cDy4nj2Mt_32saH3c4s9Lz14k6_bqvI_knfE_rBQ-ORDazhFho5It82kMCwmx4xGvgSpT9fespgqObJhhDO7pXcdeAOJnXX-_y8sbH3Gcv0yZEsoGsdcgozYCEp8ayp86y2fLBuUjsfvgqygMYJqdXaHRmoQpUEeWrzeY4myyDoBdI-dBb8K2FhclGqEMCcTGe-lImKrxna6lcmVDXdRpGIBReN6AgsN5wmrC7Z8ouHm-iK3m-u08UXsCWHhysG09iPtX7NwhCWFj7AzO4M1BHGa58ReaBJ_PSZiGdgMeVTTIGVo5l8cF3JJXaOy0QnDT-wPNqdvZAvMyeYpGknIM4nys0dfl1LJwiuvaFLc-vgkIzNyLOpx-Z8Ew_F6q65gb8ywcVlogTQj95gPFjPg-ILTcc7AfdaOzvSrVZnNJw5_iMSaeqSfeJFuIJ9qKygeb1PxEBskwkcNDFyWw3gRV8_YlK6pkz2mCpkGuhM0DEIogpAL71sxeWdNVYksNkBoGlBXLtq99W2wheuWlArL6hjOy6NMXD7CiH66H6qAEH_b8SU18jyCawVQsyhQHgQtaJFTVa1NaZCgm6bzhtj0Cw_iadx7Pzp8RK6KCw7LZWGqjBo5XkK6BTEZFS5rj7M5qU26z47A3fZmLMW25TMAM7lF1xqmQwXvDV-O7oBV_id1QMLdrkw6tiW4uCAEHvhJP0PbA0oz2P9RgTEBoBLWJ14cD3vfrGawg6BRqAhNfG6RxAYdD0FE_aX_vBnSr8XltGF1fLvJrHJy26n3hCqyGiBSE-3CcTvEebZ5tkNr15PQPY56NmbLXQhL5KMFKOzbRHRM-O2A0MX4iJR0kcsNswlav8NPIKL6VOY8pdk4N5Gt7UYqY46GBh59iFvr1-Mj5iHr22EyPQqgaS4Mdb4EvR5IidBDlnjTJkkYdNgZo2jXb2olGXPQ&sai=AMfl-YQuGsdX2J4rx848wRgIc57LJSFq768n9kCajIqaG7jX8XTfUvgkjIG5TqrWvzPJ2RaBrCZ0T5fvOOklbFDdPwtIfdE44pkdsmSUH8sGVS6bfVIpbst11pDEHAskJYkYRlqDusUOSZ6Tknjl7ZyjcPk8RApyj9X9usScvoBMdAKOY8PAzzAuYEisVcqiUVSyyZp5cZIQyXA1IAylAamCAeMib3P2mwXh118Ht9_YzIEdMqn48cvsGtAWzeNm3ByGyJFNrEGum7FrG3XFcnjxuOMse0M6fJyl7wG5QU4Wy9nvJO5fl2IlJXvU8XWzXdl3LnrFG76-0CPfBZXmG5CdWD6JkiVYKfzaqCHhu5AvYbZa7121CgcaJe_FDGQAAU3OeC0v1hFClTRQVR03hJmw6Fr66r7CZ7C4U09t&sig=Cg0ArKJSzFCam7cFjlUvEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=3&cbvp=2&dett=2&cstd=0&cisv=r20241001.37687&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source=triggerReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmSMzdJch9f5yspzBreHk7MkJGMkYmQ7l_CBrHUxRVaoffKY4RNI2u5YLrO2puwm_HkGYBZSRSnlykknHeXLElmJuD0t50Kx0HxNIQ&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: g=1D6xnsGMXasXsu6Ji6uj_1728042086362; ts=1728042086
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=286fbcaf-c685-43ee-8bde-74ddd673711e; c=1728042086; tuuid_lu=1728042086
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESEPv97O-fbD076H-t7qpclug&google_cver=1&google_push=AXcoOmTs1_ll0D_RCewYKHbjcou2C-D9XigwEMKV_u-aZD-O41ML3SE9fdZH5w_1zibbiRxTdKUAFgAe8aWsnlS_ljhlXIAw66tm7YJT HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESEPv97O-fbD076H-t7qpclug&google_cver=1&google_push=AXcoOmSG2y2CKSsJHjNe49B23UO6-5g3bFSL2LYXX_GQWIMBaewczfO2x8EyvksJW-qUf0IyZLinmX_ctJGlnpQh0UG90kQ-Di98fpQn HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13IUKnPygisc1SVSIAl_6VxOJ9jS4uztRUM4KTV9FLgRkGCpljYd8R2BKcK-9j-nq2UoEmmmCQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmRCSlMPxwQTtRY0srsvhVQKth5iLYF47d3btKbG_d_3IsMyUKNQADdrnqdCg6DLNPZUT840YBHlR4IVAe5fcGcCAepXLko1F3A HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=286fbcaf-c685-43ee-8bde-74ddd673711e; c=1728042086; tuuid_lu=1728042086
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEFi9PqLuqTCfmE2lDk5eZnw&google_cver=1&google_push=AXcoOmRuShbATQDatQq4sJWhdwSrBaGF1h8JWd189LN0U19evDjkxqz6PEo6NN4Cmk1GaEawPQp5AY2xig2e6DaJALkaVLbrCocgGg HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEFi9PqLuqTCfmE2lDk5eZnw&google_cver=1&google_push=AXcoOmQnNLICDQEa3vo6G_jaTp0NK-2q-MGnmoNPYU3Aa2sIj7Rxn0cU26cd4a8b_IFvGN63TwpI48Ce2Jhn1M-z_WPNWRTnZv5PfbI HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmRy4LztOfvutfEIQqeamY70sMjqOCzGEp04PRMa584VqdOYtMt116yfAa_MYRTxcDQqTgSXjjxfVMmSapNlh1rX65TKi5Q-N1I HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=e335e2e1-b80f-4249-b64b-19f1016b75ba; TDCPM=CAEYBSgCMgsI-qmH3oadsj0QBTgB
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaS8gCQFP0o1eus7-AihtczXrA7yuF7mCvHGueJU_LMl5dYEN5zMJwL72QmFQlpXYbgd_zSsqmxxKea2m55Wivzm6oo8YA HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13L4GvAS5ilSZs0f2MWid2THf2dPYje2EVLYnqkR4AkOHvwpPTTV0XE7TKY0O6A6Ow6XfaFA6NI HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmT4o063xBBQDu0z4njujpW3iMXyySg6RrAn0VBLP2vry8QG1govK7gCAyoaJNfaM1IIP-17W1aBlEfY617IxoiLn9u3SbkN4a0 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQY3seh0MpD2DAPZGWcGa0eyeMaZjmKJbAzbZ4sjiZYrM2JP-bBS2iYVMfW3q26Xl_E5QUiCXpV3673kLeQEChXLoCWfg HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=D463160B91F546D383A1AF8385A1B33A&google_push=AXcoOmShV-Jtc0RSd1rbHkgI_Eyj-B0DmnvvLixLb2rNvHzkMf38HLb3pMjATPv7RlVFZyU8Y1Mcjw32FWGNm0ehaP1l1kshMV69yV9W HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmRbtMccDxJg2BjT3wnvT1aepLpjWQ_QuS-yRl_uN-efUYE_YqPR6ef0-7Yh5T8BxoQ4rpvAjuN3vlHpI_ROEJWbBvpxn8ySqG3c&_bee_ppp=1 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: checkForPermission=ok
Source: global traffic	HTTP traffic detected: GET /dbm/ad?dbm_c=AKAmf-BmwgLlXvLBDhkYHic6fuX49VdJ25tE_0myFee4RzIpazsSanc2sDjik01ZLPn36OhmSEWoGfGPz5SXZjf1xOgwqRv4oSvkenGiaEs91mTI-JWahTZGmKo_5Nu3puY7PuQQfNWMus2BDvFwBJs_XsqYHj3OkKx8mqSukz_RaZMUZM3fKt9xy2PP_tIheV93WR_VSb5wAOnhQbaycBDCbSlTgOR-esdxTnOh5-5Xx3mbVhao-kg&cry=1&dbm_d=AKAmf-Ctkfiisw4sUKcjWsLWg6bu1FonrD_Mrehk92SJHpzkPzXReqaMsEEEjWicDM03Zn_2Wf9BGLrKSJASO3hhy6pt7YFa5IQULRtat2VuW0hhBPMqk5NcbqW9y5kQCNZrDbSDVSB7OB35RuZUMf6LC3qM9xmJTV8Fuq_TEdx-19AENel1TSyxkg1glhQBMV89eX202AQar3P63zQt2Km56Zb24BgJSNEgKIQJnBNlQWCl1xtQTM0LWhgK0Ljkcjykqj-7P0UZ5tQPPeyh8ZfEY-QZQrpXAsljhHHemCDsvKSyVJLTj1LhSr8kBGfsE4uqWGL8T5eMjmL_ISvFHy0iuhuHON-8q9qBDvu3RxwngqWA_THWQN8Mx2SWx42vTnBAQKX1OSIRSC4rSycMXmkmEQGcd8rU_HWFGsBtaTzG__G8vDFhVOR1auBW31T7Ozkexq2V83hBFUf06JksnSITmSPWt9EIs_aPFXwvkirKukZw3B8s57wqYYSbvxlV3m6z7Venw8J2MbYCwoySSQihoQ2TG11k8WADxGUcWVpZHRD0ig78UvZmEGbREYz_CEimdL8OafEikmJprO1FD6Wq8FNAe8-7sIw7PFyZrGallNX2gPNqvGWAnowVOQ1-j-c17-X2yPX2ZMQDXdueKDbcXd309WBwLZxX6oBI28u0i6o9_2Q0Z7NqdNfuiSuMHeQGmxSCcEff21Y6J4mhbpqJvGvJaZkiH8OgNOlORjasj2yIwDZban8I1l5IKFrhJt98OI-L3Qh2R9m4deu7r8pXMX_-D9izQV4dxQoXCH4V27SOz9wPcL0AbtcFHBjZff9wP4DHbFj4mw3EyGYfVbU7sWSNjjl7hAAYbfplbOrbWg1tsYHn2hwwcGLK4rndm3KY6Qms2M7cw7gpgBjgxezy2sAddP_snFQ629jqygLOSyivKCOBbHeyRHQSzaOa8TnO0_kA5AV0ESmnsyEws9RVfa254xEVF-TcE0LwXX0qu-Z82PsDjf25-g5zv28ond5nJPq7kDGYXkz4MRwvayh7lxezcH0IejNdSlyZ-oT6qUOJNf1Fk8xMySZj5UkaK9t9mUMxQ3Hxsj7TvKnwd7ykJJddAe_4Fgj2woslc0QYe2nE0tzjl6XdT5yENmmWFMmcFYm0OK-9S8i1ow6VIsQGmV0d5LhnldQHAcU_9w4GnEHUpProslXx3NRAKfoXvUGKngThQq6fVKaL8Z9JhROzbgvVmAxMkl9wAVxG0GEhY4rwJpSpVcWsUwg3-G21g_PYWJow8EjqK9hAxKWOz6x8UaT4CU4Ugri6XtfwMNucL8LVegMkgq3ALOMyjXWi6qboviCPqk9kd1YXXoVrkqXxAs8woRGQvPh7vUJCzEewQpOrxpJkJ0UFPmRwZXRLMZFA94AK44MMI07cRedaSZkNyFQYEuLcdMjlE70u0TLaXltuQezYRMdiN5MH2bsnoIvq7fDQJuL-xr2jkFO2z2TxKGGW8uQ_9Hu12z_S9COMJNFhHryNaDEdM1iJq_QcI5MMuCkFz9zR6a3fzeHYQiciDvIIbE74OEmXzhWs1655tp3WNlvSMcK22PTQKzGuvuJk9C4HrFhqAljUWZ_jL-nCVJrIaRcdPiGXUfHz-qTXS2AU5iy12p_gCQFM_CziKOVmLaOpfmITGNA5efmPeZWhNW7cwoAr3Umh9cIO4Lmu5gWr0p8oWVoHZWy0c52wi1bswa_6u8b5WNxPdmcT1dfh72KZa5BCul-VAsbJ74W8AgthMMi5stZ5UflEiMQmaDyIudTocqKSo0IOROF7EWvCk7j1_-mbnQI6iQASrJVpK_O0pozZbo93wvmGkONMI1nQKq0ZvJm30RqG33RJSkrr60yAi4dJSaEZKVDH4EusvWooFzh8cZ44nglsQ3RM8c65_LhzWfPz8EFDk3HhdDl5pITxQ0COSXhIqus6M47GVEFE728ePpylgqL5875kTp8-hW_ut7w603H1wgmcPssvagFWWzLlQS-5EFBuwA7cjknL5hqTvvv6tybAIBGyilaWWoNQ-jWep6IlmhDBpK1yorJ38Ndo7iqQjWcoEvX7kjsMHbvYXpbbgmCOB5ld-4TMM5sG8D_BYp0rZLboADKUrWqIKmaBAG7ZcjEm-i_x7ANSYxUsaun4ULE0Ize7kyxEyqj6kZtfGEEbzTZjSz8HBaFuSWPFDHjK6Yjn5RlYeClgeoH6JCshr7DXo_5AQYEWZ-0MGwMvT8wpb3-GUMFLlO3u-eqHkxxYFOl67Wov67q1mwBMyg6b27Nu1qvYAcGPdaBqb6-n-5izwo0epC86uIYqsQEC7mO13ZfGcYubuzOSlyBP-Frbn-xyCvDmD0lBp_5tOhmsPUzM-zP81fpm3xwhLIqFYvY3mKxhba7Jzuym3ZMwe6J1thCHSAcguRTgRZ0qJzRT1VVmr_rdx5EI1ijv8HJbZcH1DUg6F1cX723wW0x71rCr0dOaz0nxaL2h4EOJePq0jI84dT4F1lKFCP-pQ9fzu9mstlvt8ewg_Oh6pXSuGZHmQVKo8a-owFWWQhmxZ3DDrS9ULrzIu6z5U1IfgNUL9Civvecv0QXW3N82Zrvu-HAdQ1oZU2RvqJnJUv41UcbkmfQF8DKLiqtsm1QIZboNqAhLkoyfMwh81EAexeL3B7nEHbGuJMwSjEdIta6rWdSzL-5djcol8FmvxCdViFh6cv
Source: global traffic	HTTP traffic detected: GET /w/1.0/cm?cc=1&id=9ca165a9-d9fe-2ff6-d83d-d145a80b0d37&r=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dopenx%26google_hm%3D%7Bopenx_uuid_base64%7D HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=b9a15fbb-fda0-4fbe-a342-d928a6585a12\|1728042086
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /w/1.0/sd?id=537072991&val=CAESEMkjFLMM811MJvGQ6HGZDCc&google_cver=1 HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=b9a15fbb-fda0-4fbe-a342-d928a6585a12\|1728042086
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=teadstv_dbm&google_hm=ZWVlZjQxZTItYjIzYy00MTFmLTljNjQtNzk3ZDNkYzAzNzQy HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=tremor_video_dbm&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid_lu=1728042087; google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b; tuuid=4a7a769d-5c1b-4c0b-8955-8bf06fc08476; c=1728042087
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw&_bee_ppp=1 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: checkForPermission=ok
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmT4o063xBBQDu0z4njujpW3iMXyySg6RrAn0VBLP2vry8QG1govK7gCAyoaJNfaM1IIP-17W1aBlEfY617IxoiLn9u3SbkN4a0&_bee_ppp=1 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: checkForPermission=ok
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXIoFUECk4FNvCkloFhmBS2oxXCceKSam1esjWsJ0AtzzJXf6WEQfZj9CpxO3jSIRzerEvGRgArgeB-6xT1bWrHGL2lbouxguHuQLmvlFOUyN6QS-KH7VPj6WNJ4ksUBlOXuyq2x_QC8xWGD-qYu-Qksm8uU2ncCyX5VHLlAeFhAacxIZGPoRiQo0aG/__300x250px./writelayerad._468x80./ads/proximic./ad12. HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=spotxchange_dbm&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /sync?ssp=bidswitch&bidswitch_ssp_id=google&bsw_custom_parameter=286fbcaf-c685-43ee-8bde-74ddd673711e HTTP/1.1Host: pool.admedo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stickyxchange_dbm&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=openx&google_hm=NDY2MmIzMjgtOWQ1MC0yZWVkLWVjNzQtNGI3OTA4OWRhNzhm HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmTyFCDwwx6UNnlLcmSN88RNjshcmNS5SmS2VOGMiQ0qsij0fWvXW6TkZOtmWF9T9iQmuHoMbQj8LlPgnZacn2DENsWg7qpOZYs HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /ups/58269/sync?_origin=1&gdpr=0&redir=true HTTP/1.1Host: ups.analytics.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBFPU_2YCEMHQmkWA5FtJWDYVa9d9mmIFEgEBAQElAWcJZwAAAAAA_eMAAA&S=AQAAAnQ3ncZmf4JPQPHh-7KC5OM
Source: global traffic	HTTP traffic detected: GET /ddm/activity/attribution_src_register;crd=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
Source: global traffic	HTTP traffic detected: GET /dcm/impl_v102.js HTTP/1.1Host: www.googletagservices.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /w/1.0/sd?id=537072991&val=CAESEMkjFLMM811MJvGQ6HGZDCc&google_cver=1 HTTP/1.1Host: us-u.openx.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=b9a15fbb-fda0-4fbe-a342-d928a6585a12\|1728042086
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVkOjNjJJKLKXvuqNrKTy8XeDRyBbVLvvzydWOUHoM4r_wYL4b4XxqUaWzbfgIYs1sXg3V8ofBDzWlbP2zmN-y2YZTKZlcdB_g-1OSRGY73RPSCizozY6nsIrD183r4qJf9tO5CMQ==?fccs=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 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjsvxYDsb__THUaY0R_4hEJClqTq60nsvnmUsuOvXD9kOk5IONGUjuMUywcV68vM4JfFFmhDfqQjgYGYy9qXp0lqbiDjviQGHzn9DydUL0BLMh061MKtRuQpvktto14K7ShTxrR3v1cwsbFi1AVSPCfvpGbdUVUkHKLuVvrloI2UxoOver-GnBpXgTvkNqRXXVOoBo0WE48_5KH18AIPRSHbAXOjb6NuVsGd4KVVDJJ2skKKpLubqXna2puUz47ca6zHerZzabTjmUgTa1rtyR7qjbQD7-Eeuii8SVp7W-MRsFUW8Zl_4IcF_QlJMPeh_MIvWEsZaprLhHnpTO2csXiP_W2zQR2wY_LwWepKdoHSyItVcowtLN-0896TATHux5z_C6DJacdT6gASN0yA8BUfIKZT-L0Pd5aDI8DV_ePzinLtws5F_OIhKxz8PZr4s5EgA3ksBnn38wNOnDzY-rcPr2rmJB5n7WLTB9yBfCwP4JM_Y65RsIw1gFj6TEfytjO3qFw8egQX0c1khOZz64rn31kfsQDSUJjdgGFQEfMehRMvmjhQnZiQQ92fbwYP-YBhT365muwcPr8KzB9n-_4gHUyCBG4vQHu4cGOipcB6o7favllQr12hcBzJlRxtg-iIiBc0jEUeNPFzfpGbNdTnuFoDq0eOPoosAWuD0LjeJ_TFQDsTqxShBEVeOpqqVGnUVfVVOh0KgY9315o7HIxUGx2UAwyvRtySE8jSmq5cAFrlte2ES5zErW2t1AgeQC2BS4zspuAxp43AkLKSheTNcgIA04JQzA94pYp481jWtr4-0GfokeRjuZbU5fFb49SG0HnM-wYDvr6DwadnOwuJP1ZSB5IbCuHFoAlD62alklOiy0g-jakLku9qP1bmH739Qn8IBGL71mBi1Ej3SYyAJjcBRn3vm2QHzdP4mGX-nGJISEPADY3v7NlNIPYeYXVOm5MUAdhkb00u-FIfFVeKz0XxbjRrAsEqDC06YRq7UTB96mqI3fc09KDVVigNkHJFOu4oRoErRcpBDenZlsWv_VCR4qTGBRq4oIq3idJoF3r2d6VzXrMPJP3R6FP3W3Ew1hte9eCuyWBRxv1ERwU3FDlirEhByh7AuBIAhbA9KMnaNrOmG4mWeLjYHhzv0IMx32QQPG7PeAHxfaqukeq9VgrCEyUp98BBbOFZAa8ZRvSQpO_rM3d1yl-SZA5cgRNYp28i0RYHgztcjjbehTEXsj_cs-9OSBsxd8xnYGnJQZUozk7Ydl3kjaSrdqvtidfyWYWyLEP9Kp1QEEsBGFqRzqzci7H-VGLxQJ7NpEwTrrQphT2OGwMiEw4HiHPE8rRnr0vOyz09HoIVwoUHMlc6hy2dn6g4y4mW9DshDds6evQ5re_ow1LUk-dxcQA&sai=AMfl-YTZxJ2Gyk7hXc2lVbJspSVACpbIcM50ZEG5oMSFhSivhYpOLlmzR-uy5NuYfU4MeGPzF7yMPB0j28uBTnlOvPs9z90FXKtU8WQ2zwNtwICIebA49c5qNgvEhlkinfK68tIE_hHOGRHXdSQW7wY8r2P-WWIuDA-KnJj76BsfUd4pODrx3EXBN-bgO_36K0CX8PNcH4g6ynlm0v2vpVpK3Vk_Ciy3SplHRi8KQrQRo-K4UK2GDBsq6EJJ3SyqhhCEL775xS-zCaEUfFmNsM2LzLmYce1rmLpSTwN1c43aE4zKg_HIsSNqKcAx-6scL-xh036ylBYb0-km77qnXgajBhEOBDsNMznDso9-bu23P3jT4FTGmGN0F7kGLKp4NP_E58WBMGFmduqgKRl7EZ5uCjf85XPOPs6XKsh2&sig=Cg0ArKJSzIvdSSM8R1wLEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=4&cbvp=2&dett=2&cstd=1&cisv=r20241001.86318&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmSulyuPz4s2VMwaw06B9jFvCD3Ea4zvFVN_jiFcqjgfjyvBrnsuuio5aJjQ9PpNZwTI7nE9QdVgHFylTAP5InkPiSOlbvVM-5Q HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /dbm/ad?dbm_c=AKAmf-BmwgLlXvLBDhkYHic6fuX49VdJ25tE_0myFee4RzIpazsSanc2sDjik01ZLPn36OhmSEWoGfGPz5SXZjf1xOgwqRv4oSvkenGiaEs91mTI-JWahTZGmKo_5Nu3puY7PuQQfNWMus2BDvFwBJs_XsqYHj3OkKx8mqSukz_RaZMUZM3fKt9xy2PP_tIheV93WR_VSb5wAOnhQbaycBDCbSlTgOR-esdxTnOh5-5Xx3mbVhao-kg&cry=1&dbm_d=AKAmf-Ctkfiisw4sUKcjWsLWg6bu1FonrD_Mrehk92SJHpzkPzXReqaMsEEEjWicDM03Zn_2Wf9BGLrKSJASO3hhy6pt7YFa5IQULRtat2VuW0hhBPMqk5NcbqW9y5kQCNZrDbSDVSB7OB35RuZUMf6LC3qM9xmJTV8Fuq_TEdx-19AENel1TSyxkg1glhQBMV89eX202AQar3P63zQt2Km56Zb24BgJSNEgKIQJnBNlQWCl1xtQTM0LWhgK0Ljkcjykqj-7P0UZ5tQPPeyh8ZfEY-QZQrpXAsljhHHemCDsvKSyVJLTj1LhSr8kBGfsE4uqWGL8T5eMjmL_ISvFHy0iuhuHON-8q9qBDvu3RxwngqWA_THWQN8Mx2SWx42vTnBAQKX1OSIRSC4rSycMXmkmEQGcd8rU_HWFGsBtaTzG__G8vDFhVOR1auBW31T7Ozkexq2V83hBFUf06JksnSITmSPWt9EIs_aPFXwvkirKukZw3B8s57wqYYSbvxlV3m6z7Venw8J2MbYCwoySSQihoQ2TG11k8WADxGUcWVpZHRD0ig78UvZmEGbREYz_CEimdL8OafEikmJprO1FD6Wq8FNAe8-7sIw7PFyZrGallNX2gPNqvGWAnowVOQ1-j-c17-X2yPX2ZMQDXdueKDbcXd309WBwLZxX6oBI28u0i6o9_2Q0Z7NqdNfuiSuMHeQGmxSCcEff21Y6J4mhbpqJvGvJaZkiH8OgNOlORjasj2yIwDZban8I1l5IKFrhJt98OI-L3Qh2R9m4deu7r8pXMX_-D9izQV4dxQoXCH4V27SOz9wPcL0AbtcFHBjZff9wP4DHbFj4mw3EyGYfVbU7sWSNjjl7hAAYbfplbOrbWg1tsYHn2hwwcGLK4rndm3KY6Qms2M7cw7gpgBjgxezy2sAddP_snFQ629jqygLOSyivKCOBbHeyRHQSzaOa8TnO0_kA5AV0ESmnsyEws9RVfa254xEVF-TcE0LwXX0qu-Z82PsDjf25-g5zv28ond5nJPq7kDGYXkz4MRwvayh7lxezcH0IejNdSlyZ-oT6qUOJNf1Fk8xMySZj5UkaK9t9mUMxQ3Hxsj7TvKnwd7ykJJddAe_4Fgj2woslc0QYe2nE0tzjl6XdT5yENmmWFMmcFYm0OK-9S8i1ow6VIsQGmV0d5LhnldQHAcU_9w4GnEHUpProslXx3NRAKfoXvUGKngThQq6fVKaL8Z9JhROzbgvVmAxMkl9wAVxG0GEhY4rwJpSpVcWsUwg3-G21g_PYWJow8EjqK9hAxKWOz6x8UaT4CU4Ugri6XtfwMNucL8LVegMkgq3ALOMyjXWi6qboviCPqk9kd1YXXoVrkqXxAs8woRGQvPh7vUJCzEewQpOrxpJkJ0UFPmRwZXRLMZFA94AK44MMI07cRedaSZkNyFQYEuLcdMjlE70u0TLaXltuQezYRMdiN5MH2bsnoIvq7fDQJuL-xr2jkFO2z2TxKGGW8uQ_9Hu12z_S9COMJNFhHryNaDEdM1iJq_QcI5MMuCkFz9zR6a3fzeHYQiciDvIIbE74OEmXzhWs1655tp3WNlvSMcK22PTQKzGuvuJk9C4HrFhqAljUWZ_jL-nCVJrIaRcdPiGXUfHz-qTXS2AU5iy12p_gCQFM_CziKOVmLaOpfmITGNA5efmPeZWhNW7cwoAr3Umh9cIO4Lmu5gWr0p8oWVoHZWy0c52wi1bswa_6u8b5WNxPdmcT1dfh72KZa5BCul-VAsbJ74W8AgthMMi5stZ5UflEiMQmaDyIudTocqKSo0IOROF7EWvCk7j1_-mbnQI6iQASrJVpK_O0pozZbo93wvmGkONMI1nQKq0ZvJm30RqG33RJSkrr60yAi4dJSaEZKVDH4EusvWooFzh8cZ44nglsQ3RM8c65_LhzWfPz8EFDk3HhdDl5pITxQ0COSXhIqus6M47GVEFE728ePpylgqL5875kTp8-hW_ut7w603H1wgmcPssvagFWWzLlQS-5EFBuwA7cjknL5hqTvvv6tybAIBGyilaWWoNQ-jWep6IlmhDBpK1yorJ38Ndo7iqQjWcoEvX7kjsMHbvYXpbbgmCOB5ld-4TMM5sG8D_BYp0rZLboADKUrWqIKmaBAG7ZcjEm-i_x7ANSYxUsaun4ULE0Ize7kyxEyqj6kZtfGEEbzTZjSz8HBaFuSWPFDHjK6Yjn5RlYeClgeoH6JCshr7DXo_5AQYEWZ-0MGwMvT8wpb3-GUMFLlO3u-eqHkxxYFOl67Wov67q1mwBMyg6b27Nu1qvYAcGPdaBqb6-n-5izwo0epC86uIYqsQEC7mO13ZfGcYubuzOSlyBP-Frbn-xyCvDmD0lBp_5tOhmsPUzM-zP81fpm3xwhLIqFYvY3mKxhba7Jzuym3ZMwe6J1thCHSAcguRTgRZ0qJzRT1VVmr_rdx5EI1ijv8HJbZcH1DUg6F1cX723wW0x71rCr0dOaz0nxaL2h4EOJePq0jI84dT4F1lKFCP-pQ9fzu9mstlvt8ewg_Oh6pXSuGZHmQVKo8a-owFWWQhmxZ3DDrS9ULrzIu6z5U1IfgNUL9Civvecv0QXW3N82Zrvu-HAdQ1oZU2RvqJnJUv41UcbkmfQF8DKLiqtsm1QIZboNqAhLkoyfMwh81EAexeL3B7nEHbGuJMwSjEdIta6rWdSzL-5djcol8FmvxCdViFh6cv
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssczs0X-KB6qYP2KlivIqRJ99DIQD1UwVoZBOQNyJSMchHZUm_LOkMvlEHlRAmsBrk4MPryuOx_x2GbHD2CoVZp5GKZDonXWYm3MoumJZlTzzJZYohLFLUV8nh9uJATzOfH9kc-uRMjzLf5WqB3mexrRpd0QSPgLU9fgZ21vsoWRYG4pegpnLPHaYnD6M5cE4Vc13QMOq4SVWXJS15lUH2Sa3sAIs7dZ7eNS96hHVLPoiTLGLyMeMwg2yc8co__iXwlCz77ocS_v3e2EZ7FYrQqZTOrZRUhHVbCxOm371lrOVR1A0xiX9heWbeypHLLTJOJmXJbcsFT_GFafBzi1rwkV7Z3qHceQh9BDMWYne68NHJ-bhEN-2Zn-NkBsfYC-TtALOEfWVQe-x0DIRw1CPuRtOoVFO9qxsVC5fr0OhLMrh2yjzQ4Zcp6eOk9r3W7o_vX7pQax5cDy4nj2Mt_32saH3c4s9Lz14k6_bqvI_knfE_rBQ-ORDazhFho5It82kMCwmx4xGvgSpT9fespgqObJhhDO7pXcdeAOJnXX-_y8sbH3Gcv0yZEsoGsdcgozYCEp8ayp86y2fLBuUjsfvgqygMYJqdXaHRmoQpUEeWrzeY4myyDoBdI-dBb8K2FhclGqEMCcTGe-lImKrxna6lcmVDXdRpGIBReN6AgsN5wmrC7Z8ouHm-iK3m-u08UXsCWHhysG09iPtX7NwhCWFj7AzO4M1BHGa58ReaBJ_PSZiGdgMeVTTIGVo5l8cF3JJXaOy0QnDT-wPNqdvZAvMyeYpGknIM4nys0dfl1LJwiuvaFLc-vgkIzNyLOpx-Z8Ew_F6q65gb8ywcVlogTQj95gPFjPg-ILTcc7AfdaOzvSrVZnNJw5_iMSaeqSfeJFuIJ9qKygeb1PxEBskwkcNDFyWw3gRV8_YlK6pkz2mCpkGuhM0DEIogpAL71sxeWdNVYksNkBoGlBXLtq99W2wheuWlArL6hjOy6NMXD7CiH66H6qAEH_b8SU18jyCawVQsyhQHgQtaJFTVa1NaZCgm6bzhtj0Cw_iadx7Pzp8RK6KCw7LZWGqjBo5XkK6BTEZFS5rj7M5qU26z47A3fZmLMW25TMAM7lF1xqmQwXvDV-O7oBV_id1QMLdrkw6tiW4uCAEHvhJP0PbA0oz2P9RgTEBoBLWJ14cD3vfrGawg6BRqAhNfG6RxAYdD0FE_aX_vBnSr8XltGF1fLvJrHJy26n3hCqyGiBSE-3CcTvEebZ5tkNr15PQPY56NmbLXQhL5KMFKOzbRHRM-O2A0MX4iJR0kcsNswlav8NPIKL6VOY8pdk4N5Gt7UYqY46GBh59iFvr1-Mj5iHr22EyPQqgaS4Mdb4EvR5IidBDlnjTJkkYdNgZo2jXb2olGXPQ&sai=AMfl-YQuGsdX2J4rx848wRgIc57LJSFq768n9kCajIqaG7jX8XTfUvgkjIG5TqrWvzPJ2RaBrCZ0T5fvOOklbFDdPwtIfdE44pkdsmSUH8sGVS6bfVIpbst11pDEHAskJYkYRlqDusUOSZ6Tknjl7ZyjcPk8RApyj9X9usScvoBMdAKOY8PAzzAuYEisVcqiUVSyyZp5cZIQyXA1IAylAamCAeMib3P2mwXh118Ht9_YzIEdMqn48cvsGtAWzeNm3ByGyJFNrEGum7FrG3XFcnjxuOMse0M6fJyl7wG5QU4Wy9nvJO5fl2IlJXvU8XWzXdl3LnrFG76-0CPfBZXmG5CdWD6JkiVYKfzaqCHhu5AvYbZa7121CgcaJe_FDGQAAU3OeC0v1hFClTRQVR03hJmw6Fr66r7CZ7C4U09t&sig=Cg0ArKJSzFCam7cFjlUvEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=3&cbvp=2&dett=2&cstd=0&cisv=r20241001.37687&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /dcm/dcmads.js HTTP/1.1Host: www.googletagservices.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stickyxchange_dbm&google_hm=NWEyMmVhYzRhZTcxY2MwZjBiMzU1YzQ5ODYzZDZkNQ==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=D463160B91F546D383A1AF8385A1B33A&google_push=AXcoOmShV-Jtc0RSd1rbHkgI_Eyj-B0DmnvvLixLb2rNvHzkMf38HLb3pMjATPv7RlVFZyU8Y1Mcjw32FWGNm0ehaP1l1kshMV69yV9W HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=oath_dbm&google_hm=eS11UWJiX0FSRTJ1SGUwTHVCQ0dkY294Z0hGZ1FtM3h1bn5B&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /sync?UIGL=CAESEIIccipiv8K1-sAAbtkuC5Q&google_cver=1&gdpr=0 HTTP/1.1Host: partners.tremorhub.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=teadstv_dbm&google_hm=ZWVlZjQxZTItYjIzYy00MTFmLTljNjQtNzk3ZDNkYzAzNzQy HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmS_qwRyX3whO3xQLvSc2JgBrDnO1X6pF86whMgAw7VSZjEYKco6wzHdQ5JwZcDLi1z2zEFLH-9drso1Sc7wUKmGo6svitaLdac HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?ssp=bidswitch&bidswitch_ssp_id=google&bsw_custom_parameter=286fbcaf-c685-43ee-8bde-74ddd673711e HTTP/1.1Host: pool.admedo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=6a9b00ba-4e5d-4254-abd4-416f7b5c6c1d; c=1728042088; tuuid_lu=1728042088
Source: global traffic	HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /ddm/activity/attribution_src_register;crd=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
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b&google_hm=KG-8r8aFQ-6L3nTd1nNxHg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_ula=5153224&google_hm=-z20fGN5LACZeLZYrDY8vS4U4B8dNNgPSRxJ0GTSSlI&pi=adx&tdc=ams&pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmSMzdJch9f5yspzBreHk7MkJGMkYmQ7l_CBrHUxRVaoffKY4RNI2u5YLrO2puwm_HkGYBZSRSnlykknHeXLElmJuD0t50Kx0HxNIQ&tc=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmTyFCDwwx6UNnlLcmSN88RNjshcmNS5SmS2VOGMiQ0qsij0fWvXW6TkZOtmWF9T9iQmuHoMbQj8LlPgnZacn2DENsWg7qpOZYs HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=openx&google_hm=NDY2MmIzMjgtOWQ1MC0yZWVkLWVjNzQtNGI3OTA4OWRhNzhm HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXIoFUECk4FNvCkloFhmBS2oxXCceKSam1esjWsJ0AtzzJXf6WEQfZj9CpxO3jSIRzerEvGRgArgeB-6xT1bWrHGL2lbouxguHuQLmvlFOUyN6QS-KH7VPj6WNJ4ksUBlOXuyq2x_QC8xWGD-qYu-Qksm8uU2ncCyX5VHLlAeFhAacxIZGPoRiQo0aG/__300x250px./writelayerad._468x80./ads/proximic./ad12. HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /v1/api/sync/AdxPixel?google_gid=CAESEAmTNgM_-pcFL5ffd_dk1kc&google_cver=1&google_push=AXcoOmQ9LWzOZX_W7ZE8MEuN6TtpvUxlswkb4ZYnGUx6uHdHBQtMz2EZHVoYNfztAT4ZT3vkqDhrk-8T4eqsTAD75Ut35hK3ikYD7g HTTP/1.1Host: tr.blismedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: b=66FFD4661E49E037747341E4BLIS
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEFi9PqLuqTCfmE2lDk5eZnw&google_cver=1&google_push=AXcoOmSdWHq4-e5JyuA-tIqiieYbVsQelGc07_N0LXqw6gPc5m_Q3M_32aCfbB6iWUy_u2v8p8v2B9jmEPWMukD8RaQ4pG1We68zaaA HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: suid=32B60805DE8843869CBAC4833A2F49DB
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmTAclBd83KAvnaABRyrRCf7yt7MOk-96fMjSy57xseyO8ttKEsYmU6H_0tsjTuI3BaYTkkxRTzWz_-2Ki9ETn3rAqtToDamDQs&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: dis.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmQM0a1_7HN4Aa2vmAopd9Qoj-gK-nSr9daJS2E11Gzxb00FrltUC4NxWKD_CvkFqetecjTmapofswe8yPzUovSWnlGf14SZi62B HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: g=1D6xnsGMXasXsu6Ji6uj_1728042086362; ts=1728042086
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmT9EAPl8E48z0eEQF1Gw4M_8iQBOO4CuTrZ6xalCQ4vHxvtzD3c7FOKiAx6UAozNPvJ76sC3ENu9H-tNK5pXhBkeUF-wHPFqQ HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=4a7a769d-5c1b-4c0b-8955-8bf06fc08476; c=1728042087; tuuid_lu=1728042088; google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESEPv97O-fbD076H-t7qpclug&google_cver=1&google_push=AXcoOmTkkplSMNuUbwG3x2NG_dbKePuR3T5dWVXLXR_LDUR7zhwNuwEjGQXutwym9n4q2yYewtOiyWndix7PHun4T90HitF2kpvTEpV8 HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dcm/impl_v102.js HTTP/1.1Host: www.googletagservices.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ddm/adj/N5949.4624185PMPRECISION-DV360/B32374903.402688320;dc_ver=102.299;dc_eid=40004000;sz=728x90;u_sd=1;gdpr=0;nel=1;dsp_bidurl_0_=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html;dsp_campaignid_0_=1018246531;dsp_chanid_0_=1;dsp_id_0_=3;dsp_impid_0_=v4~~ABAjH0i9hZc-8y6MO2Hpn_Nm9X38;dsp_placementid_0_=21626961814;dsp_publisherid_0_=pub-1673399160710718;dc_adk=2515327493;ord=i4o504;click=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCaPy8YdT_ZtWwGfzEvPIP4dmvsAqsuKLgeaDP2t-oE5rT0_rHPBABIOfA1G1gyQagAYa8z90pyAEJqAMByAObBKoE9wFP0EWgCNsR6eleUlqz_k0VM78gpeNEj7AfLw9XXGL0OoLRM6fWevKyfAlDNSEZeV5b8kE6sM_GlweNK3opoB6Cu6b8pwmKngOydkqegOfK_w0H8bJfl7GrSjZxU00R8KaD5sh6m16CXcfSLS_m5FJTJkSFVAoyp0oDU5--_9CFxM6FWM9Y1t4BSfdWSFl5kawLy0IxdpSGMVPXlVYyfNGDRHmMOtgPgOnT4WaD_7iO8l9Pk9cvb4DxHBIuGJ5bpmIGFlRCRjB-mY6VXLkK1WwBu5A8U6lm_qeNkYUxOSFNZagaXrpOOR0tVb1yvSE_lrHhmX74H4cJwASu8u2p-gTgBAOIBZb_xMhQkAYBoAZNgAeG9J-9BKgH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WNfuqbPS9IgDgAoBmAsByAsBgAwBqg0CVVOwE_GDtRnYEw3YFAHQFQH4FgGAFwGyFwIYArIYCRICu08YTSIBAA%26ae%3D1%26num%3D1%26cid%3DCAQSOwDpaXnfkS-bbuqP9x9QQyyOD2GRAoZdyeO5F5pGbPV0L8uEDBKTZo5XfOkU--scFfZXG7ofltUbClvTGAE%26sig%3DAOD64_0Vc8reaXw4shiVFJfB1e3wd0kKcQ%26client%3Dca-pub-1673399160710718%26dbm_c%3DAKAmf-CjBKcSzP2EhMT-P8pZ4DJZ5XvidxAh4dJvdiP-lgN2U6sLXGJGEcDdTb3jTwWxwc0a_IMOhDpM88SrdF0P9OvU_BIbBYRbrWrerzm-8n8vG34ylYOP1VTFO2CkrqyphG2PeJqNPzKC_Kgghbdhjps6s4-b1XIGqtQWsuxoaFkH_YeCDcDpRAfuXL6izGfZEc5c9wWoO1lJqnTo3RBMKnWeKMGkq1V1iyWHvdnraDZN4gTPVnQ%26cry%3D1%26dbm_d%3DAKAmf-CigrglGbo65n8NWkBJpRAbuqXTttSR5nfAqVDMArQA9qxRGIwYWaeDuVGjVgoxNVjxIGorjBApmk8yq82iuRh0ezadBosHp_He9Cm9dJui78YQuebymQxja_69Lajkwb5KoWtcq6hzdYMN67sl8WoFBNQpHAJQXowFJf9W-6T8NkJTvmkOZvTWyNfWsDmXIZXIcpdnOKAqrpbOAbsnhSjVB4NRsUPmFvRl9Gfym6QolBvimVl7eniMSZ2VPmSwalMwrcggv_5osgtN-Ehr9tQoqybAfyEiHY1EbQxoCnPo3wLi5GXkgixodBTrS3B1NAbZ-6yiWQfZav-TdvuBNh-lSd4C6IAsBQV3JmciWYeY864epNMb05Jx3ABnu1qrbIo5aFixO3FBzJKvPOHf_b6wRKPop19qo2sIBLnpgADkJkjE0e_EUJSwj4yM8VpP7t-x5VYt76dCtLxrBW-hJLzVyOd6nDXPDj9VQed0z8hW81_pALV4xYaT6lBu-GXyL2Y5xFo7hrVqrpqj7Hs9vKHS7WeUMyBM-PkMrXBYsVWiqfJNTdFFgbSbraXq7rzJrOFEIYaLBriwO16B61e2q1CY9a8_QI0JamL5dUJOqgSLTzYdViBu6Bp704NuWb1ddpbTw9lvFtvAsCByuQKhMypPx8hp-epMW_y7Lpby8q4ck26Qfyg%26adurl%3D;uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.;dc_rfl=2,https%3A%2F%2Fwww.haoqq.com%2F$0;xdt=1;dc_omid_p=Google2;dc_sdk_apis=7;crlt=Fc(KI5OQPr;cmpl=8;gcsr=a;stc=1;asnm=1;chaa=1;sttr=1198;prcl=s HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWe
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmR11UtxP_Ii637T9zKReutj2apnPx_WJF0oR9Zyaxhm5KL_Jouop6HQU1PHA5OC-ZWLUGj4Sjy_JRbrXm-aS9qTfkX793Y7_a4 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=e335e2e1-b80f-4249-b64b-19f1016b75ba; TDCPM=CAESFQoGZ29vZ2xlEgsI6p-uuvCcsj0QBRgFIAEoAjILCPqph96GnbI9EAU4AQ..
Source: global traffic	HTTP traffic detected: GET /sync?UIGL=CAESEIIccipiv8K1-sAAbtkuC5Q&google_cver=1&gdpr=0 HTTP/1.1Host: partners.tremorhub.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stickyxchange_dbm&google_hm=NWEyMmVhYzRhZTcxY2MwZjBiMzU1YzQ5ODYzZDZkNQ==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=oath_dbm&google_hm=eS11UWJiX0FSRTJ1SGUwTHVCQ0dkY294Z0hGZ1FtM3h1bn5B&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=FF57ED73B11F42F1BF9D7A824A85EB0E&google_push=AXcoOmQnNLICDQEa3vo6G_jaTp0NK-2q-MGnmoNPYU3Aa2sIj7Rxn0cU26cd4a8b_IFvGN63TwpI48Ce2Jhn1M-z_WPNWRTnZv5PfbI HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmSG2y2CKSsJHjNe49B23UO6-5g3bFSL2LYXX_GQWIMBaewczfO2x8EyvksJW-qUf0IyZLinmX_ctJGlnpQh0UG90kQ-Di98fpQn HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVF1WVknfajFSvSyNXrJnzl2B-mha6FQQi4nnoFF1mWNowc8MGoU1E2B_3c4NWn5J87On0Jwr0QBJVJYoVMiY9AtIpKcrMGQ5NF25vYOWxztazCq03EhKygdfL9bAylFwqTCk67uA==?fccs=W1siQUtzUm9sX1UzYkRuRTllck5UaXR1SkNIdUZqZjhURXdPTnVzSDcxczU5TlVqOXdMeHA3UUFNX1lSM2pCODJHLUR6SjFDYnhUekUzb1hqbkpuM2tmQjdsVzFXck9PSmpodXNWNGpvalBNT3oxaXNhQWN1Szk0bTQxdkktcGdTQ2NtMHhYMHplcTJvRDYySlhJN1lsRXh5NS1xbm9NckF6ZU93PT0iXSxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsWzE3MjgwNDIwODcsOTY1MDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbNyw5LDZdLG51bGwsMixudWxsLCJlbi1HQiIsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLDFdLCJodHRwczovL3d3dy5oYW9xcS5jb20vbmV3cy9pLzNCOUM4M0UwLTU5QkEtNkVDQi1ERjcxLTY3QzY1ODVCMEUyOC5odG1sIixudWxsLFtbOCwiZXNrV1hTRkhzUWciXSxbOSwiZW4tVVMiXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /sync?dsp_id=23&expires=14&user_id=6a9b00ba-4e5d-4254-abd4-416f7b5c6c1d&user_group=1&ssp=google&bsw_param=286fbcaf-c685-43ee-8bde-74ddd673711e HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=4a7a769d-5c1b-4c0b-8955-8bf06fc08476; c=1728042087; tuuid_lu=1728042088; google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmTs1_ll0D_RCewYKHbjcou2C-D9XigwEMKV_u-aZD-O41ML3SE9fdZH5w_1zibbiRxTdKUAFgAe8aWsnlS_ljhlXIAw66tm7YJT HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmS_qwRyX3whO3xQLvSc2JgBrDnO1X6pF86whMgAw7VSZjEYKco6wzHdQ5JwZcDLi1z2zEFLH-9drso1Sc7wUKmGo6svitaLdac HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=32B60805DE8843869CBAC4833A2F49DB&google_push=AXcoOmRuShbATQDatQq4sJWhdwSrBaGF1h8JWd189LN0U19evDjkxqz6PEo6NN4Cmk1GaEawPQp5AY2xig2e6DaJALkaVLbrCocgGg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFCVjVrN05fNmtBQUJWQVNGSWo2UQ&google_push=AXcoOmRbtMccDxJg2BjT3wnvT1aepLpjWQ_QuS-yRl_uN-efUYE_YqPR6ef0-7Yh5T8BxoQ4rpvAjuN3vlHpI_ROEJWbBvpxn8ySqG3c&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmTAclBd83KAvnaABRyrRCf7yt7MOk-96fMjSy57xseyO8ttKEsYmU6H_0tsjTuI3BaYTkkxRTzWz_-2Ki9ETn3rAqtToDamDQs&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b&google_hm=KG-8r8aFQ-6L3nTd1nNxHg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /879366/express_html_inpage_rendering_lib_200_280.js HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFCMXlVN05fNmtBQUJlN3dNeFYyZw&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFFTlQwN05fNmtBQUJXeDRZMEJRUQ&google_push=AXcoOmT4o063xBBQDu0z4njujpW3iMXyySg6RrAn0VBLP2vry8QG1govK7gCAyoaJNfaM1IIP-17W1aBlEfY617IxoiLn9u3SbkN4a0&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_ula=5153224&google_hm=-z20fGN5LACZeLZYrDY8vS4U4B8dNNgPSRxJ0GTSSlI&pi=adx&tdc=ams&pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmSMzdJch9f5yspzBreHk7MkJGMkYmQ7l_CBrHUxRVaoffKY4RNI2u5YLrO2puwm_HkGYBZSRSnlykknHeXLElmJuD0t50Kx0HxNIQ&tc=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmTAclBd83KAvnaABRyrRCf7yt7MOk-96fMjSy57xseyO8ttKEsYmU6H_0tsjTuI3BaYTkkxRTzWz_-2Ki9ETn3rAqtToDamDQs&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rjss/st/2197957/82023115/skeleton.js?bundleId=${BUNDLE_ID}&ias_dspID=3&ias_campId=1018246531&ias_pubId=pub-1673399160710718&ias_chanId=1&ias_placementId=21626961814&bidurl=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&ias_dealId=&ias_xappb=&adsafe_par&ias_impId=v4~~ABAjH0i9hZc-8y6MO2Hpn_Nm9X38 HTTP/1.1Host: fw.adsafeprotected.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ddm/adj/N5949.4624185PMPRECISION-DV360/B32374903.402688320;dc_ver=102.299;dc_eid=40004000;sz=728x90;u_sd=1;gdpr=0;nel=1;dsp_bidurl_0_=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html;dsp_campaignid_0_=1018246531;dsp_chanid_0_=1;dsp_id_0_=3;dsp_impid_0_=v4~~ABAjH0i9hZc-8y6MO2Hpn_Nm9X38;dsp_placementid_0_=21626961814;dsp_publisherid_0_=pub-1673399160710718;dc_adk=2515327493;ord=i4o504;click=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCaPy8YdT_ZtWwGfzEvPIP4dmvsAqsuKLgeaDP2t-oE5rT0_rHPBABIOfA1G1gyQagAYa8z90pyAEJqAMByAObBKoE9wFP0EWgCNsR6eleUlqz_k0VM78gpeNEj7AfLw9XXGL0OoLRM6fWevKyfAlDNSEZeV5b8kE6sM_GlweNK3opoB6Cu6b8pwmKngOydkqegOfK_w0H8bJfl7GrSjZxU00R8KaD5sh6m16CXcfSLS_m5FJTJkSFVAoyp0oDU5--_9CFxM6FWM9Y1t4BSfdWSFl5kawLy0IxdpSGMVPXlVYyfNGDRHmMOtgPgOnT4WaD_7iO8l9Pk9cvb4DxHBIuGJ5bpmIGFlRCRjB-mY6VXLkK1WwBu5A8U6lm_qeNkYUxOSFNZagaXrpOOR0tVb1yvSE_lrHhmX74H4cJwASu8u2p-gTgBAOIBZb_xMhQkAYBoAZNgAeG9J-9BKgH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WNfuqbPS9IgDgAoBmAsByAsBgAwBqg0CVVOwE_GDtRnYEw3YFAHQFQH4FgGAFwGyFwIYArIYCRICu08YTSIBAA%26ae%3D1%26num%3D1%26cid%3DCAQSOwDpaXnfkS-bbuqP9x9QQyyOD2GRAoZdyeO5F5pGbPV0L8uEDBKTZo5XfOkU--scFfZXG7ofltUbClvTGAE%26sig%3DAOD64_0Vc8reaXw4shiVFJfB1e3wd0kKcQ%26client%3Dca-pub-1673399160710718%26dbm_c%3DAKAmf-CjBKcSzP2EhMT-P8pZ4DJZ5XvidxAh4dJvdiP-lgN2U6sLXGJGEcDdTb3jTwWxwc0a_IMOhDpM88SrdF0P9OvU_BIbBYRbrWrerzm-8n8vG34ylYOP1VTFO2CkrqyphG2PeJqNPzKC_Kgghbdhjps6s4-b1XIGqtQWsuxoaFkH_YeCDcDpRAfuXL6izGfZEc5c9wWoO1lJqnTo3RBMKnWeKMGkq1V1iyWHvdnraDZN4gTPVnQ%26cry%3D1%26dbm_d%3DAKAmf-CigrglGbo65n8NWkBJpRAbuqXTttSR5nfAqVDMArQA9qxRGIwYWaeDuVGjVgoxNVjxIGorjBApmk8yq82iuRh0ezadBosHp_He9Cm9dJui78YQuebymQxja_69Lajkwb5KoWtcq6hzdYMN67sl8WoFBNQpHAJQXowFJf9W-6T8NkJTvmkOZvTWyNfWsDmXIZXIcpdnOKAqrpbOAbsnhSjVB4NRsUPmFvRl9Gfym6QolBvimVl7eniMSZ2VPmSwalMwrcggv_5osgtN-Ehr9tQoqybAfyEiHY1EbQxoCnPo3wLi5GXkgixodBTrS3B1NAbZ-6yiWQfZav-TdvuBNh-lSd4C6IAsBQV3JmciWYeY864epNMb05Jx3ABnu1qrbIo5aFixO3FBzJKvPOHf_b6wRKPop19qo2sIBLnpgADkJkjE0e_EUJSwj4yM8VpP7t-x5VYt76dCtLxrBW-hJLzVyOd6nDXPDj9VQed0z8hW81_pALV4xYaT6lBu-GXyL2Y5xFo7hrVqrpqj7Hs9vKHS7WeUMyBM-PkMrXBYsVWiqfJNTdFFgbSbraXq7rzJrOFEIYaLBriwO16B61e2q1CY9a8_QI0JamL5dUJOqgSLTzYdViBu6Bp704NuWb1ddpbTw9lvFtvAsCByuQKhMypPx8hp-epMW_y7Lpby8q4ck26Qfyg%26adurl%3D;uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.;dc_rfl=2,https%3A%2F%2Fwww.haoqq.com%2F$0;xdt=1;dc_omid_p=Google2;dc_sdk_apis=7;crlt=Fc(KI5OQPr;cmpl=8;gcsr=a;stc=1;asnm=1;chaa=1;sttr=1198;prcl=s HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQE
Source: global traffic	HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13KZyqIKoftLE_njit3bvfDK5zr4-Qbcbp3ChKE8NLq2bYy2_HgvtCgqtwro7DB5Q6q_Zhps9Bg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmSG2y2CKSsJHjNe49B23UO6-5g3bFSL2LYXX_GQWIMBaewczfO2x8EyvksJW-qUf0IyZLinmX_ctJGlnpQh0UG90kQ-Di98fpQn HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=blismobile&google_push=AXcoOmQ9LWzOZX_W7ZE8MEuN6TtpvUxlswkb4ZYnGUx6uHdHBQtMz2EZHVoYNfztAT4ZT3vkqDhrk-8T4eqsTAD75Ut35hK3ikYD7g&google_hm=hmb_1GYeSeA3dHNB5A&google_redir=https%3A%2F%2Ftr.blismedia.com%2Fv1%2Fredirect%2FAdxPixel%3F%25%25GOOGLE_ERROR_PAIR%25%25%26partner_device_id%3D66FFD4661E49E037747341E4BLIS HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=FF57ED73B11F42F1BF9D7A824A85EB0E&google_push=AXcoOmQnNLICDQEa3vo6G_jaTp0NK-2q-MGnmoNPYU3Aa2sIj7Rxn0cU26cd4a8b_IFvGN63TwpI48Ce2Jhn1M-z_WPNWRTnZv5PfbI HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVF1WVknfajFSvSyNXrJnzl2B-mha6FQQi4nnoFF1mWNowc8MGoU1E2B_3c4NWn5J87On0Jwr0QBJVJYoVMiY9AtIpKcrMGQ5NF25vYOWxztazCq03EhKygdfL9bAylFwqTCk67uA==?fccs=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 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmTs1_ll0D_RCewYKHbjcou2C-D9XigwEMKV_u-aZD-O41ML3SE9fdZH5w_1zibbiRxTdKUAFgAe8aWsnlS_ljhlXIAw66tm7YJT HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=32B60805DE8843869CBAC4833A2F49DB&google_push=AXcoOmRuShbATQDatQq4sJWhdwSrBaGF1h8JWd189LN0U19evDjkxqz6PEo6NN4Cmk1GaEawPQp5AY2xig2e6DaJALkaVLbrCocgGg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFCVjVrN05fNmtBQUJWQVNGSWo2UQ&google_push=AXcoOmRbtMccDxJg2BjT3wnvT1aepLpjWQ_QuS-yRl_uN-efUYE_YqPR6ef0-7Yh5T8BxoQ4rpvAjuN3vlHpI_ROEJWbBvpxn8ySqG3c&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_ula=5153224&google_hm=-z20fGN5LACZeLZYrDY8vS4U4B8dNNgPSRxJ0GTSSlI&pi=adx&tdc=ams&pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmQM0a1_7HN4Aa2vmAopd9Qoj-gK-nSr9daJS2E11Gzxb00FrltUC4NxWKD_CvkFqetecjTmapofswe8yPzUovSWnlGf14SZi62B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmT9EAPl8E48z0eEQF1Gw4M_8iQBOO4CuTrZ6xalCQ4vHxvtzD3c7FOKiAx6UAozNPvJ76sC3ENu9H-tNK5pXhBkeUF-wHPFqQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=32B60805DE8843869CBAC4833A2F49DB&google_push=AXcoOmSdWHq4-e5JyuA-tIqiieYbVsQelGc07_N0LXqw6gPc5m_Q3M_32aCfbB6iWUy_u2v8p8v2B9jmEPWMukD8RaQ4pG1We68zaaA HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmTkkplSMNuUbwG3x2NG_dbKePuR3T5dWVXLXR_LDUR7zhwNuwEjGQXutwym9n4q2yYewtOiyWndix7PHun4T90HitF2kpvTEpV8 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/index.html?ev=01_252 HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjsuvtIqzVY3ggWg3jVmRPkf4eU6UofNdZmU2iGH8lgkVsKG3xfGxi6O2lRHyOKn50YBLBiTc8MMX9QSagI6L5CaNPQZpEjxADTDWPZWTdYuONI2U1vduc5l9pQ31kaQgrLrKET67tDYUaF0Svqh8GOaRqwMkSqhfD5mOtOVYjQRCAJaHG0B81WmKbF0EQd7FZKUG_JFvsnTI&sai=AMfl-YQZJKu8l0SQ73izwOFHJYrUwCpfXmwD_G4vHiwb17J1h1X9KlyR2k-yockDal06uaYx0oPeQxsppA_IEe0q9zFenHZBh3kRRRI&sig=Cg0ArKJSzAcRQsGeMpwpEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9rYXkuY29tLGh0dHBzOi8vZG90b21pLmNvbQ&cry=1&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=1206&cbvp=1&cstd=1198&cisv=r20241001.96553&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source;navigation-sourceReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /879366/express_html_inpage_rendering_lib_200_280.js HTTP/1.1Host: s0.2mdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFCMXlVN05fNmtBQUJlN3dNeFYyZw&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFFTlQwN05fNmtBQUJXeDRZMEJRUQ&google_push=AXcoOmT4o063xBBQDu0z4njujpW3iMXyySg6RrAn0VBLP2vry8QG1govK7gCAyoaJNfaM1IIP-17W1aBlEfY617IxoiLn9u3SbkN4a0&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=blismobile&google_push=AXcoOmQ9LWzOZX_W7ZE8MEuN6TtpvUxlswkb4ZYnGUx6uHdHBQtMz2EZHVoYNfztAT4ZT3vkqDhrk-8T4eqsTAD75Ut35hK3ikYD7g&google_hm=hmb_1GYeSeA3dHNB5A&google_redir=https%3A%2F%2Ftr.blismedia.com%2Fv1%2Fredirect%2FAdxPixel%3F%25%25GOOGLE_ERROR_PAIR%25%25%26partner_device_id%3D66FFD4661E49E037747341E4BLIS HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmT9EAPl8E48z0eEQF1Gw4M_8iQBOO4CuTrZ6xalCQ4vHxvtzD3c7FOKiAx6UAozNPvJ76sC3ENu9H-tNK5pXhBkeUF-wHPFqQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjsuvtIqzVY3ggWg3jVmRPkf4eU6UofNdZmU2iGH8lgkVsKG3xfGxi6O2lRHyOKn50YBLBiTc8MMX9QSagI6L5CaNPQZpEjxADTDWPZWTdYuONI2U1vduc5l9pQ31kaQgrLrKET67tDYUaF0Svqh8GOaRqwMkSqhfD5mOtOVYjQRCAJaHG0B81WmKbF0EQd7FZKUG_JFvsnTI&sai=AMfl-YQZJKu8l0SQ73izwOFHJYrUwCpfXmwD_G4vHiwb17J1h1X9KlyR2k-yockDal06uaYx0oPeQxsppA_IEe0q9zFenHZBh3kRRRI&sig=Cg0ArKJSzAcRQsGeMpwpEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9rYXkuY29tLGh0dHBzOi8vZG90b21pLmNvbQ&cry=1&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=1206&cbvp=1&cstd=1198&cisv=r20241001.96553&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/b959f22280157e2c555913dccd91372b.js HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=32B60805DE8843869CBAC4833A2F49DB&google_push=AXcoOmSdWHq4-e5JyuA-tIqiieYbVsQelGc07_N0LXqw6gPc5m_Q3M_32aCfbB6iWUy_u2v8p8v2B9jmEPWMukD8RaQ4pG1We68zaaA HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_ula=5153224&google_hm=-z20fGN5LACZeLZYrDY8vS4U4B8dNNgPSRxJ0GTSSlI&pi=adx&tdc=ams&pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmQM0a1_7HN4Aa2vmAopd9Qoj-gK-nSr9daJS2E11Gzxb00FrltUC4NxWKD_CvkFqetecjTmapofswe8yPzUovSWnlGf14SZi62B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmTkkplSMNuUbwG3x2NG_dbKePuR3T5dWVXLXR_LDUR7zhwNuwEjGQXutwym9n4q2yYewtOiyWndix7PHun4T90HitF2kpvTEpV8 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /sync/stickyads/834c591d97ba1180d18da6e4f93f46f9?gdpr=0&gdpr_consent= HTTP/1.1Host: pr-bh.ybp.yahoo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBFPU_2YCEMHQmkWA5FtJWDYVa9d9mmIFEgEBAQElAWcJZwAAAAAA_eMAAA&S=AQAAAnQ3ncZmf4JPQPHh-7KC5OM
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/6fc2d839f7cf510e00c9f5bd1132889f.jpg HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/a3a0e34ff72c160c1b186677f13e0128.svg HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/b959f22280157e2c555913dccd91372b.js HTTP/1.1Host: s0.2mdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/25fcc0797a2837d2f439c5a924fd40a6.svg HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/db3df4cf961c8d56e246db246f4d6dc6.svg HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704000v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704001v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=soKWxluS4tuRGfA&MD=yw2KXhkV HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule703251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/6fc2d839f7cf510e00c9f5bd1132889f.jpg HTTP/1.1Host: s0.2mdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: www.wbtd.com
Source: global traffic	DNS traffic detected: DNS query: www.haoqq.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: fundingchoicesmessages.google.com
Source: global traffic	DNS traffic detected: DNS query: 8proof.com
Source: global traffic	DNS traffic detected: DNS query: ad.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: ad.turn.com
Source: global traffic	DNS traffic detected: DNS query: dclk-match.dotomi.com
Source: global traffic	DNS traffic detected: DNS query: a.c.appier.net
Source: global traffic	DNS traffic detected: DNS query: pr-bh.ybp.yahoo.com
Source: global traffic	DNS traffic detected: DNS query: dis.criteo.com
Source: global traffic	DNS traffic detected: DNS query: s.uuidksinc.net
Source: global traffic	DNS traffic detected: DNS query: b1sync.zemanta.com
Source: global traffic	DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: dsum-sec.casalemedia.com
Source: global traffic	DNS traffic detected: DNS query: ib.adnxs.com
Source: global traffic	DNS traffic detected: DNS query: s0.2mdn.net
Source: global traffic	DNS traffic detected: DNS query: widget.us.criteo.com
Source: global traffic	DNS traffic detected: DNS query: r.turn.com
Source: global traffic	DNS traffic detected: DNS query: www.googletagservices.com
Source: global traffic	DNS traffic detected: DNS query: um.simpli.fi
Source: global traffic	DNS traffic detected: DNS query: match.adsrvr.org
Source: global traffic	DNS traffic detected: DNS query: ads.travelaudience.com
Source: global traffic	DNS traffic detected: DNS query: x.bidswitch.net
Source: global traffic	DNS traffic detected: DNS query: match.prod.bidr.io
Source: global traffic	DNS traffic detected: DNS query: creativecdn.com
Source: global traffic	DNS traffic detected: DNS query: gw-iad-bid.ymmobi.com
Source: global traffic	DNS traffic detected: DNS query: us-u.openx.net
Source: global traffic	DNS traffic detected: DNS query: sync.teads.tv
Source: global traffic	DNS traffic detected: DNS query: tr.blismedia.com
Source: global traffic	DNS traffic detected: DNS query: www.temu.com
Source: global traffic	DNS traffic detected: DNS query: pool.admedo.com
Source: global traffic	DNS traffic detected: DNS query: sync.search.spotxchange.com
Source: global traffic	DNS traffic detected: DNS query: ups.analytics.yahoo.com
Source: global traffic	DNS traffic detected: DNS query: ads.stickyadstv.com
Source: global traffic	DNS traffic detected: DNS query: partners.tremorhub.com
Source: global traffic	DNS traffic detected: DNS query: fw.adsafeprotected.com
Source: global traffic	DNS traffic detected: DNS query: 1f2e7.v.fwmrm.net
Source: global traffic	DNS traffic detected: DNS query: tpt.dotomi.com
Source: global traffic	DNS traffic detected: DNS query: tpt.mediaplex.com
Source: global traffic	DNS traffic detected: DNS query: eb2.3lift.com
Source: global traffic	DNS traffic detected: DNS query: pm.w55c.net
Source: global traffic	DNS traffic detected: DNS query: image8.pubmatic.com
Source: global traffic	DNS traffic detected: DNS query: image2.pubmatic.com

Source: unknown

HTTP traffic detected: POST /el/AGSKWxWEbiabbLcNoqCZt7wzcCVppA1KKQMW-PianScEZ6BnlzNeqGt1pTIKPngiL0rWzyofm4KJEWllWCzqOLNodixwAwx9j3df6SN3r6QXQ3jwstxLWDZM7EXCM-1k0x4BwvQS7B2icQ== HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveContent-Length: 247sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: text/plainAccept: */*Origin: https://www.haoqq.comX-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: chromecache_338.2.dr, chromecache_195.2.dr	String found in binary or memory: http://ad.doubleclick.net/viewad/817-grey.gif
Source: chromecache_317.2.dr, chromecache_306.2.dr	String found in binary or memory: http://gambit.ph
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: http://google.com
Source: chromecache_352.2.dr, chromecache_267.2.dr, chromecache_345.2.dr, chromecache_276.2.dr	String found in binary or memory: http://googleads.g.doubleclick.net
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: http://mathiasbynens.be/
Source: chromecache_401.2.dr, chromecache_294.2.dr	String found in binary or memory: http://opensource.org/licenses/MIT).
Source: chromecache_352.2.dr, chromecache_267.2.dr, chromecache_345.2.dr, chromecache_276.2.dr	String found in binary or memory: http://pagead2.googlesyndication.com
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_214.2.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_214.2.dr	String found in binary or memory: https://ad.doubleclick.net/
Source: chromecache_222.2.dr	String found in binary or memory: https://ads.stickyadstv.com/user-matching?id=11
Source: chromecache_251.2.dr, chromecache_285.2.dr	String found in binary or memory: https://adsense.com.
Source: chromecache_396.2.dr, chromecache_267.2.dr, chromecache_330.2.dr, chromecache_276.2.dr	String found in binary or memory: https://cdn.ampproject.org/amp4ads-host-v0.js
Source: chromecache_396.2.dr, chromecache_330.2.dr	String found in binary or memory: https://cdn.ampproject.org/rtv/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://cdn.ampproject.org/rtv/$
Source: chromecache_278.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_cm&google_dbm&gdpr=0
Source: chromecache_278.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dsp_secure&google_cm&google_dbm&gdpr=0
Source: chromecache_350.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=openx&google_cm&google_dbm
Source: chromecache_286.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=spotxchange_dbm&google_cm&google_dbm&gdpr=0
Source: chromecache_222.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=stickyxchange_dbm&google_cm&google_dbm&gdpr=0
Source: chromecache_350.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=teadstv_dbm&google_cm&google_dbm
Source: chromecache_286.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=tremor_video_dbm&google_cm&google_dbm&gdpr=0
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://cse.google.com/cse.js
Source: chromecache_425.2.dr, chromecache_244.2.dr	String found in binary or memory: https://csp.withgoogle.com/csp/lcreport/
Source: chromecache_278.2.dr	String found in binary or memory: https://dsum-sec.casalemedia.com/rrum?ixi=0&cm_dsp_id=85&gdpr=0&cb=https%3A%2F%2Fcm.g.doubleclick.ne
Source: chromecache_354.2.dr, chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/bg/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/getconfig/sodar
Source: chromecache_354.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=231
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232
Source: chromecache_354.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=231
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232
Source: chromecache_231.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/$
Source: chromecache_220.2.dr, chromecache_341.2.dr	String found in binary or memory: https://fonts.google.com/license/googlerestricted
Source: chromecache_276.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Google
Source: chromecache_276.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Google
Source: chromecache_220.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v61/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RP
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv39oS_a.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv79oQ.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDvD9oS_a.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDvH9oS_a.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDvr9oS_a.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etB77TKx9.woff2
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBD7TA.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBP7TKx9.woff2
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBT7TKx9.woff2
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etB_7TKx9.woff2
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://fundingchoicesmessages.google.com/i/$
Source: chromecache_436.2.dr, chromecache_326.2.dr, chromecache_389.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_404.2.dr, chromecache_304.2.dr	String found in binary or memory: https://github.com/OwlCarousel2/OwlCarousel2/blob/master/LICENSE
Source: chromecache_372.2.dr, chromecache_214.2.dr	String found in binary or memory: https://github.com/google/safevalues/issues
Source: chromecache_436.2.dr, chromecache_326.2.dr, chromecache_389.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/main/LICENSE)
Source: chromecache_436.2.dr, chromecache_389.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/graphs/contributors)
Source: chromecache_345.2.dr, chromecache_276.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_214.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/html/$
Source: chromecache_278.2.dr	String found in binary or memory: https://ib.adnxs.com/getuid?https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=$
Source: chromecache_276.2.dr, chromecache_285.2.dr, chromecache_407.2.dr, chromecache_408.2.dr, chromecache_423.2.dr, chromecache_256.2.dr, chromecache_263.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_354.2.dr, chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/bg/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/getconfig/sodar
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&bin=
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&name=invalid_geo&context=10
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=extra&rnd=
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&lidartos
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&start&control&fle=1&s
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-fallback2
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-later2
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-pagehide2
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-start2
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=reach&proto=
Source: chromecache_197.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=fccs&
Source: chromecache_251.2.dr, chromecache_285.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=plmetrics
Source: chromecache_352.2.dr, chromecache_372.2.dr, chromecache_214.2.dr, chromecache_345.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rcs_internal
Source: chromecache_399.2.dr, chromecache_374.2.dr, chromecache_312.2.dr, chromecache_433.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rhmss
Source: chromecache_354.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=231
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=232
Source: chromecache_396.2.dr, chromecache_330.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_257.2.dr, chromecache_423.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=urind
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/html/$
Source: chromecache_388.2.dr, chromecache_434.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/
Source: chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/$
Source: chromecache_352.2.dr, chromecache_267.2.dr, chromecache_345.2.dr, chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=
Source: chromecache_302.2.dr, chromecache_417.2.dr, chromecache_242.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1673399160710718
Source: chromecache_352.2.dr, chromecache_257.2.dr, chromecache_267.2.dr, chromecache_251.2.dr, chromecache_345.2.dr, chromecache_276.2.dr, chromecache_285.2.dr, chromecache_423.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/err_rep.js
Source: chromecache_267.2.dr, chromecache_251.2.dr, chromecache_276.2.dr, chromecache_285.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/logging_library.js
Source: chromecache_285.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/$
Source: chromecache_214.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping
Source: chromecache_276.2.dr, chromecache_285.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping?e=1
Source: chromecache_246.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?
Source: chromecache_354.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=231
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=232
Source: chromecache_338.2.dr, chromecache_195.2.dr	String found in binary or memory: https://s0.2mdn.net/ads/richmedia/studio/mu/templates/hifi/hifi.js
Source: chromecache_338.2.dr, chromecache_195.2.dr	String found in binary or memory: https://s0.2mdn.net/ads/richmedia/studio_canary/mu/templates/hifi/hifi_canary.js
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/static/topics/topics_frame.html
Source: chromecache_286.2.dr	String found in binary or memory: https://sync.search.spotxchange.com/partner?adv_id=7025&gdpr=0&redir=https%3A%2F%2Fcm.g.doubleclick.
Source: chromecache_350.2.dr	String found in binary or memory: https://sync.teads.tv/um?eid=3&uid=&fb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dtea
Source: chromecache_231.2.dr	String found in binary or memory: https://tpc.googlesyndication.com
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/$
Source: chromecache_222.2.dr	String found in binary or memory: https://ups.analytics.yahoo.com/ups/58269/sync?_origin=1&gdpr=0&redir=true
Source: chromecache_350.2.dr	String found in binary or memory: https://us-u.openx.net/w/1.0/cm?id=9ca165a9-d9fe-2ff6-d83d-d145a80b0d37&r=https%3A%2F%2Fcm.g.doublec
Source: chromecache_231.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_251.2.dr, chromecache_285.2.dr	String found in binary or memory: https://www.google.com/adsense
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://www.google.com/adsense/search/async-ads.js
Source: chromecache_354.2.dr, chromecache_267.2.dr, chromecache_276.2.dr, chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/aframe
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://www.google.com/s2/favicons?sz=64&domain_url=
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/managed/js/activeview/
Source: chromecache_276.2.dr	String found in binary or memory: https://www.gstatic.com
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://www.gstatic.com/prose/protected/$

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50498 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50532 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50502
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50504
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50503
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50506
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 50417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50505
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50440 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50507
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50486 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50509
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50513
Source: unknown	Network traffic detected: HTTP traffic on port 50359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50515
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50514
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50517
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50516
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50519
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50518
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50511
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50510
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50544 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 50439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50524
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50523
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50525
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50528
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50529
Source: unknown	Network traffic detected: HTTP traffic on port 50507 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50522
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50510 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 50335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 50282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50522 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50407 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50208 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50534 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50496 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50337
Source: unknown	Network traffic detected: HTTP traffic on port 50420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50386 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50338
Source: unknown	Network traffic detected: HTTP traffic on port 50546 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 50466 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 50505 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50358
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50351
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50353
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 50374 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50356
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 50419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 50255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 50524 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 50478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50535
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50534
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50537
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50536
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50539
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50538
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50531
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50530
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50533
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50532
Source: unknown	Network traffic detected: HTTP traffic on port 50350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50536 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50410 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50546
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50545
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50548
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50547
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50549
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50309
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50540
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50542
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50541
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50544
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50301
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50543
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 50384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 50548 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50551
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50311
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 50454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 50503 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50321
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50514 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50409 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50295
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50389 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50400 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50377 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 50331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 50240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 50434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50537 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50502 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50515 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50458 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50549 -> 443

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.6:49768 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50066 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50325 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50325 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.6:50355 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50394 version: TLS 1.2

Source: classification engine

Classification label: mal48.win@24/418@155/56

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2352 --field-trial-handle=2292,i,14619693789837683360,10101700089954709903,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.wbtd.com/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2352 --field-trial-handle=2292,i,14619693789837683360,10101700089954709903,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
15.197.225.128	wbtd.com	United States	7430	TANDEMUS	false
37.252.171.149	unknown	European Union	29990	ASN-APPNEXUS	false
35.190.0.66	ads.travelaudience.com	United States	15169	GOOGLEUS	false
142.250.185.226	unknown	United States	15169	GOOGLEUS	false
63.34.85.210	ds-pr-bh.ybp.gysm.yahoodns.net	United States	16509	AMAZON-02US	false
46.137.57.71	match.prod.bidr.io	Ireland	16509	AMAZON-02US	false
20.157.217.65	gw-c-eu-isp.temu.com	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
142.250.186.70	unknown	United States	15169	GOOGLEUS	false
198.47.127.205	pug-ams-bc.pubmnet.com	United States	62713	AS-PUBMATICUS	false
3.77.232.241	cdn.w55c.net	United States	16509	AMAZON-02US	false
3.209.57.129	unknown	United States	14618	AMAZON-AESUS	false
142.250.184.198	unknown	United States	15169	GOOGLEUS	false
142.250.184.194	unknown	United States	15169	GOOGLEUS	false
172.217.18.6	s0.2mdn.net	United States	15169	GOOGLEUS	false
52.48.108.123	unknown	United States	16509	AMAZON-02US	false
104.18.36.155	unknown	United States	13335	CLOUDFLARENETUS	false
47.238.94.14	www.haoqq.com	United States	20115	CHARTER-20115US	false
185.184.8.90	creativecdn.com	Poland	204995	RTB-HOUSE-AMSNL	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
198.47.127.18	imgsync-amsfpairbc.pubmnet.com	United States	62713	AS-PUBMATICUS	false
35.206.140.87	adizio-stable-europe-west1.pumpkin.uverse.iponweb.net	United States	19527	GOOGLE-2US	false
34.243.210.180	unknown	United States	16509	AMAZON-02US	false
142.250.186.142	www3.l.google.com	United States	15169	GOOGLEUS	false
47.253.61.56	bid-iad-static.yeahtargeter.com	United States	45102	CNNIC-ALIBABA-US-NET-APAlibabaUSTechnologyCoLtdC	false
172.217.16.194	www.googletagservices.com	United States	15169	GOOGLEUS	false
52.223.40.198	match.adsrvr.org	United States	8987	AMAZONEXPANSIONGB	false
142.250.186.102	unknown	United States	15169	GOOGLEUS	false
50.31.142.31	chidc2.outbrain.org	United States	22075	AS-OUTBRAINUS	false
52.116.53.150	8proof.com	United States	36351	SOFTLAYERUS	false
35.214.136.108	user-data-eu.bidswitch.net	United States	19527	GOOGLE-2US	false
35.204.74.118	um.simpli.fi	United States	15169	GOOGLEUS	false
185.89.210.212	ib.anycast.adnxs.com	Germany	29990	ASN-APPNEXUS	false
142.250.186.130	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
3.71.149.231	ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud	United States	16509	AMAZON-02US	false
172.64.151.101	dsum-sec.casalemedia.com	United States	13335	CLOUDFLARENETUS	false
142.250.185.166	unknown	United States	15169	GOOGLEUS	false
216.58.206.38	unknown	United States	15169	GOOGLEUS	false
216.58.206.36	www.google.com	United States	15169	GOOGLEUS	false
35.244.159.8	us-u.openx.net	United States	15169	GOOGLEUS	false
46.228.164.11	presentation-ams1.turn.com	United Kingdom	56396	TURNGB	false
185.98.54.153	s.uuidksinc.net	Netherlands	39572	ADVANCEDHOSTERS-ASNL	false
52.214.60.119	firewall-external-2134955858.eu-west-1.elb.amazonaws.com	United States	16509	AMAZON-02US	false
142.250.186.134	ad.doubleclick.net	United States	15169	GOOGLEUS	false
172.217.18.110	unknown	United States	15169	GOOGLEUS	false
34.96.105.8	tr.blismedia.com	United States	15169	GOOGLEUS	false
142.250.186.98	unknown	United States	15169	GOOGLEUS	false
76.223.111.18	eu-eb2.3lift.com	United States	16509	AMAZON-02US	false
178.250.1.9	widget.nl3.vip.prod.criteo.com	France	44788	ASN-CRITEO-EUROPEFR	false
74.119.117.16	widget.us5.vip.prod.criteo.com	United States	19750	AS-CRITEOUS	false
142.250.185.132	unknown	United States	15169	GOOGLEUS	false
34.197.42.150	partners-alb-1113315349.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
142.250.181.226	cm.g.doubleclick.net	United States	15169	GOOGLEUS	false
34.98.64.218	unknown	United States	15169	GOOGLEUS	false
142.250.186.166	unknown	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.6
192.168.2.5

Contacted Domains

Name	IP	Active
um.simpli.fi	35.204.74.118	true
tr.blismedia.com	34.96.105.8	true
www.googletagservices.com	172.217.16.194	true
user-data-eu.bidswitch.net	35.214.136.108	true
eu-eb2.3lift.com	76.223.111.18	true
cdn.w55c.net	3.77.232.241	true
bid-iad-static.yeahtargeter.com	47.253.61.56	true
ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud	3.71.149.231	true
wbtd.com	15.197.225.128	true
widget.nl3.vip.prod.criteo.com	178.250.1.9	true
cm.g.doubleclick.net	142.250.181.226	true
ds-pr-bh.ybp.gysm.yahoodns.net	63.34.85.210	true
www.google.com	216.58.206.36	true
match.adsrvr.org	52.223.40.198	true
www.haoqq.com	47.238.94.14	true
match.prod.bidr.io	46.137.57.71	true
chidc2.outbrain.org	50.31.142.31	true
creativecdn.com	185.184.8.90	true
us-u.openx.net	35.244.159.8	true
ad.doubleclick.net	142.250.186.134	true
s.uuidksinc.net	185.98.54.153	true
gw-c-eu-isp.temu.com	20.157.217.65	true
8proof.com	52.116.53.150	true
imgsync-amsfpairbc.pubmnet.com	198.47.127.18	true
adizio-stable-europe-west1.pumpkin.uverse.iponweb.net	35.206.140.87	true
firewall-external-2134955858.eu-west-1.elb.amazonaws.com	52.214.60.119	true
googleads.g.doubleclick.net	142.250.186.130	true
www3.l.google.com	142.250.186.142	true
dsum-sec.casalemedia.com	172.64.151.101	true
ads.travelaudience.com	35.190.0.66	true
presentation-ams1.turn.com	46.228.164.11	true
pug-ams-bc.pubmnet.com	198.47.127.205	true
partners-alb-1113315349.us-east-1.elb.amazonaws.com	34.197.42.150	true
ib.anycast.adnxs.com	185.89.210.212	true
s0.2mdn.net	172.217.18.6	true
widget.us5.vip.prod.criteo.com	74.119.117.16	true
gw-iad-bid.ymmobi.com	unknown	unknown
sync.teads.tv	unknown	unknown
pm.w55c.net	unknown	unknown
image8.pubmatic.com	unknown	unknown
ups.analytics.yahoo.com	unknown	unknown
ads.stickyadstv.com	unknown	unknown
fundingchoicesmessages.google.com	unknown	unknown
fw.adsafeprotected.com	unknown	unknown
a.c.appier.net	unknown	unknown
image2.pubmatic.com	unknown	unknown
www.temu.com	unknown	unknown
tpt.dotomi.com	unknown	unknown
dis.criteo.com	unknown	unknown
widget.us.criteo.com	unknown	unknown
pr-bh.ybp.yahoo.com	unknown	unknown
x.bidswitch.net	unknown	unknown
r.turn.com	unknown	unknown
ad.turn.com	unknown	unknown
1f2e7.v.fwmrm.net	unknown	unknown
www.wbtd.com	unknown	unknown
tpt.mediaplex.com	unknown	unknown
pool.admedo.com	unknown	unknown
ib.adnxs.com	unknown	unknown
sync.search.spotxchange.com	unknown	unknown
partners.tremorhub.com	unknown	unknown
dclk-match.dotomi.com	unknown	unknown
eb2.3lift.com	unknown	unknown
b1sync.zemanta.com	unknown	unknown

Contacted URLs

Name	Malicious	Reputation
https://s0.2mdn.net/sadbundle/1535206504467815149/media/25fcc0797a2837d2f439c5a924fd40a6.svg	false	unknown
https://fundingchoicesmessages.google.com/el/AGSKWxV6CAa4i_hGLyfG1GnmyIhZkPBqPlM7CBxhH2w4IdeExZAX8XuwQAnorMaRmmliMCzFNLP-d5iDo1fLxc_pO299VdTZEguoS_01RdcrFouyYIo13DPfG_rWFtoxbXv9519Gagfqkw==	false	unknown
https://www.haoqq.com/pages/assets/picture/prestashop.png	false	unknown
https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dappnexus%26google_hm%3D%24%7BBASE64_UID_ENC%7D	false	unknown
https://www.haoqq.com/pages/assets/css/css2.css	false	unknown
https://match.adsrvr.org/track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmQCvToyhvfM6gk2vMYoxrJQZorSrtw93am8KOb5SbI2bnCwv6k0SKPOy8pZBCOmRCfwi8Bd0Z54Ptt6QOOx0dSi30UFYLO6Zm11	false	unknown
https://cm.g.doubleclick.net/pixel/attr?d=AHNF13IUKnPygisc1SVSIAl_6VxOJ9jS4uztRUM4KTV9FLgRkGCpljYd8R2BKcK-9j-nq2UoEmmmCQ	false	unknown
https://www.haoqq.com/pages/assets/image/loader.gif	false	unknown
https://fundingchoicesmessages.google.com/i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F6ACA8904-9C3D-4681-60D6-67C6447ECD99.html&ers=2	false	unknown
https://googleads.g.doubleclick.net/pagead/adview?ai=CDNeaS9T_ZpnWAa2dvPIP7626gAyM7O2yerX2tr76ErCQHxABIOfA1G1gyQagAZu5y5wDyAEJqAMByAPLBKoEzgFP0Muz49MN5LepIXnNX2sWNLxMALjBFfUbB0OZ2Y0CJtCvkfyDGTTHkvgwdHFxHOZPYjHlSnAkfjxVHg7khwWwbSF-mOD2pnLEQM0aRU-cye1QN1svxQfKt4w1qmK1C6_lgsJpSig58jbAj5r_X7Xa2RcNQkg64BuGTdiTL6Ze5Zc8uCeSGxuJNBBw3Mos-MSRXrVt2jk195dptrpa4u92Fh3hUoYfOGkZLPzpSB6kEGmMZPHIo9hsmqYNijUzO_i8hzKhl_YCoGzyT_FAcMAE78rGuP0EiAX82IfGBaAGLoAHzca0Y6gH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB_fCsQLYBwDyBwQQmMgH0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYicHTqNL0iAOaCXtodHRwczovL3d3dy5tYXJxdWlzYXB0cy5jb20vP2xmX3NvdXJjZT0xMjM1JnV0bV9jYW1wYWlnbj0xNDg5MTAzOTk2JnV0bV9zb3VyY2U9Z29vZ2xlJnV0bV9tZWRpdW09Y3BjJnV0bV90ZXJtPSZnYWRfc291cmNlPTWACgHICwHaDBAKChDQ1e2A6umXvDkSAgED2BMD0BUBgBcBshceChoIABIUcHViLTE2NzMzOTkxNjA3MTA3MTgYABgBuhcCOAGyGAkSApNOGC4iAQDQGAE&sigh=G4BK4_YU2lA&uach_m=%5BUACH%5D&ase=2&cid=CAQSTwDpaXnfveAUNmBW3DIP4C91nkml_SMN3Hg2AHSGSs7Ftop1asYQtYb9NO9VmWgne4QnS7GY0ln__zk75HuRrRfdwuTWEC3iNDnMml_kF4EYAQ&template_id=5000&nis=6	false	unknown
https://fundingchoicesmessages.google.com/f/AGSKWxVXyEvQ8rr_BoQhqFBmSyhHFBY8TVHaXqWthoyB0cqzuBrNmLKKWj9DvZo73bHB3Zg42zHyHtCxZLCLhMD0SVD9dQ8OYiBt_wWfDGQEiJrh-njbg3paxBCGtFSliXExuETImT-9GQ==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDY3LDI2MTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4tR0IiLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tLyIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d	false	unknown
https://www.haoqq.com/	false	unknown
https://s0.2mdn.net/sadbundle/1535206504467815149/media/a3a0e34ff72c160c1b186677f13e0128.svg	false	unknown
https://googleads.g.doubleclick.net/pagead/interaction/?ai=CFeTcZdT_ZruhHKGYvPIP3ZakyAi8lYK7erW-qerjEr__uePXAhABIOfA1G1gyQagAcjHtfICyAEJqAMByAObBKoE8QFP0HSpQqtnowi4TpehjfUpfte8xmgk_70lAxf2K4jBJ-M2kttU3TVSeQPcXsgks3irtvstgv5XG8KUnld0ln0ne99Kk3AhmGJjpxVNBrSn7oFvqItbw9sBg2pvC7odKaCgGtEQ-Lk-5Ic97fTc7OvyNFlDu1csPYBPdyNiuJ9Zcqd-JO1gE8Ay7uXeRuG8jXckMLiHJ8bmGiAEXIRQsId7mD_lL4Fsh_YRFf1J38J2nB5vWTxa99oGxqjd4Z5CwUEUcYyuDM6z0xAGDOy8yqHsT9sMJqusrCiQ2k1QicQ0HunnJZsI3d_lTho5anFiMtEWwASIxY3QtwTgBAOIBbLp_IRJkAYBoAZMgAeguMqNAagH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WPzHoLXS9IgDgAoBmAsByAsBgAwBqg0CVVOwE_7TxxfQEwDYEwrYFAHQFQH4FgGAFwGyFwIYAugXBLIYCRIC5VkYTCIBAA&sigh=x1PVMGzSakY&cid=CAQSOwDpaXnfBGovcYskwqgVvps6VtpgJx16c7xxIUJWjoxmbGJab6wfNPHPSHQCIM-v6pdL9r3kYjLayhAp&label=window_focus&gqid=ZdT_ZuTmFpDp1PIPsoGZmQ0&qqid=CPvnpLXS9IgDFSEMTwgdXQsJiQ&fg=1	false	unknown
https://um.simpli.fi/gp_match?google_gid=CAESEFi9PqLuqTCfmE2lDk5eZnw&google_cver=1&google_push=AXcoOmSdWHq4-e5JyuA-tIqiieYbVsQelGc07_N0LXqw6gPc5m_Q3M_32aCfbB6iWUy_u2v8p8v2B9jmEPWMukD8RaQ4pG1We68zaaA	false	unknown
https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1&gdpr=0	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=stickyxchange_dbm&google_hm=NWEyMmVhYzRhZTcxY2MwZjBiMzU1YzQ5ODYzZDZkNQ==&gdpr=&gdpr_consent=	false	unknown
https://cm.g.doubleclick.net/pixel/attr?d=AHNF13JACtVvlHwGv1kKZ8F7RBS0xG_qaVY5s6m2wTjamPBJObAKRt9MedOCqlvszxZ7x7huRaf7	false	unknown
https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.html	false	unknown
https://s0.2mdn.net/sadbundle/1535206504467815149/media/6fc2d839f7cf510e00c9f5bd1132889f.jpg	false	unknown
https://x.bidswitch.net/sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b	false	unknown
https://www.haoqq.com/news/i/3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=spotxchange_dbm&google_cm&google_dbm&gdpr=0	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_cm&google_dbm&gdpr=0	false	unknown
https://www.haoqq.com/pages/assets/fonts/fontawesome-webfont.woff	false	unknown
https://8proof.com/app/win?id=920623656406&ap=Zv_UeQADk10DohnmADzIxH8u-xlCsN8A3zSWxw&brid=g3FunpztdQ2ZStgF4wamsw&t=b	false	unknown
https://www.haoqq.com/pages/assets/picture/magento.svg	false	unknown
https://googleads.g.doubleclick.net/pagead/adview?ai=CmacBStT_Zr7NPPSUvPIP6_ucmQm-vcfmYdeIqO67DcCNtwEQASAAYMkGggEXY2EtcHViLTE2NzMzOTkxNjA3MTA3MTjIAQmoAwHIAwKqBMIBT9D06km8FS4J7JT2ZSJ7nsBXDLMjgaS_vobYRCDTEuxYRJpSGuVWBjQv-7xIATyrcVeji8OYABqqTSJqZtpZLYgKvSmkmx-Qu_lumE-wvy5IDGWHkQJjbdnFAbg5FcBCyL7V9EAB-wT9For-ayhyljKQx8bdTqvMJDz88CXlmBUEoWuoIrazM6RfEhzvU6MPdKqni6PSj-7JQxG5YokJtHWIh7IeSO6yG7K09oYcQ-5Ukwy2DqIF8_4hdHYde5gJ_6eABqehs8-1-siQMKAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYxKnRqNL0iAOACgH6CwIIAYAMAdAVAYAXAbIXHAoYEhRwdWItMTY3MzM5OTE2MDcxMDcxOBgAGAw&sigh=j6kRbNrdK5I&uach_m=%5BUACH%5D&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8BgB	false	unknown
https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=oath_dbm&google_hm=eS11UWJiX0FSRTJ1SGUwTHVCQ0dkY294Z0hGZ1FtM3h1bn5B&gdpr=0	false	unknown
https://match.prod.bidr.io/cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmT4o063xBBQDu0z4njujpW3iMXyySg6RrAn0VBLP2vry8QG1govK7gCAyoaJNfaM1IIP-17W1aBlEfY617IxoiLn9u3SbkN4a0	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmTyFCDwwx6UNnlLcmSN88RNjshcmNS5SmS2VOGMiQ0qsij0fWvXW6TkZOtmWF9T9iQmuHoMbQj8LlPgnZacn2DENsWg7qpOZYs	false	unknown
https://ad.doubleclick.net/pcs/view?xai=AKAOjsuvtIqzVY3ggWg3jVmRPkf4eU6UofNdZmU2iGH8lgkVsKG3xfGxi6O2lRHyOKn50YBLBiTc8MMX9QSagI6L5CaNPQZpEjxADTDWPZWTdYuONI2U1vduc5l9pQ31kaQgrLrKET67tDYUaF0Svqh8GOaRqwMkSqhfD5mOtOVYjQRCAJaHG0B81WmKbF0EQd7FZKUG_JFvsnTI&sai=AMfl-YQZJKu8l0SQ73izwOFHJYrUwCpfXmwD_G4vHiwb17J1h1X9KlyR2k-yockDal06uaYx0oPeQxsppA_IEe0q9zFenHZBh3kRRRI&sig=Cg0ArKJSzAcRQsGeMpwpEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9rYXkuY29tLGh0dHBzOi8vZG90b21pLmNvbQ&cry=1&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=5377&vt=11&dtpt=4171&dett=3&cstd=1198&cisv=r20241001.96553&vwbs=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl=	false	unknown
https://gw-iad-bid.ymmobi.com/adx/user/cookie_syn?pubid=Z29vZ2xlYWR4&google_gid=CAESEMubsfg7aw9eHiY9QDqBVSA&google_cver=1&google_push=AXcoOmTIr8seDQb_z6tw0YfTB36eULzlKSYmdeIO-RpgGl--1XRNf-DwqS-nBR9_-efeOV0xQL6nfUgai4DG0LXt7AK1rclHwHo31WXT	false	unknown
https://ads.travelaudience.com/google_pixel?google_gid=CAESEGEiavs7xorMj9f6JVwxzhA&google_cver=1&google_push=AXcoOmSulyuPz4s2VMwaw06B9jFvCD3Ea4zvFVN_jiFcqjgfjyvBrnsuuio5aJjQ9PpNZwTI7nE9QdVgHFylTAP5InkPiSOlbvVM-5Q	false	unknown
https://dsum-sec.casalemedia.com/rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1&gdpr=0&C=1	false	unknown
https://www.haoqq.com/pages/assets/css/plugins.css	false	unknown
https://x.bidswitch.net/sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ	false	unknown
https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=731747807&adf=1645902383&pi=t.aa~a.3940796168~rp.4&w=1140&abgtt=6&fwrn=1&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1140x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&fwrattr=false&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280&nras=3&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=62&ady=1189&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=4&uci=a!4&btvi=2&fsb=1&dtd=1342	false	unknown
https://match.adsrvr.org/track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmQqDjvbOg9mh9Ke-eHDgTeGGYCzmctbUZo85ZhML4SeTOLGHbGXAx5LKbO3n6hKn0Nm2gEy5TVP3y-GOpx_XkUXiy4RoIvYa_o	false	unknown
https://match.prod.bidr.io/cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmRbtMccDxJg2BjT3wnvT1aepLpjWQ_QuS-yRl_uN-efUYE_YqPR6ef0-7Yh5T8BxoQ4rpvAjuN3vlHpI_ROEJWbBvpxn8ySqG3c&_bee_ppp=1	false	unknown
https://googleads.g.doubleclick.net/pagead/interaction/?ai=CaPy8YdT_ZtWwGfzEvPIP4dmvsAqsuKLgeaDP2t-oE5rT0_rHPBABIOfA1G1gyQagAYa8z90pyAEJqAMByAObBKoE9wFP0EWgCNsR6eleUlqz_k0VM78gpeNEj7AfLw9XXGL0OoLRM6fWevKyfAlDNSEZeV5b8kE6sM_GlweNK3opoB6Cu6b8pwmKngOydkqegOfK_w0H8bJfl7GrSjZxU00R8KaD5sh6m16CXcfSLS_m5FJTJkSFVAoyp0oDU5--_9CFxM6FWM9Y1t4BSfdWSFl5kawLy0IxdpSGMVPXlVYyfNGDRHmMOtgPgOnT4WaD_7iO8l9Pk9cvb4DxHBIuGJ5bpmIGFlRCRjB-mY6VXLkK1WwBu5A8U6lm_qeNkYUxOSFNZagaXrpOOR0tVb1yvSE_lrHhmX74H4cJwASu8u2p-gTgBAOIBZb_xMhQkAYBoAZNgAeG9J-9BKgH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WNfuqbPS9IgDgAoBmAsByAsBgAwBqg0CVVOwE_GDtRnYEw3YFAHQFQH4FgGAFwGyFwIYArIYCRICu08YTSIBAA&sigh=kZv22eBEv80&cid=CAQSOwDpaXnfkS-bbuqP9x9QQyyOD2GRAoZdyeO5F5pGbPV0L8uEDBKTZo5XfOkU--scFfZXG7ofltUbClvT&label=window_focus&gqid=YdT_Zu7QFO_ox_APn8qF-Q4&qqid=CJXlrbPS9IgDFXwiTwgd4ewLpg&fg=1	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=whaleco_services_llc&google_push=AXcoOmSG2y2CKSsJHjNe49B23UO6-5g3bFSL2LYXX_GQWIMBaewczfO2x8EyvksJW-qUf0IyZLinmX_ctJGlnpQh0UG90kQ-Di98fpQn	false	unknown
https://www.temu.com/api/adx/cm/pixel?google_gid=CAESEPv97O-fbD076H-t7qpclug&google_cver=1&google_push=AXcoOmTs1_ll0D_RCewYKHbjcou2C-D9XigwEMKV_u-aZD-O41ML3SE9fdZH5w_1zibbiRxTdKUAFgAe8aWsnlS_ljhlXIAw66tm7YJT	false	unknown
https://us-u.openx.net/w/1.0/cm?cc=1&id=9ca165a9-d9fe-2ff6-d83d-d145a80b0d37&r=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dopenx%26google_hm%3D%7Bopenx_uuid_base64%7D	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=pubmatic&google_hm=RTI4NTQ5ODgtQkYwMy00NkVBLTkzMDMtNTIzRDEyQjdFREZG&gdpr=-1&gdpr_consent=	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=simplifi&google_hm=32B60805DE8843869CBAC4833A2F49DB&google_push=AXcoOmRuShbATQDatQq4sJWhdwSrBaGF1h8JWd189LN0U19evDjkxqz6PEo6NN4Cmk1GaEawPQp5AY2xig2e6DaJALkaVLbrCocgGg	false	unknown
https://googleads.g.doubleclick.net/xbbe/pixel?d=CLbFxQEQq9bcARio-uKYAjAB&v=APEucNWY-6eV-PamxnzS1IYVwACNrpTeCLFv0-YchtE3vR9t2wema9vG5z1iKaHit8wKiP_Fm7slvYlC4NPq7_TYrYF4LywVeWXrrF864smd7v7SXzepVaA	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=teadstv_dbm&google_cm&google_dbm	false	unknown
https://www.haoqq.com/pages/assets/fonts/92zatBhPNqw73oTd4g.woff2	false	unknown
https://dis.criteo.com/dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmQSzC5C28pLStKXw6cnCDgYtDmb02nZs8CRLDZNTHqqdUV3nd42z4t072GipsN10sg314x9S-mLGUsd1gJTxb-zNADAAWLa&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1	false	unknown
https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=4075358053&adf=2063629977&pi=t.aa~a.2231736124~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1140x90&nras=4&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=1605&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=5&uci=a!5&btvi=3&fsb=1&dtd=1354	false	unknown
https://8proof.com/app/win?id=920623517540&ap=Zv_UdQACjdoDog1KADJifyJCFfEqU75jO_Fshg&brid=cKo0JViAJj3Wq6Yup4JCNA&t=b	false	unknown
https://www.haoqq.com/pages/assets/js/custom.js	false	unknown
https://googleads.g.doubleclick.net/xbbe/pixel?d=CPfHxOMEEM2_2-oEGNKikZsCMAE&v=APEucNXhnXjF2sJ9tyF-VUC9xWNRJ5NC-o5pBxJKQb83I3CuqwyAcmRD3qKflRXX69i79_9PlTMDWa044gbi9Vl0jovCTNPXMg	false	unknown
https://googleads.g.doubleclick.net/pagead/interaction/?ai=CDzdqYdT_ZtOwGfzEvPIP4dmvsArLxLaNesry_oSVC4OT8KqMExABIOfA1G1gyQagAbC6odcDyAEJqAMByAPLBKoE_gFP0OS0SB8S7h4bYKBhphZMnxEFwCIVh9nc7Ok4gpTNZFpIWRlPc3fw-D8Yxy5LnVMSX3S0UIhvJwP9whCUQvpxqPBRn8AplAZPgPLhxC5O_2OZQfpWZp5cMC46gNHGSVRrZuw9IzpfufHWbvT2-EMM8JS4jYwuFTe0FoXNt8EQkisKlvU7ULC4BYNtNTsTCX4CDI8OzKpARKcwuymIrphptFkiaB1cRY1BwEvDvobpzzNYbNJk4EBY9xmlxSQB7SHImnHyrinxC5ga5edGYELOce7kKD8vnTep5owrMQl_Icz2d0MdJk7GOodLM9IPsnbA_YabW7wo-EwglWHO2cAE_8DAsvkBiAWWra-5BqAGLoAHrYOudqgH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB-C9sQKoB_-esQKoB9-fsQKoB8qpsQKoB-ulsQKoB-qxsQKoB5m1sQKoB763sQKoB_jCsQKoB_vCsQLYBwDSCCYIgGEQARgfMgKKAjoLgECAwICAgKCogAJIvf3BOljX7qmz0vSIA7EJ6Dm9CHBwFieACgGYCwHICwGADAHaDBEKCxDAwKKVlMy5heMBEgIBA6oNAlVTyA0B2BMMiBQE0BUB-BYBgBcBshcCGAG6FwI4AbIYCRICp08YLiIBANAYAegYAQ&sigh=gLV85-XVEJA&cid=CAQSOwDpaXnfkS-bbuqP9x9QQyyOD2GRAoZdyeO5F5pGbPV0L8uEDBKTZo5XfOkU--scFfZXG7ofltUbClvT&label=window_focus&gqid=YdT_Zu7QFO_ox_APn8qF-Q4&qqid=CJPlrbPS9IgDFXwiTwgd4ewLpg&fg=1	false	unknown
https://creativecdn.com/cm-notify?pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmSMzdJch9f5yspzBreHk7MkJGMkYmQ7l_CBrHUxRVaoffKY4RNI2u5YLrO2puwm_HkGYBZSRSnlykknHeXLElmJuD0t50Kx0HxNIQ	false	unknown
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=884246868&pi=t.aa~a.3958040794~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055445&bpp=1&bdt=9109&idt=1853&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0%2C1200x280&nras=2&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=89&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1856	false	unknown
https://www.haoqq.com/pages/assets/js/jquery.min.js	false	unknown
https://fundingchoicesmessages.google.com/el/AGSKWxWEbiabbLcNoqCZt7wzcCVppA1KKQMW-PianScEZ6BnlzNeqGt1pTIKPngiL0rWzyofm4KJEWllWCzqOLNodixwAwx9j3df6SN3r6QXQ3jwstxLWDZM7EXCM-1k0x4BwvQS7B2icQ==	false	unknown
https://pool.admedo.com/ul_cb/sync?ssp=bidswitch&bidswitch_ssp_id=google&bsw_custom_parameter=286fbcaf-c685-43ee-8bde-74ddd673711e	false	unknown
https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=4075358053&adf=2063629977&pi=t.aa~a.2231736124~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042103&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F6ACA8904-9C3D-4681-60D6-67C6447ECD99.html&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042101163&bpp=1&bdt=2065&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280&nras=3&correlator=8774979011906&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=796&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31087423%2C44798934%2C95343329%2C95335246&oid=2&pvsid=1792413502876461&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=2&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=4&uci=a!4&fsb=1&dtd=2075	false	unknown
https://googleads.g.doubleclick.net/pagead/adview?ai=CF3eTStT_Zr3NPPSUvPIP6_ucmQnLxLaNesry_oSVC2QQASDnwNRtYMkGoAGwuqHXA8gBCagDAcgDywSqBNIBT9DwTZzcreVd7WdKxYcnKcQNLegB1X7jM1Zr-u0QfT-UwlSRamFVdnwIJ2JktFCc1Qh441o2neoo3VdK4OOZOhn9tZSSrHwYnOrmYtlyRhjqeEPvZ0VA-axbUcKlZQ5cedEmjySxqCUpiBtAKW7LOLrMiChjG7QjY4W3P_Z_U4wZDUXD8_tCnFOo4pwi0SnthxUZWuRmEjGY1U_vzMyOUsLaG9PDsq6Fw235HlhwYXO4wqww3buw10Q5D3WpdG63Z6ooJtZVu5tCirxz-g6NwCGCwAT_wMCy-QGIBZatr7kGkgUECAQYAZIFBAgFGASgBi6AB62DrnaoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgH98KxAtgHAPIHBRC0jMUC0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYxKnRqNL0iAOaCaUBaHR0cHM6Ly93d3cua2F5YWsuY29tL3NlbWkvZ2RudGV4dC9ob3RlbF9nZW5lcmFsL2FueS9lbi5odG1sP2FpZD02Njk0NjM0MzAzOSZ0aWQ9JmxvY3A9Mjg0MCZsb2NpPSZuPWQmZD1jJmZpZD0mY2lkPTQxNzM2NTQ1MTc1MyZwaWQ9d3d3Lmhhb3FxLmNvbSZhY2VpZD0mZ2FkX3NvdXJjZT01gAoByAsB2gwQCgoQkKPHtJrPpJw1EgIBA9gTDIgUBNAVAYAXAbIXHgoaCAASFHB1Yi0xNjczMzk5MTYwNzEwNzE4GAAYAboXAjgBshgJEgKnTxguIgEA0BgB6BgB&sigh=X_XUzysFvXU&cmd=ChdjYS1wdWItMTY3MzM5OTE2MDcxMDcxOBDuAxgB&uach_m=%5BUACH%5D&ase=2&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8BgB&template_id=494&vis=1&nis=6	false	unknown
https://widget.us.criteo.com/dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmTAclBd83KAvnaABRyrRCf7yt7MOk-96fMjSy57xseyO8ttKEsYmU6H_0tsjTuI3BaYTkkxRTzWz_-2Ki9ETn3rAqtToDamDQs&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1	false	unknown
https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252	false	unknown
https://fundingchoicesmessages.google.com/i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&ers=2	false	unknown
https://match.adsrvr.org/track/cmf/generic?ttd_pid=stickyads&ttd_tpi=1	false	unknown
https://ib.adnxs.com/getuid?https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=${BASE64_UID_ENC}	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFCMXlVN05fNmtBQUJlN3dNeFYyZw&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1	false	unknown
https://googleads.g.doubleclick.net/pagead/interaction/?ai=CF9t9S9T_ZpnWAa2dvPIP7626gAyM7O2yerX2tr76ErCQHxABIOfA1G1gyQagAZu5y5wDyAEJqAMByAPLBKoE0QFP0Muz49MN5LepIXnNX2sWNLxMALjBFfUbB0OZ2Y0CJtCvkfyDGTTHkvgwdHFxHOZPYjHlSnAkfjxVHg7khwWwbSF-mOD2pnLEQM0aRU-cye1QN1svxQfKt4w1qmK1C6_lgsJpSig58jbAj5r_X7Xa2RcNQkg64BuGTdiTL6Ze5Zc8uCeSGxuJNBBw3Mos-MSRXrVt2jk195dptrpa4u92Fh3hUsQdGfv1pzrs8tjVhcOhyHP7idLok4gVELaBFlQ0MBGNjxisfmlICQGD-VcfacAE78rGuP0EiAX82IfGBaAGLoAHzca0Y6gH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WInB06jS9IgDsQmZiQGFumlbPoAKAZgLAcgLAYAMAdoMFQoKENDV7YDq6Ze8ORICAQNAAUoBJKoNAlVTyA0B2BMD0BUB-BYBgBcBshcCGAG6FwI4AbIYCRICk04YLiIBANAYAQ&sigh=u-MddZClIwg&cid=CAQSTwDpaXnfveAUNmBW3DIP4C91nkml_SMN3Hg2AHSGSs7Ftop1asYQtYb9NO9VmWgne4QnS7GY0ln__zk75HuRrRfdwuTWEC3iNDnMml_kF4E&label=window_focus&gqid=StT_ZrmHOoyI1PIPyfqEgQk&qqid=CNmn16jS9IgDFa0OTwgd75YOwA&fg=1	false	unknown
https://ups.analytics.yahoo.com/ups/58269/sync?_origin=1&gdpr=0&redir=true	false	unknown
https://r.turn.com/r/cms/id/0/ddc/1/pid/18/uid/?gdpr=&gdpr_consent=&google_gid=CAESEE-2hABbNlvCQmyOE9XNGr8&google_cver=1	false	unknown
https://ad.doubleclick.net/pcs/view?xai=AKAOjsuvtIqzVY3ggWg3jVmRPkf4eU6UofNdZmU2iGH8lgkVsKG3xfGxi6O2lRHyOKn50YBLBiTc8MMX9QSagI6L5CaNPQZpEjxADTDWPZWTdYuONI2U1vduc5l9pQ31kaQgrLrKET67tDYUaF0Svqh8GOaRqwMkSqhfD5mOtOVYjQRCAJaHG0B81WmKbF0EQd7FZKUG_JFvsnTI&sai=AMfl-YQZJKu8l0SQ73izwOFHJYrUwCpfXmwD_G4vHiwb17J1h1X9KlyR2k-yockDal06uaYx0oPeQxsppA_IEe0q9zFenHZBh3kRRRI&sig=Cg0ArKJSzAcRQsGeMpwpEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9rYXkuY29tLGh0dHBzOi8vZG90b21pLmNvbQ&cry=1&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=1206&cbvp=1&cstd=1198&cisv=r20241001.96553&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl=	false	unknown
https://cm.g.doubleclick.net/pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmSulyuPz4s2VMwaw06B9jFvCD3Ea4zvFVN_jiFcqjgfjyvBrnsuuio5aJjQ9PpNZwTI7nE9QdVgHFylTAP5InkPiSOlbvVM-5Q	false	unknown
https://match.prod.bidr.io/cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw&_bee_ppp=1	false	unknown
https://cm.g.doubleclick.net/pixel?google_hm=b3VnRks2a2lCV3lPZnlKYlU5VF9aZw%3D%3D&google_nid=appier&google_push=AXcoOmSotlzXlITazuWCK3xBXY5xuChDBGEGIjGTS0t6K3S2l6WFtyeTYa2rAqT0_BU3OMnNoZndHNO1ql6rTBknJSdrWerSLKKqMQ	false	unknown
https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=2063629977&pi=t.aa~a.1836389361~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042064&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059375&bpp=1&bdt=13039&idt=1&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280%2C1200x280%2C1200x90%2C1263x907%2C468x60&nras=8&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=3475&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=6&uci=a!6&btvi=6&fsb=1&dtd=4876	false	unknown
https://fundingchoicesmessages.google.com/f/AGSKWxXIoFUECk4FNvCkloFhmBS2oxXCceKSam1esjWsJ0AtzzJXf6WEQfZj9CpxO3jSIRzerEvGRgArgeB-6xT1bWrHGL2lbouxguHuQLmvlFOUyN6QS-KH7VPj6WNJ4ksUBlOXuyq2x_QC8xWGD-qYu-Qksm8uU2ncCyX5VHLlAeFhAacxIZGPoRiQo0aG/__300x250px./writelayerad._468x80./ads/proximic./ad12.	false	unknown
https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&slotname=5424108534&adk=3166978744&adf=3025194257&pi=t.ma~as.5424108534&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055443&bpp=2&bdt=9108&idt=1840&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0&nras=1&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=0&ady=3136&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&btvi=1&fsb=1&dtd=1846	false	unknown
https://fundingchoicesmessages.google.com/f/AGSKWxUppim6GlhNn98Sy4cq18snKjQ7Zb0LLow_-Ky3kt084XagRObmnO6ruMYJouPgI6-o6iQUp0I2TbjrqAfTZo2XNrPYi2-cTiCIY9lCNM8wdPHyKV4jdfL3QLadzLsUWTOxmRuv2w==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDYyLDc0MDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuLUdCIl0sImh0dHBzOi8vd3d3Lmhhb3FxLmNvbS8iLG51bGwsW1s4LCJlc2tXWFNGSHNRZyJdLFs5LCJlbi1VUyJdLFsxOCwiW1tbMF1dXSJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ	false	unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 185	ASCII text, with no line terminators	16F598574447B4FABF9EE3015B90BEF6	7108F1C4A21D74554729D88EF9479F9B8F190909	EEB495EC83C17A2A9808FFFCABCD98CDA62166CD0AEC74A2D658FDD79396E693
Chrome Cache Entry: 186	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 187	Unicode text, UTF-8 text, with very long lines (41091), with no line terminators	6379270B59989696F9F4EE9B5DC5DCED	3C7E07EFB8D306915081CF51E027ED59BEF52933	F99C9435EDAA8C15F8250BDC194488A6AB4A914961B9632377778858B557DF98
Chrome Cache Entry: 188	ASCII text, with very long lines (4816)	963090F0C2A563C3110987B4769F5785	FCB1C8084A1F5EFDB680E2BA268AF753356509E0	B0088124EDC0322D5CC6C4385CA59C018CEB76790C907D13F1EE5BE3DCC1A039
Chrome Cache Entry: 189	GIF image data, version 89a, 186 x 68	CE25CA52E59AA2D4A4A5801107DCC135	769935507C950E381010CA2E5123F1C14237E510	3429B93321AC7DA1E7D328EDE43B8CD6256D09DA98A7BDDBB6B732D577828C41
Chrome Cache Entry: 190	HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators	E408F024BAFEE3DC789195A8413C3C46	6A49D7844C7169D790D3E4F89832BF143BD4CE67	EB8666E25517546B0E091DE479C7FB86C576ABBBBCC77F2F00498D36D8FE3962
Chrome Cache Entry: 191	Web Open Font Format, TrueType, length 65452, version 1.0	D95D6F5D5AB7CFEFD09651800B69BD54	7D65E0227D0D7CDC1718119CD2A7DCE0638F151C	199411F659F41AACCB959BACB1B0DE30E54F244352A48C6F9894E65AE0F8A9A1
Chrome Cache Entry: 192	Web Open Font Format, CFF, length 56108, version 1.0	A1ECC3B826D01251EDDDF29C3E4E1E97	9394F35BD2ADDD24666B79BFC36D4F9D247CB01D	0DB5C5A1475EB7A3E5028983EA1E642D1B2C00FAFF6A250A37502B0F3832A4A7
Chrome Cache Entry: 193	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 194	Web Open Font Format (Version 2), TrueType, length 20784, version 1.0	E11C810C086DF83C0876DD59ED32EBCB	B89FE2ED6D016F81AF13B35797AD2B0E2E5C6822	ACC5497E76F832D950D14FCFA047DC3C864F7A0AAE4C7A20521C0C655A53033B
Chrome Cache Entry: 195	ASCII text, with very long lines (2974)	D86B220B3E81EDE8980FCC7CB83D4498	285BD8439F8D7A3024FB8EE26DFFBF4C7AC96DB0	11286005BE0144048B40410234094E5CA25A55A987D088EBA6D0E5426A0D52EA
Chrome Cache Entry: 196	ASCII text, with very long lines (65536), with no line terminators	33945167F52B74510863F3F5960D8601	26D8991F1FAB3E226BF79CE9E8501A332704C01C	454D6BF1B2CD093FD27E81268FA57C5D0AB029E1FAF13F7F98DB21107FAD2D7B
Chrome Cache Entry: 197	ASCII text, with very long lines (2586)	38D4F310E650C3877EB2E2C55860F77B	41D2F4BD61DF909B531BF54EC54AB66CFC8712CC	C6F4951F54B1F8F2F57A668518D6EBC3D94ABF1A1A1ACA440DE486B13D02D85D
Chrome Cache Entry: 198	GIF image data, version 89a, 1 x 1	B4491705564909DA7F9EAF749DBBFBB1	279315D507855C6A4351E1E2C2F39DD9CD2FCCD8	4E0705327480AD2323CB03D9C450FFCAE4A98BF3A5382FA0C7882145ED620E49
Chrome Cache Entry: 199	ASCII text, with very long lines (2586)	38D4F310E650C3877EB2E2C55860F77B	41D2F4BD61DF909B531BF54EC54AB66CFC8712CC	C6F4951F54B1F8F2F57A668518D6EBC3D94ABF1A1A1ACA440DE486B13D02D85D
Chrome Cache Entry: 200	JPEG image data, progressive, precision 8, 600x600, components 3	745C0B13D2FE67F1E5ABA04C449EDD24	AD86323C1E3B3EC0F0D2B8606408A13DCC361460	426E01BA21F71FF9FE2883942C1E225DB3F25A1326BC34224DECF70BEE1CCB19
Chrome Cache Entry: 201	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 202	SVG Scalable Vector Graphics image	F44286360EC5672BFD482D93AD3FDEE3	828919F45D6887867C99D21C07610BB158C7348D	E23925FEE789EC5CB82900E7D0EB5D248FFE06062112CA0CFC5096AA353DFC03
Chrome Cache Entry: 203	GIF image data, version 89a, 44 x 44	DA8735C760FF6BBEB7B7D561D88CE770	16221452202FBBEE8857E3E62A18BD8C0F736C74	5151E82F6F215C2C9D94F9DE729CCB14CF6ACDA44912067EEEAD3F4DAA05DAE4
Chrome Cache Entry: 204	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 205	ASCII text	105035FF4F8CB2FCA201A203231E5147	95AE7ED53F19D7453A7F5FC28A9B7AE536D4AEFC	10D6A6027898E25189EDC44E3D6E2D91EFD40DFA82A9E8BF46EF9968E17B2661
Chrome Cache Entry: 206	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 207	ASCII text, with very long lines (53223)	5A1A948517F1F254C5E5162B99DB4B89	6BE4AADEDFE1D81CFE8F3DCE971BFCE2E44F03C8	59318C2178ADAEE793844C43163C965B0FC514123D50DB506D8C190B1047838F
Chrome Cache Entry: 208	HTML document, ASCII text, with very long lines (436), with no line terminators	72B64B729319F86583629B8CC2E7714D	1ACEC2C491AD4800BE74B42315B948C55D2B14EA	3FA3527C9AA8F6BFCEBECEE9A4341C846B52203168CA6ED954E1BCDF22BC27DB
Chrome Cache Entry: 209	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 210	HTML document, ASCII text, with very long lines (436), with no line terminators	D8821922F79CC2149A1255AFF5F79E2A	BF2C952A9B40B630AF085948CB201E834537AFDD	AAC715184E2DCFBDFA7024390A588883D50D5FAE65884F87969980245393D419
Chrome Cache Entry: 211	PNG image data, 1920 x 800, 8-bit/color RGBA, non-interlaced	4829571FB13115E7F8B97FF88559C950	D26AA2EAB0A52692729F3D3AECC4E395896E7162	878AABCE3B75F301F59152D70DCB633FA520B6AE4963E0404A34772FE03C703B
Chrome Cache Entry: 212	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 213	ASCII text, with very long lines (2015)	D64BD6AB65DDB794E3A53D17664F547D	587DAF312494C0938078859F8CF6A540BB37A874	E217AA633D1A7501713AB4F913DB0941E41B70CE5C8717C2E6F41303B62416C2
Chrome Cache Entry: 214	ASCII text, with very long lines (2177)	366DAFF9909083EC6E0C67561FB35EC5	EB44AB2F563F148B25F718B31CC24ABBAAF1C3FA	40B3B4542E4D05F6BBD68E7EBA6D424ABFFD64FB9CC3BA8C8C9C932F088C787A
Chrome Cache Entry: 215	HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators	965204D156413DF838A34A810D688718	B4E3F753645DF4026F9C1959740FA0C4BA0E721A	3BCAA1C7EC50AFCF898D22DEDC35893FF1175BF8DDACBD22B65B3644337CC74E
Chrome Cache Entry: 216	C++ source, ASCII text, with very long lines (2015)	0273C00D693AA2D6F3F456E07FEF12F7	F2F679728DDE2E08E8C84B5A483625896B4EFCFE	7C6ECC69491D85EF88C56005F0BAD1EAA6475D0A1DD58AAA0675B03360F875D1
Chrome Cache Entry: 217	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 218	PNG image data, 512 x 512, 8-bit colormap, non-interlaced	F22C67C04FE7D007575CC436A9BAC06D	C793973FD2530C0BA4D7EEFFD14B58ED11AA433B	B06FB375116B664D35DC139E10576AF275CAAC40F6194DDE898C613183B93401
Chrome Cache Entry: 219	HTML document, ASCII text, with very long lines (436), with no line terminators	477C209C073610DDF92A2D1B81488C58	CF2C5158F28E6AB7B9030F640CD27AA909DAC9D1	833E32513E9826866DE544AAED51E0F327376DB1CEE19EFC91701154F3337C7C
Chrome Cache Entry: 220	ASCII text, with very long lines (1572)	65F82F80CC28D1D81BED2952299A9327	E8501AA07E81FA3883D9336C6586AF0F66DE6118	9BF164FD8F85BBE262753BCA4167F5BAACB295FA1F167E0DFCC43FBF3E21A876
Chrome Cache Entry: 221	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 222	HTML document, ASCII text, with very long lines (356), with no line terminators	B2852AFD840EE4083135F40012F4A9A7	91B55BD14E4B2BE383AEFF9299628C9788554B2E	55F56026D86468DB4135723445D1DF3498809CE536FA7A518B2847D7E6A27A96
Chrome Cache Entry: 223	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 224	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 225	SVG Scalable Vector Graphics image	A3A0E34FF72C160C1B186677F13E0128	4F70E5E68737D30E5B7F31817BFE9360C0CFAE78	8795DB3C106620ED095260D94A034AB3FCCC2E97073A6212E265BE2392A5F48B
Chrome Cache Entry: 226	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	7BD42E5A35B5FB3FF852D6EA9191CA83	8A141EB392A05A2DEA3DCD83B97940EF70A81EBC	5C4A713EE4250851232BE9F9F68D41586BE39B299528CFC7266E0B0E7E582E1B
Chrome Cache Entry: 227	HTML document, ASCII text, with very long lines (841), with no line terminators	C877BB6783B78AC730BCC95C9586CEC8	C403B9D7C30B01ACA98CE86BBCD64F7D7780E452	D06A623B3781A35C3F6634C33971BCA1A451D154004B8D545C34290D7C7A8CDD
Chrome Cache Entry: 228	HTML document, ASCII text, with very long lines (1763)	E073798C657A0FC59453B8B6ADEDCEBA	401AB66A92A6716CD4C981894D47F679FC1AE9AB	EB66C7C9D097D5BA414230F422484C17FA6F37157D30E1DED2CC5F65A9667987
Chrome Cache Entry: 229	SVG Scalable Vector Graphics image	25FCC0797A2837D2F439C5A924FD40A6	C7D7AB6A5FEBDCD9F9109EC641E7E9F1D72C5EDD	D1A9B8A6EA78721CD2693597CD63F325D36BAA85A72C8283FD35C14061EBEDE8
Chrome Cache Entry: 230	GIF image data, version 89a, 186 x 68	CE25CA52E59AA2D4A4A5801107DCC135	769935507C950E381010CA2E5123F1C14237E510	3429B93321AC7DA1E7D328EDE43B8CD6256D09DA98A7BDDBB6B732D577828C41
Chrome Cache Entry: 231	ASCII text, with very long lines (1382)	3B071D5606CC1CF92AE307F5BDB4E540	E191068CC90E5489130489A1CF173FE50BBA28B8	FF3DE130872FE0FB5B770DFA2BC9F0DAF8AB320403A34A60D089436F08D24F99
Chrome Cache Entry: 232	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 233	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 234	Web Open Font Format (Version 2), TrueType, length 12700, version 1.0	E571167FBCCE8D5081BCE96A09930063	E12420F5E4DA3CCDC75A58CE744E7D5A0C6CF79E	98BE19BC78B5BC5D419E4FA6EA055EBD4671A963E2CC644AEED4362F15D14C31
Chrome Cache Entry: 235	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 236	PNG image data, 1200 x 300, 8-bit/color RGBA, non-interlaced	0A10875DD85365705E5EAD14A99EB9AF	291AFDDC55A996ABF7AA8627E983D4F2EE66383A	D21D71482B319441598223A737DB827275CA21314BBE4B7976F53232F02ACCEF
Chrome Cache Entry: 237	PNG image data, 512 x 512, 8-bit colormap, non-interlaced	F22C67C04FE7D007575CC436A9BAC06D	C793973FD2530C0BA4D7EEFFD14B58ED11AA433B	B06FB375116B664D35DC139E10576AF275CAAC40F6194DDE898C613183B93401
Chrome Cache Entry: 238	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 239	Web Open Font Format (Version 2), TrueType, length 15860, version 1.0	E9F5AAF547F165386CD313B995DDDD8E	ACDEF5603C2387B0E5BFFD744B679A24A8BC1968	F5AEBDFEA35D1E7656EF4ACC5DB1F243209755AE3300943EF8FC6280F363C860
Chrome Cache Entry: 240	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 241	Unicode text, UTF-8 text, with very long lines (35499), with no line terminators	9B4ECAD07340BE89EA1F784744B10857	6464B97387E280F5FB5207A1BEFA84E613D4F36C	885BC1BC6D167D5350AF1AC8DD46637889F5853DBBD3C420AFAA00561C53D133
Chrome Cache Entry: 242	HTML document, Unicode text, UTF-8 text	06882D09D9E93A6407AB8CB7A10AAE2B	8C8FAC84BD031B26E33E106389E3F64FC0AA1970	BBDD1F2DBA3094168F67207E16F099862F006FFCD1A54D7D57746973775862B0
Chrome Cache Entry: 243	SVG Scalable Vector Graphics image	A3A0E34FF72C160C1B186677F13E0128	4F70E5E68737D30E5B7F31817BFE9360C0CFAE78	8795DB3C106620ED095260D94A034AB3FCCC2E97073A6212E265BE2392A5F48B
Chrome Cache Entry: 244	ASCII text, with very long lines (3048)	720B17007468ED45EEEB0189F26E988E	EAAA0BB51885CF01D4BDEB4DA347EA42A816C638	E12F1AAD0C4D33C880FAF28FC0CF72A04A32F235DE77F905C2D4C469A4404C61
Chrome Cache Entry: 245	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 246	HTML document, ASCII text, with very long lines (829), with no line terminators	20D2C9FA3C428412C66C0FF3D032911B	6F45FCAE479C03A29A19041CE84EA1691BA78EC8	B3B76D69EE71B0E1BF67ADB20E211841DAAD95A6A472F94A04A8F2A245E60AFC
Chrome Cache Entry: 247	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 248	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 249	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 250	GIF image data, version 89a, 44 x 44	DA8735C760FF6BBEB7B7D561D88CE770	16221452202FBBEE8857E3E62A18BD8C0F736C74	5151E82F6F215C2C9D94F9DE729CCB14CF6ACDA44912067EEEAD3F4DAA05DAE4
Chrome Cache Entry: 251	ASCII text, with very long lines (4006)	2A9AAEB768FC6B3060267BDA0C70CD3D	1F5CC01FF75AC204D7010EBB1486FDC59A0BB721	C674F8CBD84B92D10413653AA0304691B87A203468A79DD0BB95B409EC3CF7A2
Chrome Cache Entry: 252	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 253	ASCII text, with very long lines (65536), with no line terminators	B959F22280157E2C555913DCCD91372B	36211D2AB385ABDAB66E0159F5EE621A69DE8C5C	FBFCCD2FC69FD493FA32DF6EFDED4D8F634145C2DF92FBA60A1644861A9444AF
Chrome Cache Entry: 254	ASCII text, with very long lines (786)	AB304529064B2C30C88FC41AD81913E0	14091E21A049D97B052DD56FF4076898F6F7D0CC	88C5A7E6C9B3319F4BE9CD873D1E19766A62BE628EA9921156DD2702F1D15031
Chrome Cache Entry: 255	ASCII text, with very long lines (4816)	963090F0C2A563C3110987B4769F5785	FCB1C8084A1F5EFDB680E2BA268AF753356509E0	B0088124EDC0322D5CC6C4385CA59C018CEB76790C907D13F1EE5BE3DCC1A039
Chrome Cache Entry: 256	ASCII text, with very long lines (2079)	63CE2B7DF9EDC4265DF3CB9EDAD9F650	F744EEBF95EEB1A067294A2DC29951F0EB5BE9CD	BA5F8D3B5CD5D1A9D01D0F07C1BF82B4F422D963AB1A406E2DECA0074CF5F32F
Chrome Cache Entry: 257	ASCII text, with very long lines (2238)	F13F933A8167845114321AF2FA3EEFBB	D4C3EF193051FF55F46ABCE315FA8C942F8C3BC2	12969DD0A63E654E9D52998CAE3EBA0EE1102F963C20FF1A23BBA5E98DA2AD02
Chrome Cache Entry: 258	GIF image data, version 89a, 1 x 1	B4491705564909DA7F9EAF749DBBFBB1	279315D507855C6A4351E1E2C2F39DD9CD2FCCD8	4E0705327480AD2323CB03D9C450FFCAE4A98BF3A5382FA0C7882145ED620E49
Chrome Cache Entry: 259	MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel	5805D8CE35F814CD64AC5F4A08D5A44A	31C27176180BB69EC517FF9718C7B444DE1094DC	657E0802283791AA819D39DBCF9BC773CFE13C523BB05A2532684501B95B4519
Chrome Cache Entry: 260	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 261	JSON data	71103E48B3437BF635D69CAC00343FB5	82E93CC76EBCA8618B98DDCD81C4A5B52BCAE59C	C4AD4FE789A568475A72FDB108498DF2CE68C072C11935EAC395991CA644985C
Chrome Cache Entry: 262	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 263	ASCII text, with very long lines (2079)	63CE2B7DF9EDC4265DF3CB9EDAD9F650	F744EEBF95EEB1A067294A2DC29951F0EB5BE9CD	BA5F8D3B5CD5D1A9D01D0F07C1BF82B4F422D963AB1A406E2DECA0074CF5F32F
Chrome Cache Entry: 264	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 265	HTML document, ASCII text, with very long lines (65536), with no line terminators	525100C93CB036AB693706A5EE68F829	0E38097B2103C3859510E22D40985CCB45B152C2	2AD66603B960259879E0291A54FF3E0BF86A34360F48378AF620138B679F481E
Chrome Cache Entry: 266	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 267	ASCII text, with very long lines (2871)	87B8CA11556C066AADFF5D051F158BD7	B1AE27086D16655EDB0799BE356565E2A8BA50BF	4F0C1C75ABAB267719743985EDC745AC22ADE7424E2A2845DAF4BF22D632EFE9
Chrome Cache Entry: 268	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 269	HTML document, ASCII text, with very long lines (436), with no line terminators	482028F16C49457D91481A57BC473917	51B19D37E98457CD5FAD1917AE07D96F1F00BC9A	54D572152B0E24B1AC4069FF2E0A45D20A3B91D0CCF406858FC84AF0B0CAE303
Chrome Cache Entry: 270	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 271	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 272	Unicode text, UTF-8 text, with very long lines (35446), with no line terminators	4FF9F5DD7E56F8B5CE2127F2C9C15BA8	7CDFB14047CBC8966D6EA54A1B008B1B96AFC291	271E01CE233BB1A3027BA1A878E1209C0292CB13B4B4A0B8307F31EEC348C97D
Chrome Cache Entry: 273	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 274	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 275	GIF image data, version 89a, 1 x 1	07FFF40B5DD495ACA2AC4E1C3FBC60AA	E8AC224BA9EE97E87670ED6F3A2F0128B7AF9FE4	A065920DF8CC4016D67C3A464BE90099C9D28FFE7C9E6EE3A18F257EFC58CBD7
Chrome Cache Entry: 276	ASCII text, with very long lines (2871)	87B8CA11556C066AADFF5D051F158BD7	B1AE27086D16655EDB0799BE356565E2A8BA50BF	4F0C1C75ABAB267719743985EDC745AC22ADE7424E2A2845DAF4BF22D632EFE9
Chrome Cache Entry: 277	JPEG image data, progressive, precision 8, 600x600, components 3	9FD64068F6A6CCE947A27DD666BB71EB	22DE9AB23166FD06DEFE6C25F31BC813D9412F58	C2D180847587A75D7048D9E3237E56A03A505ECAE93DEFE02CA3C1CDF4D4E522
Chrome Cache Entry: 278	HTML document, ASCII text, with very long lines (645), with no line terminators	3B14B86F97F7D1E66C05D48E3852657C	C5C7B255084724A7399FB52A9204E0608FB8A6B5	A08ACD55BB001AA85CED7F4F93A4A1446CA18A17689E872B59A9DA81EBE0CD45
Chrome Cache Entry: 279	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 280	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 281	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 282	ASCII text, with very long lines (9849), with no line terminators	40CBFE53146C2AF3D277274B1A1DEAF4	B2E862BE7F0E8D3B507B65B0A5FE28536C6C6C71	F3000557F2BBBF6DBFE3FD781BFE0944565CB14BBA67873A02554A29AFCF30E6
Chrome Cache Entry: 283	SVG Scalable Vector Graphics image	F44286360EC5672BFD482D93AD3FDEE3	828919F45D6887867C99D21C07610BB158C7348D	E23925FEE789EC5CB82900E7D0EB5D248FFE06062112CA0CFC5096AA353DFC03
Chrome Cache Entry: 284	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 285	ASCII text, with very long lines (4006)	7D793F2FCAF08A6A9788CE8D909B2EBA	737B475C8792B09F98DEF16DCACEBAEA95291CB1	567A04CD89DF65685719373080F1076A26EEF2FA2D8385BF9E9155C6CF2FF4D0
Chrome Cache Entry: 286	HTML document, ASCII text, with very long lines (503), with no line terminators	AC451C1007FDAA1CF058ECA4B7F51CEB	3239DBB461D0DE917E833C4FB13D8E2803F560D8	58644B7DFA826A3291E2E5D6C2974B47906616E1AA03A2F757FDD1BDE7796621
Chrome Cache Entry: 287	ASCII text	608FC615E159D5BC782690B58A7D0E31	4494F461E0B04AF28B6484B3410819102B50156F	B31717F91DF558A1F42ED3124B7CDFAC53490BFB7E0084AD128665FD5836CA89
Chrome Cache Entry: 288	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 289	Web Open Font Format (Version 2), TrueType, length 34184, version 1.0	1ACA735014A6BB648F468EE476680D5B	6D28E3AE6E42784769199948211E3AA0806FA62C	E563F60814C73C0F4261067BD14C15F2C7F72ED2906670ED4076EBE0D6E9244A
Chrome Cache Entry: 290	HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators	225CCF3C5172AF18C19D0B8289D23115	098FD65421E2DD8518DE7050D83BAB5C826D3031	8661DC28414EDB59537BF30FC717CB95861A9EAA8E545A7D62E2D03F64597F7B
Chrome Cache Entry: 291	ASCII text, with very long lines (65470)	44C5EA09614106E53A574C25D5CA9ACD	AB8A888C4B2D9104303C2854F9B8D593C1F02D6D	81D77468DD28594F573A472039E9345154D19BA643F469837AD39FC29C06EA61
Chrome Cache Entry: 292	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x314, components 3	FD3FB99C89DC95C6AA3321EF927559F9	DB095449CC50D77C9CEBB375051EAC44A55CF5AD	2014CCF7F8957341A1750617822777F85788174C447A33850064A1998952FCA3
Chrome Cache Entry: 293	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 294	ASCII text, with very long lines (18860)	A8E3403609C4F4ACE5AB60E6A63FE1C2	60FAE46A31A62CDD2757335145B5A76FECC96205	8804537C9324BC7658E99D4D0095580CD9CDA1EE992B7B78647A83115DD6C55F
Chrome Cache Entry: 295	HTML document, ASCII text, with very long lines (65536), with no line terminators	44D33CFB6BE6D2BB260FBDD2E330CAD5	7BB04E33F74683D365B9D044E9D054B5B0C4A7EC	27590A8C4A5A6B380FB6F1E910CDC8E7DCCD4526927FC82F6D84087688EEBB2C
Chrome Cache Entry: 296	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 297	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 298	HTML document, ASCII text, with very long lines (65536), with no line terminators	CA31121C84ED4496A73C413084C8E5FB	77995BC032A5AF912B1B0956DF3C595F54D8685B	83D5DF9F6D008A655395D76B8C300BA0861B9B6823F596C3F8B75213F1A6624B
Chrome Cache Entry: 299	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 300	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 301	ASCII text, with very long lines (52981)	73AD177890788405D5EA5C193D71D3E2	1DEA04A66461B7F9F5F4A631E2C59D53C6850391	6D3957707FB4E2B91720B38131756A3E02033ED23626A61D745986D3D9F8AD6C
Chrome Cache Entry: 302	HTML document, Unicode text, UTF-8 text, with very long lines (509)	891B76398DA7BBF59F2BD0D87C578F13	611868B12674CDD37AF28E548A5B324641ABE911	686A862FCE57312FE06A8AAC99306B5FA46972DCD1E9314246CBE6FF859ED3A8
Chrome Cache Entry: 303	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 304	ASCII text, with very long lines (31997)	F416F9031FEF25AE25BA9756E3EB6978	E2A600E433DF72B4CFDE93D7880E3114917A3CBE	A53C43F834B32309B084EA9314DF8307E9C78CEE2202C6E07F216AE4AE5B704D
Chrome Cache Entry: 305	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 607x108, components 3	6FC2D839F7CF510E00C9F5BD1132889F	C44684240A5160091BF2C1288115DC100DE41227	CF387A9D3B9C06413E7DF77CF80EF0E245FD4244CC4F6916C2AEA6F4806471F0
Chrome Cache Entry: 306	ASCII text, with very long lines (9941)	24ADFB7783A4C5C3CA8E34F77039F1B7	2D910CC88587E4F8B14AE999B2B71512005E96BC	6296B540F340CACE3C75B276F905CE7FB4BBF045682D291C8A5A7F55F63F4B70
Chrome Cache Entry: 307	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 308	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 309	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 310	ASCII text, with very long lines (3776)	82C58DFC5714B5DE7221B0171E25E70A	CE1B53181126D75F283D046B7DD419C78B23C294	646DE26ACA05B66F1AF42326F476FA9E9FD0FE1AE0E6B84C8DF43A371FFF71AB
Chrome Cache Entry: 311	Web Open Font Format (Version 2), TrueType, length 15744, version 1.0	15D9F621C3BD1599F0169DCF0BD5E63E	7CA9C5967F3BB8BFFEAB24B639B49C1E7D03FA52	F6734F8177112C0839B961F96D813FCB189D81B60E96C33278C1983B6F419615
Chrome Cache Entry: 312	ASCII text, with very long lines (3237)	61F49E779E4E8ABC1225D63669A34D67	6FD8516FA3E99D15BEE75A964B07D6C03CF61998	CE13D5D11A2C8A21612D2EAE7A1732F20CA5A38DAF0BE8AF6AAEEF64E07D75E4
Chrome Cache Entry: 313	ASCII text, with very long lines (52981)	73AD177890788405D5EA5C193D71D3E2	1DEA04A66461B7F9F5F4A631E2C59D53C6850391	6D3957707FB4E2B91720B38131756A3E02033ED23626A61D745986D3D9F8AD6C
Chrome Cache Entry: 314	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 315	ASCII text, with very long lines (65470)	44C5EA09614106E53A574C25D5CA9ACD	AB8A888C4B2D9104303C2854F9B8D593C1F02D6D	81D77468DD28594F573A472039E9345154D19BA643F469837AD39FC29C06EA61
Chrome Cache Entry: 316	Web Open Font Format (Version 2), TrueType, length 31196, version 1.0	EA2343C7DCCAD57360FB611D67204445	B603D9E68BB1ED5E4B33D5E31121160CB4D23452	2A04078F9550381B5148170CEAF5B378A1B31ED8274C6D0094AEBA6F599462CC
Chrome Cache Entry: 317	ASCII text, with very long lines (9941)	24ADFB7783A4C5C3CA8E34F77039F1B7	2D910CC88587E4F8B14AE999B2B71512005E96BC	6296B540F340CACE3C75B276F905CE7FB4BBF045682D291C8A5A7F55F63F4B70
Chrome Cache Entry: 318	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 319	HTML document, ASCII text, with very long lines (436), with no line terminators	6F9C74518834F570333237AD827E993C	BCCD97166E41F1B82FAE13D501743A8C53A0E31A	702F08ED0C720E58F99120B786FAD56D4552F9E23A2880CAC5E201F9A8B1DE85
Chrome Cache Entry: 320	ASCII text, with very long lines (4816)	963090F0C2A563C3110987B4769F5785	FCB1C8084A1F5EFDB680E2BA268AF753356509E0	B0088124EDC0322D5CC6C4385CA59C018CEB76790C907D13F1EE5BE3DCC1A039
Chrome Cache Entry: 321	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 322	JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x314, components 3	FD3FB99C89DC95C6AA3321EF927559F9	DB095449CC50D77C9CEBB375051EAC44A55CF5AD	2014CCF7F8957341A1750617822777F85788174C447A33850064A1998952FCA3
Chrome Cache Entry: 323	Unicode text, UTF-8 text, with very long lines (65352), with no line terminators	66F3DDDDF050A965E40D21BF3FCCE3A6	7A6D00F7A23F5794EE5F4E10D36E4D0AD2269154	16A8DFA193E5026A6E382B1C5AA59A326724E385B18625F182A51DC61C3B14BE
Chrome Cache Entry: 324	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 728x90, components 3	B33DCC7A9CF82ED9DD6C6ABD22E3B904	E298D16148CD3DEF72EF259203FE5C43EBD6BB54	2F32A3DDFCCDB21A0AECBC1E5D93C3389427B8F13E0466C014EA1047F5197B4E
Chrome Cache Entry: 325	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 326	ASCII text, with very long lines (56259)	D3E4ED450DE9A4AB42D1B16D2C0C2B73	12CB7BD5205AB1CD3CAA6A8CBF54B1AA5C36AA6A	A8F56C719C331C83B307D473CDC064075142471A40EBFC19DBDB61C8C11955B8
Chrome Cache Entry: 327	ASCII text	21D0ACB96C650BBBB2ED9E450B841312	BE788A1DF76A09754B3563FCD7868C113C8DF346	973D053A0F43DCBF20A102EE5272FB1C6B877920E8EFBBD5C35DE0EDEDEBC0EE
Chrome Cache Entry: 328	GIF image data, version 89a, 1 x 1	B4491705564909DA7F9EAF749DBBFBB1	279315D507855C6A4351E1E2C2F39DD9CD2FCCD8	4E0705327480AD2323CB03D9C450FFCAE4A98BF3A5382FA0C7882145ED620E49
Chrome Cache Entry: 329	ASCII text, with very long lines (2222)	1C33A4D6D63C7E6E38CC72E6245FC107	19EA40DED1698EC0617604DC3E09897F7A8FF640	435DB380C9936C0970DCD3D9941EAB6AEC2FCF2A38C3E2B4E02D957E8E76BD1F
Chrome Cache Entry: 330	ASCII text, with very long lines (2213)	16973EFB0CA31361CEB8E311438A088C	AC68F430F65ABFBEDBB01BC191156C664734DA87	ED2A473CFA3C4774BF40ECD7BF40B712194E6FB12BFE8DA6BE047D867A7BAA61
Chrome Cache Entry: 331	GIF image data, version 89a, 1 x 1	325472601571F31E1BF00674C368D335	2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A	B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
Chrome Cache Entry: 332	HTML document, ASCII text, with very long lines (436), with no line terminators	45EC4B3D98A106533CCEA02D951D4019	2B70231E96C7225419301DE4CB8BF5111E5ADBD8	B85856C2FC719C203E4AEDDF094FA207CE24C628A91786FD1B117666A1FC3E3C
Chrome Cache Entry: 333	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 334	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 335	SVG Scalable Vector Graphics image	62DE6CBE68D5E9B66504731A6E084D18	99A85E75EE13A4F2AEDEFE623BCD2C29F136E1A7	5650739297F482BDBD7D77BA6A7A5B29C5F37EDFB79CA0E7E63EE9300980F744
Chrome Cache Entry: 336	GIF image data, version 89a, 1 x 1	B4491705564909DA7F9EAF749DBBFBB1	279315D507855C6A4351E1E2C2F39DD9CD2FCCD8	4E0705327480AD2323CB03D9C450FFCAE4A98BF3A5382FA0C7882145ED620E49
Chrome Cache Entry: 337	JPEG image data, progressive, precision 8, 600x600, components 3	F3F0E368FDDE3580E76D295D2CA93DDC	EB7CC556074D15BBA22FD1923242F2005B1C4871	13745FFD7C694D5E70515DF4AC545DAC82F410AA3169693825DD2C5E3CE63240
Chrome Cache Entry: 338	ASCII text, with very long lines (2974)	D86B220B3E81EDE8980FCC7CB83D4498	285BD8439F8D7A3024FB8EE26DFFBF4C7AC96DB0	11286005BE0144048B40410234094E5CA25A55A987D088EBA6D0E5426A0D52EA
Chrome Cache Entry: 339	ASCII text, with very long lines (1055)	76A4D84DE75340D59CA06503A14184D4	2FE3C4A95AF88BE57D1912BB09DC463F69924402	66E9BF446316F6EEC5EAEFA7098592BBD2144A60EB38C481DB233A6CA8B8D94A
Chrome Cache Entry: 340	ASCII text, with very long lines (3776)	82C58DFC5714B5DE7221B0171E25E70A	CE1B53181126D75F283D046B7DD419C78B23C294	646DE26ACA05B66F1AF42326F476FA9E9FD0FE1AE0E6B84C8DF43A371FFF71AB
Chrome Cache Entry: 341	ASCII text	3C0D3A4285613B89B4DBD3CA53812742	EF88962FD6A37F379168034A6C3CDF65CCE8E47D	662DBB2E9A1EAA62F25FD7D00ECA3D78B8112C88F96F064A49ACA4A6BE2892D5
Chrome Cache Entry: 342	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 343	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 344	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 345	ASCII text, with very long lines (3889)	B0AC77EB45A4CAB2841AE73AA5869076	A0ADA395C1EE3BF22300032650B49CF1C52006FA	95E1522E6A8ECD387288A785EF3B9DD2ADB4309F7342F8B1B37467A1BC4F6E5E
Chrome Cache Entry: 346	SVG Scalable Vector Graphics image	DB3DF4CF961C8D56E246DB246F4D6DC6	FDA911A160D4497C00C56F8898BF057890DBB12E	F6521748F407A9AAD4ACB55207D3915E5A4986B17E93B3E21B52CB51BAEC1947
Chrome Cache Entry: 347	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 348	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	7BD42E5A35B5FB3FF852D6EA9191CA83	8A141EB392A05A2DEA3DCD83B97940EF70A81EBC	5C4A713EE4250851232BE9F9F68D41586BE39B299528CFC7266E0B0E7E582E1B
Chrome Cache Entry: 349	HTML document, Unicode text, UTF-8 text, with very long lines (52162), with no line terminators	2C32EEC3E8A1AC1B667E60ECE00F6FAF	43CA11D44A43C1DCB7682E934BCE9C12D6457C6F	F43C20104F961B1CEA031A48E5B692B3EBE7CE54382D3952DB3BE7331BE5403C
Chrome Cache Entry: 350	HTML document, ASCII text, with very long lines (640), with no line terminators	55447927D3FFB85B3BB272439D5193B5	F6E7F405D56EE6F5CE5ECB53CF20561C18AA4C03	D0E8821E889280C3B745B859E6B3971924723A4562BAC65BA8AA0FE44BFC83B2
Chrome Cache Entry: 351	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 352	ASCII text, with very long lines (3889)	B0AC77EB45A4CAB2841AE73AA5869076	A0ADA395C1EE3BF22300032650B49CF1C52006FA	95E1522E6A8ECD387288A785EF3B9DD2ADB4309F7342F8B1B37467A1BC4F6E5E
Chrome Cache Entry: 353	JPEG image data, progressive, precision 8, 600x600, components 3	9FD64068F6A6CCE947A27DD666BB71EB	22DE9AB23166FD06DEFE6C25F31BC813D9412F58	C2D180847587A75D7048D9E3237E56A03A505ECAE93DEFE02CA3C1CDF4D4E522
Chrome Cache Entry: 354	HTML document, ASCII text, with very long lines (2008)	D1F231B50B152372A6C3100F4AED1973	1BF10951BE06DA03D1371A904E19C0419F2A3637	9DEC95894AF322B087AB6E87F9C8CE66D849646CF33B375D33C957F4569ED081
Chrome Cache Entry: 355	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 356	Web Open Font Format (Version 2), TrueType, length 18596, version 1.0	C83E4437A53D7F849F9D32DF3D6B68F3	FABEA5AD92ED3E2431659B02E7624DF30D0C6BBC	D9BADA3A44BB2FFA66DEC5CC781CAFC9EF17ED876CD9B0C5F7EF18228B63CEBB
Chrome Cache Entry: 357	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 358	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 359	PNG image data, 1200 x 300, 8-bit/color RGBA, non-interlaced	0A10875DD85365705E5EAD14A99EB9AF	291AFDDC55A996ABF7AA8627E983D4F2EE66383A	D21D71482B319441598223A737DB827275CA21314BBE4B7976F53232F02ACCEF
Chrome Cache Entry: 360	PNG image data, 1920 x 800, 8-bit/color RGBA, non-interlaced	4829571FB13115E7F8B97FF88559C950	D26AA2EAB0A52692729F3D3AECC4E395896E7162	878AABCE3B75F301F59152D70DCB633FA520B6AE4963E0404A34772FE03C703B
Chrome Cache Entry: 361	HTML document, ASCII text, with very long lines (634)	2FE2B1F17888E326B010A8CDA72D48D3	59CBBEEDE4C472024C482BAE8529144119BBBD27	9A9B7FB32E01FD70747F32EFDBD0472FD681C85EEBB0C42D10C7A514820A0062
Chrome Cache Entry: 362	ASCII text, with very long lines (9849), with no line terminators	40CBFE53146C2AF3D277274B1A1DEAF4	B2E862BE7F0E8D3B507B65B0A5FE28536C6C6C71	F3000557F2BBBF6DBFE3FD781BFE0944565CB14BBA67873A02554A29AFCF30E6
Chrome Cache Entry: 363	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 364	ASCII text, with very long lines (3557)	0D833FD65D7A9C8C17FED9705F579B49	128A64F415163AE29D547D4167E12875E2C9E465	E239504132EBD13F770F54B558319788EF8D1146473132043B2D9A1130B42A77
Chrome Cache Entry: 365	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 366	GIF image data, version 89a, 1 x 1	07FFF40B5DD495ACA2AC4E1C3FBC60AA	E8AC224BA9EE97E87670ED6F3A2F0128B7AF9FE4	A065920DF8CC4016D67C3A464BE90099C9D28FFE7C9E6EE3A18F257EFC58CBD7
Chrome Cache Entry: 367	Unicode text, UTF-8 text, with very long lines (41091), with no line terminators	6379270B59989696F9F4EE9B5DC5DCED	3C7E07EFB8D306915081CF51E027ED59BEF52933	F99C9435EDAA8C15F8250BDC194488A6AB4A914961B9632377778858B557DF98
Chrome Cache Entry: 368	ASCII text	955A86AF26439E53B65EAFCA6968AFB0	78BDE6BCA33CC9586B1A3D8A184E3FC2387EEF16	3D31E2A313492B48A94E1F3A42E0029819B841E4C80697F88B959AA32B6B7DAD
Chrome Cache Entry: 369	GIF image data, version 89a, 1 x 1	325472601571F31E1BF00674C368D335	2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A	B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
Chrome Cache Entry: 370	JPEG image data, progressive, precision 8, 600x600, components 3	F3F0E368FDDE3580E76D295D2CA93DDC	EB7CC556074D15BBA22FD1923242F2005B1C4871	13745FFD7C694D5E70515DF4AC545DAC82F410AA3169693825DD2C5E3CE63240
Chrome Cache Entry: 371	ASCII text, with very long lines (65536), with no line terminators	B959F22280157E2C555913DCCD91372B	36211D2AB385ABDAB66E0159F5EE621A69DE8C5C	FBFCCD2FC69FD493FA32DF6EFDED4D8F634145C2DF92FBA60A1644861A9444AF
Chrome Cache Entry: 372	ASCII text, with very long lines (2177)	AAAD4E6B62F7BCEEB5CD7583BFB641D1	70E781942739685D9D8BECDC4CD701F6731E3117	ACA05A46ADCA741049C6CC1FFF54ED816CE695B86AFCAB57146A1E5582A78E98
Chrome Cache Entry: 373	MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel	5805D8CE35F814CD64AC5F4A08D5A44A	31C27176180BB69EC517FF9718C7B444DE1094DC	657E0802283791AA819D39DBCF9BC773CFE13C523BB05A2532684501B95B4519
Chrome Cache Entry: 374	ASCII text, with very long lines (2611)	A8D03021EA0652427500D36FB8385AC7	04ABE2A0C48FBE297D536C0754DCEC4D68589650	B0B99DE89B58E816296DEFA0DC403E2C55EED9B6B1895BC9190F99E64AA847D4
Chrome Cache Entry: 375	JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 607x108, components 3	6FC2D839F7CF510E00C9F5BD1132889F	C44684240A5160091BF2C1288115DC100DE41227	CF387A9D3B9C06413E7DF77CF80EF0E245FD4244CC4F6916C2AEA6F4806471F0
Chrome Cache Entry: 376	ASCII text, with very long lines (4816)	963090F0C2A563C3110987B4769F5785	FCB1C8084A1F5EFDB680E2BA268AF753356509E0	B0088124EDC0322D5CC6C4385CA59C018CEB76790C907D13F1EE5BE3DCC1A039
Chrome Cache Entry: 377	Unicode text, UTF-8 text, with very long lines (65352), with no line terminators	66F3DDDDF050A965E40D21BF3FCCE3A6	7A6D00F7A23F5794EE5F4E10D36E4D0AD2269154	16A8DFA193E5026A6E382B1C5AA59A326724E385B18625F182A51DC61C3B14BE
Chrome Cache Entry: 378	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 379	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	4087858E2C9DB9AA8F6A840AEDCFB533	D1FFE861DA6BD0E95FD1A365B0C3D3CEB6CD58A3	4D45982F2DC34F36C9045EE46A75A1943666BB7FD64E103CAC8C7429E7012840
Chrome Cache Entry: 380	HTML document, Unicode text, UTF-8 text, with very long lines (65532), with no line terminators	CFE5180AEAFD98676A407371BBE32829	16618237ADC59FCDE23CDFA44216ADC14BE749F1	649B00615CCD626C32246F7D6A72EB1BBF36B34A1C6A25C937D672CD5E596073
Chrome Cache Entry: 381	ASCII text, with very long lines (2079)	63CE2B7DF9EDC4265DF3CB9EDAD9F650	F744EEBF95EEB1A067294A2DC29951F0EB5BE9CD	BA5F8D3B5CD5D1A9D01D0F07C1BF82B4F422D963AB1A406E2DECA0074CF5F32F
Chrome Cache Entry: 382	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 383	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 384	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 385	SVG Scalable Vector Graphics image	25FCC0797A2837D2F439C5A924FD40A6	C7D7AB6A5FEBDCD9F9109EC641E7E9F1D72C5EDD	D1A9B8A6EA78721CD2693597CD63F325D36BAA85A72C8283FD35C14061EBEDE8
Chrome Cache Entry: 386	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 387	ASCII text, with very long lines (65536), with no line terminators	07790F4DBF0198F18FAE3207A1E55840	2C14DA81032D47328708CC1C9088649A636A6AAF	C1E5ABC7001A1F99B6877FB04478B8C5F873DE2760F25071BC9476BDFD468C7D
Chrome Cache Entry: 388	ASCII text, with very long lines (3348)	CEEF1557AD74074296CCEF8097DDCBB9	FB5855090083FFB2870EE114D851AB22253C6FC0	51D7AB26F75DDC39C88182B6ED612FF26A9088AD35B7409EE4F582DF4D9FCFF2
Chrome Cache Entry: 389	ASCII text, with very long lines (63188)	F0C2BCF5EF0C4476508D79EC9CDCCE07	3BEED68ED7D753C6BF4F61C26386DDD7929BA030	EDD03B96AE4FF7886406C59D7DFEEAA1B624A7DA297BF2F92D0CB6B7F9633CBA
Chrome Cache Entry: 390	C++ source, ASCII text, with very long lines (2873)	0A69A7A3530DE318072DE6182E31A0C6	9BF1165A0064FB85DD8F29DDC6C45AD5B9574EE9	BF1E2557855835794A8A1D9C1403AC53373CCEA3006325357E5CB384E93D7514
Chrome Cache Entry: 391	HTML document, ASCII text, with very long lines (10713)	E6632734D83628570E773EB86CD2BEDC	078106CC801C3EF2DD4BD386EF15DB2CCC1624AA	970A3F628F7E8D7071303F71D298DF6926D037B165F225F4FCABE7B1D51D2203
Chrome Cache Entry: 392	JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 728x90, components 3	B33DCC7A9CF82ED9DD6C6ABD22E3B904	E298D16148CD3DEF72EF259203FE5C43EBD6BB54	2F32A3DDFCCDB21A0AECBC1E5D93C3389427B8F13E0466C014EA1047F5197B4E
Chrome Cache Entry: 393	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 394	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 395	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 396	ASCII text, with very long lines (2213)	16973EFB0CA31361CEB8E311438A088C	AC68F430F65ABFBEDBB01BC191156C664734DA87	ED2A473CFA3C4774BF40ECD7BF40B712194E6FB12BFE8DA6BE047D867A7BAA61
Chrome Cache Entry: 397	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 398	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 399	ASCII text, with very long lines (2611)	A8D03021EA0652427500D36FB8385AC7	04ABE2A0C48FBE297D536C0754DCEC4D68589650	B0B99DE89B58E816296DEFA0DC403E2C55EED9B6B1895BC9190F99E64AA847D4
Chrome Cache Entry: 400	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 401	ASCII text, with very long lines (18860)	A8E3403609C4F4ACE5AB60E6A63FE1C2	60FAE46A31A62CDD2757335145B5A76FECC96205	8804537C9324BC7658E99D4D0095580CD9CDA1EE992B7B78647A83115DD6C55F
Chrome Cache Entry: 402	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 403	ASCII text, with very long lines (2222)	1C33A4D6D63C7E6E38CC72E6245FC107	19EA40DED1698EC0617604DC3E09897F7A8FF640	435DB380C9936C0970DCD3D9941EAB6AEC2FCF2A38C3E2B4E02D957E8E76BD1F
Chrome Cache Entry: 404	ASCII text, with very long lines (31997)	F416F9031FEF25AE25BA9756E3EB6978	E2A600E433DF72B4CFDE93D7880E3114917A3CBE	A53C43F834B32309B084EA9314DF8307E9C78CEE2202C6E07F216AE4AE5B704D
Chrome Cache Entry: 405	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 406	Web Open Font Format (Version 2), TrueType, length 21428, version 1.0	965BBFEA8A5DB5AEA3A63DA8C5B3D570	CE645F4ADF18C4FF26251610878969C9562DE69F	92A7F8224A1BA2CCFA92D3E1FC55EE5AA7AE20A0FCD80D3331BD660878A090F5
Chrome Cache Entry: 407	ASCII text, with very long lines (2015)	D64BD6AB65DDB794E3A53D17664F547D	587DAF312494C0938078859F8CF6A540BB37A874	E217AA633D1A7501713AB4F913DB0941E41B70CE5C8717C2E6F41303B62416C2
Chrome Cache Entry: 408	ASCII text, with very long lines (2079)	63CE2B7DF9EDC4265DF3CB9EDAD9F650	F744EEBF95EEB1A067294A2DC29951F0EB5BE9CD	BA5F8D3B5CD5D1A9D01D0F07C1BF82B4F422D963AB1A406E2DECA0074CF5F32F
Chrome Cache Entry: 409	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 410	C++ source, ASCII text, with very long lines (2015)	0273C00D693AA2D6F3F456E07FEF12F7	F2F679728DDE2E08E8C84B5A483625896B4EFCFE	7C6ECC69491D85EF88C56005F0BAD1EAA6475D0A1DD58AAA0675B03360F875D1
Chrome Cache Entry: 411	HTML document, ASCII text, with very long lines (436), with no line terminators	8F32B6F1FDFEB184BDD60092C308AC84	D8D1497B9BD83F6CF15F91947D8BF613A64BAD75	BF2092C8C70999B0E1575699C144B6F0765C5193313C52B46C6FB0D0715E7D9B
Chrome Cache Entry: 412	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 413	GIF image data, version 89a, 1 x 1	07FFF40B5DD495ACA2AC4E1C3FBC60AA	E8AC224BA9EE97E87670ED6F3A2F0128B7AF9FE4	A065920DF8CC4016D67C3A464BE90099C9D28FFE7C9E6EE3A18F257EFC58CBD7
Chrome Cache Entry: 414	GIF image data, version 89a, 1 x 1	325472601571F31E1BF00674C368D335	2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A	B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
Chrome Cache Entry: 415	ASCII text, with very long lines (65536), with no line terminators	32EB99191ADB9E08186B672166E226DF	B1AEF59D897DBC5E8885133FCA0DE703D0BF01AD	89565C06B4ECB0D0CF45B4554573966F6849AA47370D8A3CD7802C8B7CA9E651
Chrome Cache Entry: 416	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 417	HTML document, Unicode text, UTF-8 text, with very long lines (1074)	5F910E9CB5D5A51D1A6800FC5711EF1B	5A3AC4DF04FA342EC0DEA8793946CF8CE7A23D42	660334E9661B4E49ECA9078DA8449C19656D4DD6257D3142F7744F1038F8A1EC
Chrome Cache Entry: 418	GIF image data, version 89a, 1 x 1	B4491705564909DA7F9EAF749DBBFBB1	279315D507855C6A4351E1E2C2F39DD9CD2FCCD8	4E0705327480AD2323CB03D9C450FFCAE4A98BF3A5382FA0C7882145ED620E49
Chrome Cache Entry: 419	SVG Scalable Vector Graphics image	228E4123117266C027909FFC4080D5F2	E75F4D9FBFBFE5A1EAE25A6F422BFBE716A2A75D	D3A5256DE789546CADD13B79DB8C0F5456AA2D19119B3430E65AFC93D67D0727
Chrome Cache Entry: 420	GIF image data, version 89a, 1 x 1	325472601571F31E1BF00674C368D335	2DAEAA8B5F19F0BC209D976C02BD6ACB51B00B0A	B1442E85B03BDCAF66DC58C7ABB98745DD2687D86350BE9A298A1D9382AC849B
Chrome Cache Entry: 421	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 422	SVG Scalable Vector Graphics image	228E4123117266C027909FFC4080D5F2	E75F4D9FBFBFE5A1EAE25A6F422BFBE716A2A75D	D3A5256DE789546CADD13B79DB8C0F5456AA2D19119B3430E65AFC93D67D0727
Chrome Cache Entry: 423	ASCII text, with very long lines (2238)	F13F933A8167845114321AF2FA3EEFBB	D4C3EF193051FF55F46ABCE315FA8C942F8C3BC2	12969DD0A63E654E9D52998CAE3EBA0EE1102F963C20FF1A23BBA5E98DA2AD02
Chrome Cache Entry: 424	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 425	ASCII text, with very long lines (3048)	720B17007468ED45EEEB0189F26E988E	EAAA0BB51885CF01D4BDEB4DA347EA42A816C638	E12F1AAD0C4D33C880FAF28FC0CF72A04A32F235DE77F905C2D4C469A4404C61
Chrome Cache Entry: 426	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 427	ASCII text, with very long lines (1382)	3B071D5606CC1CF92AE307F5BDB4E540	E191068CC90E5489130489A1CF173FE50BBA28B8	FF3DE130872FE0FB5B770DFA2BC9F0DAF8AB320403A34A60D089436F08D24F99
Chrome Cache Entry: 428	Web Open Font Format (Version 2), TrueType, length 26304, version 1.0	29404B5009A74D47F2A7923DA5741FD5	C8C7A68AF3F7E4F92D932203EFDA0C38E4D170AB	0B7E3AF1CB23F3B1CC2C3418F3C31AB3BBADEAA2BA5E72F3CB818E4B44C420F4
Chrome Cache Entry: 429	GIF image data, version 89a, 1 x 1	B4491705564909DA7F9EAF749DBBFBB1	279315D507855C6A4351E1E2C2F39DD9CD2FCCD8	4E0705327480AD2323CB03D9C450FFCAE4A98BF3A5382FA0C7882145ED620E49
Chrome Cache Entry: 430	SVG Scalable Vector Graphics image	62DE6CBE68D5E9B66504731A6E084D18	99A85E75EE13A4F2AEDEFE623BCD2C29F136E1A7	5650739297F482BDBD7D77BA6A7A5B29C5F37EDFB79CA0E7E63EE9300980F744
Chrome Cache Entry: 431	ASCII text, with very long lines (786)	AB304529064B2C30C88FC41AD81913E0	14091E21A049D97B052DD56FF4076898F6F7D0CC	88C5A7E6C9B3319F4BE9CD873D1E19766A62BE628EA9921156DD2702F1D15031
Chrome Cache Entry: 432	ASCII text, with very long lines (1055)	76A4D84DE75340D59CA06503A14184D4	2FE3C4A95AF88BE57D1912BB09DC463F69924402	66E9BF446316F6EEC5EAEFA7098592BBD2144A60EB38C481DB233A6CA8B8D94A
Chrome Cache Entry: 433	ASCII text, with very long lines (3237)	61F49E779E4E8ABC1225D63669A34D67	6FD8516FA3E99D15BEE75A964B07D6C03CF61998	CE13D5D11A2C8A21612D2EAE7A1732F20CA5A38DAF0BE8AF6AAEEF64E07D75E4
Chrome Cache Entry: 434	ASCII text, with very long lines (3348)	CEEF1557AD74074296CCEF8097DDCBB9	FB5855090083FFB2870EE114D851AB22253C6FC0	51D7AB26F75DDC39C88182B6ED612FF26A9088AD35B7409EE4F582DF4D9FCFF2
Chrome Cache Entry: 435	JPEG image data, progressive, precision 8, 600x600, components 3	745C0B13D2FE67F1E5ABA04C449EDD24	AD86323C1E3B3EC0F0D2B8606408A13DCC361460	426E01BA21F71FF9FE2883942C1E225DB3F25A1326BC34224DECF70BEE1CCB19
Chrome Cache Entry: 436	ASCII text, with very long lines (63188)	F0C2BCF5EF0C4476508D79EC9CDCCE07	3BEED68ED7D753C6BF4F61C26386DDD7929BA030	EDD03B96AE4FF7886406C59D7DFEEAA1B624A7DA297BF2F92D0CB6B7F9633CBA
Chrome Cache Entry: 437	PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced	4087858E2C9DB9AA8F6A840AEDCFB533	D1FFE861DA6BD0E95FD1A365B0C3D3CEB6CD58A3	4D45982F2DC34F36C9045EE46A75A1943666BB7FD64E103CAC8C7429E7012840
Chrome Cache Entry: 438	ASCII text, with very long lines (53223)	5A1A948517F1F254C5E5162B99DB4B89	6BE4AADEDFE1D81CFE8F3DCE971BFCE2E44F03C8	59318C2178ADAEE793844C43163C965B0FC514123D50DB506D8C190B1047838F
Chrome Cache Entry: 439	Web Open Font Format (Version 2), TrueType, length 15920, version 1.0	3A44E06EB954B96AA043227F3534189D	23CEF6993DDB2B2979E8E7647FC3763694E2BA7D	B019538234514166EC7665359D097403358F8A4C991901983922FB4D56989F1E
Chrome Cache Entry: 440	Web Open Font Format (Version 2), TrueType, length 12896, version 1.0	47ADF1610F40EC74B72068C5A111D3AD	4B62442240CA72C2548DBCFA9BADC0CA206D7947	D5D2945F49FC861AB7092BBD5BEF93DA3B0F6B6E91A2E1B7711D778BC7A57BAC
Chrome Cache Entry: 441	GIF image data, version 89a, 1 x 1	D89746888DA2D9510B64A9F031EAECD5	D5FCEB6532643D0D84FFE09C40C481ECDF59E15A	EF1955AE757C8B966C83248350331BD3A30F658CED11F387F8EBF05AB3368629
Chrome Cache Entry: 442	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5
Chrome Cache Entry: 443	SVG Scalable Vector Graphics image	DB3DF4CF961C8D56E246DB246F4D6DC6	FDA911A160D4497C00C56F8898BF057890DBB12E	F6521748F407A9AAD4ACB55207D3915E5A4986B17E93B3E21B52CB51BAEC1947
Chrome Cache Entry: 444	JSON data	9C4C91118B5CC5A7B1E3EF7B228C8934	200A0F39428F1F8B982CC803A65C3FEF869FD05B	7AF70F86B87E922BC03DFD22B75BB06F36E88D5FF5BC2390BD12BF6697ED5661
Chrome Cache Entry: 445	PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced	E7673C60AF825466F83D46DA72CA1635	FC0FCBEE0835709BA2D28798A612BFD687903FB5	0B8A20373C6DD04E091902226D922B3688143A8938AFB9D283D889DE7B55CEB5

AV Detection

Antivirus detection for URL or domain

Source: http://google.com

URL Reputation: Label: malware

HTML page contains hidden javascript code

Source: https://www.haoqq.com

HTTP Parser: Base64 decoded: [null,null,null,3]

HTML page contains string obfuscation

Source: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.html

Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://www.haoqq.com	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://googleads.g.doubleclick.net	HTTP Parser: No favicon
Source: https://s0.2mdn.net	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.6:49768 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50066 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50325 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50325 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.6:50355 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50394 version: TLS 1.2

Connects to several IPs in different countries

Source: unknown

Network traffic detected: IP country count 10

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45
Source: unknown	TCP traffic detected without corresponding DNS query: 13.107.246.45

Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.wbtd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/plugins.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/styles.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/jquery.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/haoqq.gif HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/magento.svg HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/prestashop.png HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/wordpress.svg HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/shopify.svg HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/haoqq.gif HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/magento.svg HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/prestashop.png HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/jquery.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/css2.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/pages/assets/css/styles.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/wordpress.svg HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/css.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/pages/assets/css/styles.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/shopify.svg HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/css/css1.css HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://www.haoqq.com/pages/assets/css/styles.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/popper.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/bootstrap.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/select2.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/fonts/92zatBhPNqw73oTd4g.woff2 HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.haoqq.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.haoqq.com/pages/assets/css/css2.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/owl.carousel.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/ion.rangeSlider.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=soKWxluS4tuRGfA&MD=yw2KXhkV HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/counterup.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/popper.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/custom.js HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/fonts/themify.woff HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.haoqq.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.haoqq.com/pages/assets/css/plugins.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/owl.carousel.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/bootstrap.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/fonts/7Auwp_0qiz-afTLGLQ.woff2 HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.haoqq.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.haoqq.com/pages/assets/css/css1.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/select2.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/ion.rangeSlider.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/counterup.min.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/js/custom.js HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/html/r20241001/r20190131/zrt_lookup_fy2021.html HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&adk=1812271804&adf=1573534164&abgtt=6&lmt=1728042057&plat=3%3A16%2C4%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.haoqq.com%2F&pra=5&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aicel=33&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&aiict=1&aipecl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055414&bpp=29&bdt=9079&idt=1807&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&nras=1&correlator=5260686608363&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=1859 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&slotname=5424108534&adk=3166978744&adf=3025194257&pi=t.ma~as.5424108534&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055443&bpp=2&bdt=9108&idt=1840&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0&nras=1&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=0&ady=3136&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&btvi=1&fsb=1&dtd=1846 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=884246868&pi=t.aa~a.3958040794~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055445&bpp=1&bdt=9109&idt=1853&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0%2C1200x280&nras=2&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=89&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1856 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/image/loader.gif HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/pages/assets/css/styles.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CDNeaS9T_ZpnWAa2dvPIP7626gAyM7O2yerX2tr76ErCQHxABIOfA1G1gyQagAZu5y5wDyAEJqAMByAPLBKoEzgFP0Muz49MN5LepIXnNX2sWNLxMALjBFfUbB0OZ2Y0CJtCvkfyDGTTHkvgwdHFxHOZPYjHlSnAkfjxVHg7khwWwbSF-mOD2pnLEQM0aRU-cye1QN1svxQfKt4w1qmK1C6_lgsJpSig58jbAj5r_X7Xa2RcNQkg64BuGTdiTL6Ze5Zc8uCeSGxuJNBBw3Mos-MSRXrVt2jk195dptrpa4u92Fh3hUoYfOGkZLPzpSB6kEGmMZPHIo9hsmqYNijUzO_i8hzKhl_YCoGzyT_FAcMAE78rGuP0EiAX82IfGBaAGLoAHzca0Y6gH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB_fCsQLYBwDyBwQQmMgH0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYicHTqNL0iAOaCXtodHRwczovL3d3dy5tYXJxdWlzYXB0cy5jb20vP2xmX3NvdXJjZT0xMjM1JnV0bV9jYW1wYWlnbj0xNDg5MTAzOTk2JnV0bV9zb3VyY2U9Z29vZ2xlJnV0bV9tZWRpdW09Y3BjJnV0bV90ZXJtPSZnYWRfc291cmNlPTWACgHICwHaDBAKChDQ1e2A6umXvDkSAgED2BMD0BUBgBcBshceChoIABIUcHViLTE2NzMzOTkxNjA3MTA3MTgYABgBuhcCOAGyGAkSApNOGC4iAQDQGAE&sigh=G4BK4_YU2lA&uach_m=%5BUACH%5D&ase=2&cid=CAQSTwDpaXnfveAUNmBW3DIP4C91nkml_SMN3Hg2AHSGSs7Ftop1asYQtYb9NO9VmWgne4QnS7GY0ln__zk75HuRrRfdwuTWEC3iNDnMml_kF4EYAQ&template_id=5000&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: not-navigation-source, trigger, event-sourceReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=884246868&pi=t.aa~a.3958040794~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055445&bpp=1&bdt=9109&idt=1853&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0%2C1200x280&nras=2&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=89&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1856Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: test_cookie=CheckForPermission
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=280&adk=1905944345&adf=1676256590&pi=t.aa~a.3301965335~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=2&bdt=13042&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280&nras=3&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=1549&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=4&uci=a!4&btvi=2&fsb=1&dtd=2024 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXZNRBPFFhGTePxR6V1Vq40hv67Cvsin5qeuZSjDBD85mlwe1HI4SQhunsqyCln6wwKPWmIyE2bvL_R5249nJ3PvBa1tvqv_dr8hSthcXDsPiuhzU3msSPWN6duzO7QXBomMmBGiA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDYxLDM5NDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tLyIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=280&adk=1905944345&adf=1676256590&pi=t.aa~a.1089130404~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=1&bdt=13042&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280&nras=4&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=1259&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=5&uci=a!5&btvi=3&fsb=1&dtd=2042 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=3371909064&adf=397776184&pi=t.aa~a.1089127196~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=2&bdt=13043&idt=2&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280%2C1200x280&nras=5&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=3625&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=7&uci=a!7&btvi=4&fsb=1&dtd=2062 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/image/loader.gif HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=2063629977&pi=t.aa~a.1836389361~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042064&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059375&bpp=1&bdt=13039&idt=1&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280%2C1200x280%2C1200x90%2C1263x907%2C468x60&nras=8&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=3475&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=6&uci=a!6&btvi=6&fsb=1&dtd=4876 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxUppim6GlhNn98Sy4cq18snKjQ7Zb0LLow_-Ky3kt084XagRObmnO6ruMYJouPgI6-o6iQUp0I2TbjrqAfTZo2XNrPYi2-cTiCIY9lCNM8wdPHyKV4jdfL3QLadzLsUWTOxmRuv2w==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDYyLDc0MDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuLUdCIl0sImh0dHBzOi8vd3d3Lmhhb3FxLmNvbS8iLG51bGwsW1s4LCJlc2tXWFNGSHNRZyJdLFs5LCJlbi1VUyJdLFsxOCwiW1tbMF1dXSJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app/win?id=920622745182&ap=Zv_USgAPJr4ITwp0ACc964yYG2BsjvfLazwgjA&brid=1-EKQ74uci3ZpK6g_GPVxw&t=b HTTP/1.1Host: 8proof.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /xbbe/pixel?d=CLbFxQEQq9bcARio-uKYAjAB&v=APEucNWPqLPCeuK9miqpQiuXE3w1U1FpIl8GWlrvRuOX_pUYIBo069Thk7kxKuAxAOYnXOz_r-3C-2nGyozMuaheFJuIT7y3BVT71_CsqAMJMJ9MwPZjQG0 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=3371909064&adf=397776184&pi=t.aa~a.1089127196~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=2&bdt=13043&idt=2&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280%2C1200x280&nras=5&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=3625&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=7&uci=a!7&btvi=4&fsb=1&dtd=2062Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CmacBStT_Zr7NPPSUvPIP6_ucmQm-vcfmYdeIqO67DcCNtwEQASAAYMkGggEXY2EtcHViLTE2NzMzOTkxNjA3MTA3MTjIAQmoAwHIAwKqBMIBT9D06km8FS4J7JT2ZSJ7nsBXDLMjgaS_vobYRCDTEuxYRJpSGuVWBjQv-7xIATyrcVeji8OYABqqTSJqZtpZLYgKvSmkmx-Qu_lumE-wvy5IDGWHkQJjbdnFAbg5FcBCyL7V9EAB-wT9For-ayhyljKQx8bdTqvMJDz88CXlmBUEoWuoIrazM6RfEhzvU6MPdKqni6PSj-7JQxG5YokJtHWIh7IeSO6yG7K09oYcQ-5Ukwy2DqIF8_4hdHYde5gJ_6eABqehs8-1-siQMKAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYxKnRqNL0iAOACgH6CwIIAYAMAdAVAYAXAbIXHAoYEhRwdWItMTY3MzM5OTE2MDcxMDcxOBgAGAw&sigh=j6kRbNrdK5I&uach_m=%5BUACH%5D&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8BgB HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyReferer: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssANYIaq92euECwoJBoaf_mr5m-WCHhq0GSDEfjngwhwWVrab6AspGuYTxR3PHCwn27MtROBt_BM6cXqHKRuo1oZ_CYCSK2IcoiQ2ASf2dB6ysTNiiHFnSkwvzrCYYKr-_4GoIX_Qd0wgM-9b_BViOs6mRYW_FAMzgL-2FbCj-4VKzzvqhtHn2DXKmmTKLPEVuNGyEUoESvMrJNMJg_Ts4rePjN5sAbx-M9YFMMKuHWW8Am4y4gRXwonQqMclf4u9NRTtjnc-Bzx_n9Vp6mpgg7T6lyvkp7cIPy73pcq4c6VLWjLX9k6c2EzN9U35yZzallIoSVEh8cM4iNNA7FpeIcPwrUT8HA8fWy1UkAj_Grxg6VJRFswjFZY11l-f3aOhRHOqnx9lNmFrbXt_wUbULSWxuUMlkcP8Z0JiKZ0RsKVKbR4rZsFY_kgswW_T1MpaF7QeB_ucHs3NU7hNJ41C4eHmnwOw9Gd31miU76S1sAUId2RnmRCWN1ECVtgn8WLlFE1L8HgxpJzkFZexXRy8BGoVPh2I6z4swT6TAzP_ZOkuzan7Vuq8EDZKDrRSij2o0q8MEzv6zoFhQUYfeoqNefqzyg2bFqrZUS2RdOICTzz7Rvq1_9ZlXZilNEFA5djowi5fpoZnGQFLj8w2ac62f1tHZ614V_H5CtItmOeMr728RcZXwtkb9PlWx5cVBopcB-3IYm1bvN--XnAe44FCG3iSktsGPJRtJHBEx9OI76cdP1ygTA26oxpulY7bcTLv5J8ewkrcUC6EgK7rlW0ou3xNjt89HbulEoW5_SbY6yMYyuStW8kMs-doSSOVSdxxaLoYP8N61OMmS2SNFEPXZq_L7DZNUNdZr9tnRGlgNURksTvFC-Sy4vFibw_tr1nQNT6B2ie1vbAcAy0D08IaJqmvGygGVN4scO9V5AJOVX9IpoYfSe8dwP9gmmBt_9nb3pViRIyvdjKsA6FJk0Ap8endytum64zXQkcgJpMz6FphRHEIuHEl9yDbhloOMMN3b1MIgsbpMUjU39MpjHZLdvIit1uVmTEGhLVqoEWubTYRTfBHTskXC3lBa1GJYtx2R8mSkFdsU7SaFqmy7EYzlsZ81AKqXiU1VSUYcrZAEj_bqMKdtvhhc4tuwecLV8Eun_7JcMIpGHH3JSYuM1e6VAwqCqFqbI5ysGTW4EgPpEuGHTKwNo0ERSdOLTjqTZhsf8vRpXuaQH7A0vQ9MXL_ky2ZKQiMUtusv-UYG4lVVPSExE-Kne1rONhCG91pwbKEbqPG-k759yZoPcKPwTIKKbU9cZvk7m6dktmewAZty_L4_OFl1zw7WBz04R_b-gWCJ56c42CjuDP-lta9AbrIdnpKLqgnA4ZxepWkv4ML0cDEJlMbdNK3U4plrb4gnVUh0t&sai=AMfl-YRhaXmOTGQX9jQ4eWDM3MRSUnJPzRrJlkxrjo7MHsTBZDkO_17mCp5R8g2-N5lapcVMmSECjG3C5NbL2hzW7hTUJfW5FBvEjdgM3onfWjLzdCjtxO_UqCF_Cw77hoQgzTspuLUrpf0G1Ndr43qP0YKFcdH_hS-lB6y6eFYpDi5FsnPYQqDHuiuzjpyf2Dl_P35V2cvHBxE5-tAsz5bLcGwPVGLnOqNLdG2zKHWLTA_lcBs4ocpdyqoXnaRueqFOZgrYbamSkRtHPP_pAtxhV-0EDySTvmdhtDhI9MM0Ck2kK56xLAYfvYKPwSYUWjcpiCh3930fWQn19iBspug4sZn-NX7hVPAT9ym--dXiRc4irWCxoGzHrLS9L1lY-OkCKeiSwBv67xYwRtvNip2uO0QiUW-cIexwSDpC&sig=Cg0ArKJSzCIx7rquL3v-EAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=0&cisv=r20241001.82346&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: not-trigger, not-navigation-source, event-sourceReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /usersync/googleadx/?google_gid=CAESEAvzusCYvKmt2gkuBquT8pc&google_cver=1&google_push=AXcoOmTwIyt4e4yXQx9lN73aYgUXRi5oVuQcAQV3YKf4X10ZMqCKM9DTgjo4doK24yKl6PsWS6AMAM38_9Ull1QIWkEQqJOHk-6yrw HTTP/1.1Host: b1sync.zemanta.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmQSzC5C28pLStKXw6cnCDgYtDmb02nZs8CRLDZNTHqqdUV3nd42z4t072GipsN10sg314x9S-mLGUsd1gJTxb-zNADAAWLa&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: dis.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /match/47/?remote_uid=CAESEGoQnRhkVqcuY7XSc-z5Mtc&c_param1=AXcoOmQDJHHlzqr4eH5ZupQ5A7svWZ67X9fEHbwsf9SwO2hQCYAZ9sh6oKH6jmYabyCKENfazFNMv_g7QlZw4fo8ZdbJprpovR1h&gdpr=%%GDPR%%&addtl_consent=%%ADDTL_CONSENT%%&google_cver=1 HTTP/1.1Host: s.uuidksinc.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /r/cs?pid=3&google_gid=CAESEE-2hABbNlvCQmyOE9XNGr8&google_cver=1&google_push=AXcoOmQovd5f9-nww3m33jllHguDkNcr67y1MfGmJWvpYovBsHf2nNgx76pivAVE-PdlwLWRl53ng4jRHpGT4NCpY_NAJ_38phXupw HTTP/1.1Host: ad.turn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=casale_media2_dsp_secure&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /rrum?ixi=0&cm_dsp_id=85&gdpr=0&cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dsp_secure%26google_cm%26google_hm%3D HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=appnexus&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13JACtVvlHwGv1kKZ8F7RBS0xG_qaVY5s6m2wTjamPBJObAKRt9MedOCqlvszxZ7x7huRaf7 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQ-ZUcu7T0mvdhQ_JTm4iH4HTpbfmsP-NJ6mkTEfjYqWQ4FE3cjWLEaR7h6-LaIOaQflmL_KBIh1OpmrGXlUjRVzpYA8g HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /simgad/7138348558614381586 HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sync/adx?google_gid=CAESEJyXJmH3Ccek7-QgafqrVj8&google_cver=1&google_push=AXcoOmRrukcpI3h6PezLMMUoYE8A5_O1p1n0cxhpK3ZcX1ogniTVasABBgXrEaQKZmmV6BZxNBsBtZhRkKJl4vIpcjkYcyDayZgmTA HTTP/1.1Host: pr-bh.ybp.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /usersync/googleadx/?google_cver=1&google_gid=CAESEAvzusCYvKmt2gkuBquT8pc&google_push=AXcoOmTwIyt4e4yXQx9lN73aYgUXRi5oVuQcAQV3YKf4X10ZMqCKM9DTgjo4doK24yKl6PsWS6AMAM38_9Ull1QIWkEQqJOHk-6yrw&s=2 HTTP/1.1Host: b1sync.zemanta.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: zuid=4s7FapyoS-IWC5mSxvJw
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVH38ovtr9fgT8GOp4INOEd4n59XjgUwhiPYlCSyO7JSEmY6NN_96J1Ljm1M6KeUUvehDGZqHWFTnc6VmLThMAKsiqCqiaJJqEw_4cGqP_lYvCDpic4JgYonekz98kntYU4DeiNw6xrDZStRlIb0Jaqk2VS7MI_TgwbyXmfRUbs4V0M3yEkQ4YGQESz/_/ade/baloo.php/ad/index_/ads_ifr./adswidejs./tg.php?uid= HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /getuid?https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=${BASE64_UID_ENC} HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXZNRBPFFhGTePxR6V1Vq40hv67Cvsin5qeuZSjDBD85mlwe1HI4SQhunsqyCln6wwKPWmIyE2bvL_R5249nJ3PvBa1tvqv_dr8hSthcXDsPiuhzU3msSPWN6duzO7QXBomMmBGiA==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDYxLDM5NDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzddXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tLyIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1&gdpr=0 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rrum?cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcasale_media2_dsp_secure%26google_cm%26google_hm%3D&cm_dsp_id=85&gdpr=0&ixi=0&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UUtHM6u0AADLRAE9ESQAA; CMPS=3875; CMPRO=3875
Source: global traffic	HTTP traffic detected: GET /app/win?id=920622745182&ap=Zv_USgAPJr4ITwp0ACc964yYG2BsjvfLazwgjA&brid=1-EKQ74uci3ZpK6g_GPVxw&t=b HTTP/1.1Host: 8proof.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=turn1&google_cm&google_sc&google_hm=MzQxODA4ODg1NjE3MDcwNjc1Mg==&gdpr=&gdpr_consent=&process_consent=T HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=kadam&google_push=AXcoOmQDJHHlzqr4eH5ZupQ5A7svWZ67X9fEHbwsf9SwO2hQCYAZ9sh6oKH6jmYabyCKENfazFNMv_g7QlZw4fo8ZdbJprpovR1h HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmQSzC5C28pLStKXw6cnCDgYtDmb02nZs8CRLDZNTHqqdUV3nd42z4t072GipsN10sg314x9S-mLGUsd1gJTxb-zNADAAWLa&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dappnexus%26google_hm%3D%24%7BBASE64_UID_ENC%7D HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XANDR_PANID=nyn1WojFzMuWa1dDQZWnn90XtrdhhLATJ2htgUEpxlQhzOd11smQaZibcfYXKnvSl14h528x1j5XOWRrjA4lJrjzKg5ypMleIjqdgVhMR2Q.; receive-cookie-deprecation=1; uuid2=7058645915368902725
Source: global traffic	HTTP traffic detected: GET /setuid?entity=101&gdpr=0&code=CAESEDP2bThm3Z2ZMBLJNUoTxTs&google_cver=1 HTTP/1.1Host: ib.adnxs.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XANDR_PANID=nyn1WojFzMuWa1dDQZWnn90XtrdhhLATJ2htgUEpxlQhzOd11smQaZibcfYXKnvSl14h528x1j5XOWRrjA4lJrjzKg5ypMleIjqdgVhMR2Q.; receive-cookie-deprecation=1; uuid2=7058645915368902725
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zemanta&google_push=AXcoOmTwIyt4e4yXQx9lN73aYgUXRi5oVuQcAQV3YKf4X10ZMqCKM9DTgjo4doK24yKl6PsWS6AMAM38_9Ull1QIWkEQqJOHk-6yrw&google_hm=NHM3RmFweW9TLUlXQzVtU3h2Snc= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=yahoo&google_push=AXcoOmRrukcpI3h6PezLMMUoYE8A5_O1p1n0cxhpK3ZcX1ogniTVasABBgXrEaQKZmmV6BZxNBsBtZhRkKJl4vIpcjkYcyDayZgmTA&google_hm=eS1GWHlJb3hsRTJwSGdGMHQyUG4yNXI4SFc1NHV1WjliQn5B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssANYIaq92euECwoJBoaf_mr5m-WCHhq0GSDEfjngwhwWVrab6AspGuYTxR3PHCwn27MtROBt_BM6cXqHKRuo1oZ_CYCSK2IcoiQ2ASf2dB6ysTNiiHFnSkwvzrCYYKr-_4GoIX_Qd0wgM-9b_BViOs6mRYW_FAMzgL-2FbCj-4VKzzvqhtHn2DXKmmTKLPEVuNGyEUoESvMrJNMJg_Ts4rePjN5sAbx-M9YFMMKuHWW8Am4y4gRXwonQqMclf4u9NRTtjnc-Bzx_n9Vp6mpgg7T6lyvkp7cIPy73pcq4c6VLWjLX9k6c2EzN9U35yZzallIoSVEh8cM4iNNA7FpeIcPwrUT8HA8fWy1UkAj_Grxg6VJRFswjFZY11l-f3aOhRHOqnx9lNmFrbXt_wUbULSWxuUMlkcP8Z0JiKZ0RsKVKbR4rZsFY_kgswW_T1MpaF7QeB_ucHs3NU7hNJ41C4eHmnwOw9Gd31miU76S1sAUId2RnmRCWN1ECVtgn8WLlFE1L8HgxpJzkFZexXRy8BGoVPh2I6z4swT6TAzP_ZOkuzan7Vuq8EDZKDrRSij2o0q8MEzv6zoFhQUYfeoqNefqzyg2bFqrZUS2RdOICTzz7Rvq1_9ZlXZilNEFA5djowi5fpoZnGQFLj8w2ac62f1tHZ614V_H5CtItmOeMr728RcZXwtkb9PlWx5cVBopcB-3IYm1bvN--XnAe44FCG3iSktsGPJRtJHBEx9OI76cdP1ygTA26oxpulY7bcTLv5J8ewkrcUC6EgK7rlW0ou3xNjt89HbulEoW5_SbY6yMYyuStW8kMs-doSSOVSdxxaLoYP8N61OMmS2SNFEPXZq_L7DZNUNdZr9tnRGlgNURksTvFC-Sy4vFibw_tr1nQNT6B2ie1vbAcAy0D08IaJqmvGygGVN4scO9V5AJOVX9IpoYfSe8dwP9gmmBt_9nb3pViRIyvdjKsA6FJk0Ap8endytum64zXQkcgJpMz6FphRHEIuHEl9yDbhloOMMN3b1MIgsbpMUjU39MpjHZLdvIit1uVmTEGhLVqoEWubTYRTfBHTskXC3lBa1GJYtx2R8mSkFdsU7SaFqmy7EYzlsZ81AKqXiU1VSUYcrZAEj_bqMKdtvhhc4tuwecLV8Eun_7JcMIpGHH3JSYuM1e6VAwqCqFqbI5ysGTW4EgPpEuGHTKwNo0ERSdOLTjqTZhsf8vRpXuaQH7A0vQ9MXL_ky2ZKQiMUtusv-UYG4lVVPSExE-Kne1rONhCG91pwbKEbqPG-k759yZoPcKPwTIKKbU9cZvk7m6dktmewAZty_L4_OFl1zw7WBz04R_b-gWCJ56c42CjuDP-lta9AbrIdnpKLqgnA4ZxepWkv4ML0cDEJlMbdNK3U4plrb4gnVUh0t&sai=AMfl-YRhaXmOTGQX9jQ4eWDM3MRSUnJPzRrJlkxrjo7MHsTBZDkO_17mCp5R8g2-N5lapcVMmSECjG3C5NbL2hzW7hTUJfW5FBvEjdgM3onfWjLzdCjtxO_UqCF_Cw77hoQgzTspuLUrpf0G1Ndr43qP0YKFcdH_hS-lB6y6eFYpDi5FsnPYQqDHuiuzjpyf2Dl_P35V2cvHBxE5-tAsz5bLcGwPVGLnOqNLdG2zKHWLTA_lcBs4ocpdyqoXnaRueqFOZgrYbamSkRtHPP_pAtxhV-0EDySTvmdhtDhI9MM0Ck2kK56xLAYfvYKPwSYUWjcpiCh3930fWQn19iBspug4sZn-NX7hVPAT9ym--dXiRc4irWCxoGzHrLS9L1lY-OkCKeiSwBv67xYwRtvNip2uO0QiUW-cIexwSDpC&sig=Cg0ArKJSzCIx7rquL3v-EAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=2&cbvp=1&cstd=0&cisv=r20241001.82346&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssANYIaq92euECwoJBoaf_mr5m-WCHhq0GSDEfjngwhwWVrab6AspGuYTxR3PHCwn27MtROBt_BM6cXqHKRuo1oZ_CYCSK2IcoiQ2ASf2dB6ysTNiiHFnSkwvzrCYYKr-_4GoIX_Qd0wgM-9b_BViOs6mRYW_FAMzgL-2FbCj-4VKzzvqhtHn2DXKmmTKLPEVuNGyEUoESvMrJNMJg_Ts4rePjN5sAbx-M9YFMMKuHWW8Am4y4gRXwonQqMclf4u9NRTtjnc-Bzx_n9Vp6mpgg7T6lyvkp7cIPy73pcq4c6VLWjLX9k6c2EzN9U35yZzallIoSVEh8cM4iNNA7FpeIcPwrUT8HA8fWy1UkAj_Grxg6VJRFswjFZY11l-f3aOhRHOqnx9lNmFrbXt_wUbULSWxuUMlkcP8Z0JiKZ0RsKVKbR4rZsFY_kgswW_T1MpaF7QeB_ucHs3NU7hNJ41C4eHmnwOw9Gd31miU76S1sAUId2RnmRCWN1ECVtgn8WLlFE1L8HgxpJzkFZexXRy8BGoVPh2I6z4swT6TAzP_ZOkuzan7Vuq8EDZKDrRSij2o0q8MEzv6zoFhQUYfeoqNefqzyg2bFqrZUS2RdOICTzz7Rvq1_9ZlXZilNEFA5djowi5fpoZnGQFLj8w2ac62f1tHZ614V_H5CtItmOeMr728RcZXwtkb9PlWx5cVBopcB-3IYm1bvN--XnAe44FCG3iSktsGPJRtJHBEx9OI76cdP1ygTA26oxpulY7bcTLv5J8ewkrcUC6EgK7rlW0ou3xNjt89HbulEoW5_SbY6yMYyuStW8kMs-doSSOVSdxxaLoYP8N61OMmS2SNFEPXZq_L7DZNUNdZr9tnRGlgNURksTvFC-Sy4vFibw_tr1nQNT6B2ie1vbAcAy0D08IaJqmvGygGVN4scO9V5AJOVX9IpoYfSe8dwP9gmmBt_9nb3pViRIyvdjKsA6FJk0Ap8endytum64zXQkcgJpMz6FphRHEIuHEl9yDbhloOMMN3b1MIgsbpMUjU39MpjHZLdvIit1uVmTEGhLVqoEWubTYRTfBHTskXC3lBa1GJYtx2R8mSkFdsU7SaFqmy7EYzlsZ81AKqXiU1VSUYcrZAEj_bqMKdtvhhc4tuwecLV8Eun_7JcMIpGHH3JSYuM1e6VAwqCqFqbI5ysGTW4EgPpEuGHTKwNo0ERSdOLTjqTZhsf8vRpXuaQH7A0vQ9MXL_ky2ZKQiMUtusv-UYG4lVVPSExE-Kne1rONhCG91pwbKEbqPG-k759yZoPcKPwTIKKbU9cZvk7m6dktmewAZty_L4_OFl1zw7WBz04R_b-gWCJ56c42CjuDP-lta9AbrIdnpKLqgnA4ZxepWkv4ML0cDEJlMbdNK3U4plrb4gnVUh0t&sai=AMfl-YRhaXmOTGQX9jQ4eWDM3MRSUnJPzRrJlkxrjo7MHsTBZDkO_17mCp5R8g2-N5lapcVMmSECjG3C5NbL2hzW7hTUJfW5FBvEjdgM3onfWjLzdCjtxO_UqCF_Cw77hoQgzTspuLUrpf0G1Ndr43qP0YKFcdH_hS-lB6y6eFYpDi5FsnPYQqDHuiuzjpyf2Dl_P35V2cvHBxE5-tAsz5bLcGwPVGLnOqNLdG2zKHWLTA_lcBs4ocpdyqoXnaRueqFOZgrYbamSkRtHPP_pAtxhV-0EDySTvmdhtDhI9MM0Ck2kK56xLAYfvYKPwSYUWjcpiCh3930fWQn19iBspug4sZn-NX7hVPAT9ym--dXiRc4irWCxoGzHrLS9L1lY-OkCKeiSwBv67xYwRtvNip2uO0QiUW-cIexwSDpC&sig=Cg0ArKJSzCIx7rquL3v-EAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=2486&vt=11&dtpt=2484&dett=2&cstd=0&cisv=r20241001.82346&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, not-trigger, not-navigation-sourceReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie:
Source: global traffic	HTTP traffic detected: GET /pixel?google_hm=b3VnRks2a2lCV3lPZnlKYlU5VF9aZw%3D%3D&google_nid=appier&google_push=AXcoOmSotlzXlITazuWCK3xBXY5xuChDBGEGIjGTS0t6K3S2l6WFtyeTYa2rAqT0_BU3OMnNoZndHNO1ql6rTBknJSdrWerSLKKqMQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxUppim6GlhNn98Sy4cq18snKjQ7Zb0LLow_-Ky3kt084XagRObmnO6ruMYJouPgI6-o6iQUp0I2TbjrqAfTZo2XNrPYi2-cTiCIY9lCNM8wdPHyKV4jdfL3QLadzLsUWTOxmRuv2w==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDYyLDc0MDAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOV0sbnVsbCwyLG51bGwsImVuLUdCIl0sImh0dHBzOi8vd3d3Lmhhb3FxLmNvbS8iLG51bGwsW1s4LCJlc2tXWFNGSHNRZyJdLFs5LCJlbi1VUyJdLFsxOCwiW1tbMF1dXSJdLFsxOSwiMiJdLFsxNywiWzBdIl1dXQ HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CmacBStT_Zr7NPPSUvPIP6_ucmQm-vcfmYdeIqO67DcCNtwEQASAAYMkGggEXY2EtcHViLTE2NzMzOTkxNjA3MTA3MTjIAQmoAwHIAwKqBMIBT9D06km8FS4J7JT2ZSJ7nsBXDLMjgaS_vobYRCDTEuxYRJpSGuVWBjQv-7xIATyrcVeji8OYABqqTSJqZtpZLYgKvSmkmx-Qu_lumE-wvy5IDGWHkQJjbdnFAbg5FcBCyL7V9EAB-wT9For-ayhyljKQx8bdTqvMJDz88CXlmBUEoWuoIrazM6RfEhzvU6MPdKqni6PSj-7JQxG5YokJtHWIh7IeSO6yG7K09oYcQ-5Ukwy2DqIF8_4hdHYde5gJ_6eABqehs8-1-siQMKAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQKoB62-sQLYBwDSCCQIgGEQATICigI6C4BAgMCAgICgqIACSL39wTpYxKnRqNL0iAOACgH6CwIIAYAMAdAVAYAXAbIXHAoYEhRwdWItMTY3MzM5OTE2MDcxMDcxOBgAGAw&sigh=j6kRbNrdK5I&uach_m=%5BUACH%5D&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8BgB HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVH38ovtr9fgT8GOp4INOEd4n59XjgUwhiPYlCSyO7JSEmY6NN_96J1Ljm1M6KeUUvehDGZqHWFTnc6VmLThMAKsiqCqiaJJqEw_4cGqP_lYvCDpic4JgYonekz98kntYU4DeiNw6xrDZStRlIb0Jaqk2VS7MI_TgwbyXmfRUbs4V0M3yEkQ4YGQESz/_/ade/baloo.php/ad/index_/ads_ifr./adswidejs./tg.php?uid= HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /simgad/7138348558614381586 HTTP/1.1Host: s0.2mdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1&gdpr=0&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UVdHM6EAAABI2AE7Q7AAA; CMPS=512; CMPRO=512
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=casale_media2_dsp_secure&google_cm&google_hm=Zv-UUtHM6u0AADLRAE9ESQAA HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVXyEvQ8rr_BoQhqFBmSyhHFBY8TVHaXqWthoyB0cqzuBrNmLKKWj9DvZo73bHB3Zg42zHyHtCxZLCLhMD0SVD9dQ8OYiBt_wWfDGQEiJrh-njbg3paxBCGtFSliXExuETImT-9GQ==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDY3LDI2MTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4tR0IiLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tLyIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=appnexus&google_hm=NzA1ODY0NTkxNTM2ODkwMjcyNQ%3D%3D HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=dotomi&google_ula=17128,0&google_hm=AQAJG877fWervgJRuHq6AQEBAQEBAQCTVlRxLgEBAJNWVHEu&expiration=1728128470&google_cver=1&is_secure=true&google_gid=CAESEBzuFVvX7Ht-61AXmEGHQ6Q&google_push=AXcoOmSP2oyq_i5tQjau2lDivP3OkqgDjjl5FOJxQ-X2F_KTj7-x4-18dN4dECcg0YTA99153bVKErWmRI9LQC3RokKFc8wlkaHi HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /r/cms/id/0/ddc/1/pid/18/uid/?gdpr=&gdpr_consent=&google_gid=CAESEE-2hABbNlvCQmyOE9XNGr8&google_cver=1 HTTP/1.1Host: r.turn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=3418088856170706752
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UVdHM6EAAABI2AE7Q7AAA; CMPS=512; CMPRO=512
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmQSzC5C28pLStKXw6cnCDgYtDmb02nZs8CRLDZNTHqqdUV3nd42z4t072GipsN10sg314x9S-mLGUsd1gJTxb-zNADAAWLa&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssANYIaq92euECwoJBoaf_mr5m-WCHhq0GSDEfjngwhwWVrab6AspGuYTxR3PHCwn27MtROBt_BM6cXqHKRuo1oZ_CYCSK2IcoiQ2ASf2dB6ysTNiiHFnSkwvzrCYYKr-_4GoIX_Qd0wgM-9b_BViOs6mRYW_FAMzgL-2FbCj-4VKzzvqhtHn2DXKmmTKLPEVuNGyEUoESvMrJNMJg_Ts4rePjN5sAbx-M9YFMMKuHWW8Am4y4gRXwonQqMclf4u9NRTtjnc-Bzx_n9Vp6mpgg7T6lyvkp7cIPy73pcq4c6VLWjLX9k6c2EzN9U35yZzallIoSVEh8cM4iNNA7FpeIcPwrUT8HA8fWy1UkAj_Grxg6VJRFswjFZY11l-f3aOhRHOqnx9lNmFrbXt_wUbULSWxuUMlkcP8Z0JiKZ0RsKVKbR4rZsFY_kgswW_T1MpaF7QeB_ucHs3NU7hNJ41C4eHmnwOw9Gd31miU76S1sAUId2RnmRCWN1ECVtgn8WLlFE1L8HgxpJzkFZexXRy8BGoVPh2I6z4swT6TAzP_ZOkuzan7Vuq8EDZKDrRSij2o0q8MEzv6zoFhQUYfeoqNefqzyg2bFqrZUS2RdOICTzz7Rvq1_9ZlXZilNEFA5djowi5fpoZnGQFLj8w2ac62f1tHZ614V_H5CtItmOeMr728RcZXwtkb9PlWx5cVBopcB-3IYm1bvN--XnAe44FCG3iSktsGPJRtJHBEx9OI76cdP1ygTA26oxpulY7bcTLv5J8ewkrcUC6EgK7rlW0ou3xNjt89HbulEoW5_SbY6yMYyuStW8kMs-doSSOVSdxxaLoYP8N61OMmS2SNFEPXZq_L7DZNUNdZr9tnRGlgNURksTvFC-Sy4vFibw_tr1nQNT6B2ie1vbAcAy0D08IaJqmvGygGVN4scO9V5AJOVX9IpoYfSe8dwP9gmmBt_9nb3pViRIyvdjKsA6FJk0Ap8endytum64zXQkcgJpMz6FphRHEIuHEl9yDbhloOMMN3b1MIgsbpMUjU39MpjHZLdvIit1uVmTEGhLVqoEWubTYRTfBHTskXC3lBa1GJYtx2R8mSkFdsU7SaFqmy7EYzlsZ81AKqXiU1VSUYcrZAEj_bqMKdtvhhc4tuwecLV8Eun_7JcMIpGHH3JSYuM1e6VAwqCqFqbI5ysGTW4EgPpEuGHTKwNo0ERSdOLTjqTZhsf8vRpXuaQH7A0vQ9MXL_ky2ZKQiMUtusv-UYG4lVVPSExE-Kne1rONhCG91pwbKEbqPG-k759yZoPcKPwTIKKbU9cZvk7m6dktmewAZty_L4_OFl1zw7WBz04R_b-gWCJ56c42CjuDP-lta9AbrIdnpKLqgnA4ZxepWkv4ML0cDEJlMbdNK3U4plrb4gnVUh0t&sai=AMfl-YRhaXmOTGQX9jQ4eWDM3MRSUnJPzRrJlkxrjo7MHsTBZDkO_17mCp5R8g2-N5lapcVMmSECjG3C5NbL2hzW7hTUJfW5FBvEjdgM3onfWjLzdCjtxO_UqCF_Cw77hoQgzTspuLUrpf0G1Ndr43qP0YKFcdH_hS-lB6y6eFYpDi5FsnPYQqDHuiuzjpyf2Dl_P35V2cvHBxE5-tAsz5bLcGwPVGLnOqNLdG2zKHWLTA_lcBs4ocpdyqoXnaRueqFOZgrYbamSkRtHPP_pAtxhV-0EDySTvmdhtDhI9MM0Ck2kK56xLAYfvYKPwSYUWjcpiCh3930fWQn19iBspug4sZn-NX7hVPAT9ym--dXiRc4irWCxoGzHrLS9L1lY-OkCKeiSwBv67xYwRtvNip2uO0QiUW-cIexwSDpC&sig=Cg0ArKJSzCIx7rquL3v-EAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=2486&vt=11&dtpt=2484&dett=2&cstd=0&cisv=r20241001.82346&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=zemanta&google_push=AXcoOmTwIyt4e4yXQx9lN73aYgUXRi5oVuQcAQV3YKf4X10ZMqCKM9DTgjo4doK24yKl6PsWS6AMAM38_9Ull1QIWkEQqJOHk-6yrw&google_hm=NHM3RmFweW9TLUlXQzVtU3h2Snc= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_hm=b3VnRks2a2lCV3lPZnlKYlU5VF9aZw%3D%3D&google_nid=appier&google_push=AXcoOmSotlzXlITazuWCK3xBXY5xuChDBGEGIjGTS0t6K3S2l6WFtyeTYa2rAqT0_BU3OMnNoZndHNO1ql6rTBknJSdrWerSLKKqMQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=yahoo&google_push=AXcoOmRrukcpI3h6PezLMMUoYE8A5_O1p1n0cxhpK3ZcX1ogniTVasABBgXrEaQKZmmV6BZxNBsBtZhRkKJl4vIpcjkYcyDayZgmTA&google_hm=eS1GWHlJb3hsRTJwSGdGMHQyUG4yNXI4SFc1NHV1WjliQn5B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=kadam&google_push=AXcoOmQDJHHlzqr4eH5ZupQ5A7svWZ67X9fEHbwsf9SwO2hQCYAZ9sh6oKH6jmYabyCKENfazFNMv_g7QlZw4fo8ZdbJprpovR1h HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /setuid?entity=101&gdpr=0&code=CAESEDP2bThm3Z2ZMBLJNUoTxTs&google_cver=1 HTTP/1.1Host: ib.adnxs.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uuid2=7058645915368902725; anj=dTM7k!M41.D>6NRF']wIg2GVMnpT7Q!]tbPl1M>e)ZlrFUfJ+tGXxo7N8O6<:buev?6a<NS0f6jMVqrz_/!fcx3tA.3If)y3KL9D3I?+sUpwu.
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=appnexus&google_hm=NzA1ODY0NTkxNTM2ODkwMjcyNQ%3D%3D HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=dotomi&google_ula=17128,0&google_hm=AQAJG877fWervgJRuHq6AQEBAQEBAQCTVlRxLgEBAJNWVHEu&expiration=1728128470&google_cver=1&is_secure=true&google_gid=CAESEBzuFVvX7Ht-61AXmEGHQ6Q&google_push=AXcoOmSP2oyq_i5tQjau2lDivP3OkqgDjjl5FOJxQ-X2F_KTj7-x4-18dN4dECcg0YTA99153bVKErWmRI9LQC3RokKFc8wlkaHi HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1&gdpr=0&C=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UVdHM6EAAABI2AE7Q7AAA; CMPS=512; CMPRO=512
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVXyEvQ8rr_BoQhqFBmSyhHFBY8TVHaXqWthoyB0cqzuBrNmLKKWj9DvZo73bHB3Zg42zHyHtCxZLCLhMD0SVD9dQ8OYiBt_wWfDGQEiJrh-njbg3paxBCGtFSliXExuETImT-9GQ==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzI4MDQyMDY3LDI2MTAwMDAwMF0sbnVsbCxudWxsLG51bGwsW251bGwsWzcsOSw2XSxudWxsLDIsbnVsbCwiZW4tR0IiLG51bGwsbnVsbCxudWxsLG51bGwsbnVsbCwxXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tLyIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rum?cm_dsp_id=45&external_user_id=CAESEO3o-dzrpHmCNhpaZvjzMH4&google_cver=1 HTTP/1.1Host: dsum-sec.casalemedia.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: CMID=Zv-UVdHM6EAAABI2AE7Q7AAA; CMPS=512; CMPRO=512
Source: global traffic	HTTP traffic detected: GET /r/cms/id/0/ddc/1/pid/18/uid/?gdpr=&gdpr_consent=&google_gid=CAESEE-2hABbNlvCQmyOE9XNGr8&google_cver=1 HTTP/1.1Host: r.turn.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: uid=3418088856170706752
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /recaptcha/api2/aframe HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /news/i/3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/tag-light.png HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://www.haoqq.com/news/i/3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /rules/rule702550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&adk=1812271804&adf=1573534164&abgtt=6&lmt=1728042079&plat=3%3A16%2C4%3A16%2C9%3A32776%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&pra=5&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aifxl=29_18~30_19&aiixl=29_5~30_6&aslmct=0.7&asamct=0.7&aipecl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042079520&bpp=21&bdt=294&idt=70&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&nras=1&correlator=7979588698718&frm=20&pv=2&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=-12245933&ady=-12245933&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=1&uci=a!1&fsb=1&dtd=115 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&slotname=5424108534&adk=3166978744&adf=3025194257&pi=t.ma~as.5424108534&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042079&rafmt=1&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&fwrattr=true&rpe=1&resp_fmts=3&wgl=1&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042079541&bpp=3&bdt=315&idt=117&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0&nras=1&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=0&ady=1504&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7CEebr%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=2&uci=a!2&btvi=1&fsb=1&dtd=125 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=884246868&pi=t.aa~a.3958040794~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042079&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042079544&bpp=1&bdt=318&idt=137&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280&nras=2&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=89&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=141 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pages/assets/fonts/fontawesome-webfont.woff HTTP/1.1Host: www.haoqq.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://www.haoqq.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://www.haoqq.com/pages/assets/css/plugins.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pages/assets/picture/tag-light.png HTTP/1.1Host: www.haoqq.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: __gads=ID=2704f8406324721a:T=1728042058:RT=1728042058:S=ALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q; __gpi=UID=00000f23c94b23d1:T=1728042058:RT=1728042058:S=ALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw; __eoi=ID=b4a5e61cc765553a:T=1728042058:RT=1728042058:S=AA-AfjZfklDsV3KI35jmw7Cy6bKg; FCNEC=%5B%5B%22AKsRol_U3bDnE9erNTituJCHuFjf8TEwONusH71s59NUj9wLxp7QAM_YR3jB82G-DzJ1CbxTzE3oXjnJn3kfB7lW1WrOOJjhusV4jojPMOz1isaAcuK94m41vI-pgSCcm0xX0zeq2oD62JXI7YlExy5-qnoMrAzeOw%3D%3D%22%5D%5D
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pagead/adview?ai=CF3eTStT_Zr3NPPSUvPIP6_ucmQnLxLaNesry_oSVC2QQASDnwNRtYMkGoAGwuqHXA8gBCagDAcgDywSqBNIBT9DwTZzcreVd7WdKxYcnKcQNLegB1X7jM1Zr-u0QfT-UwlSRamFVdnwIJ2JktFCc1Qh441o2neoo3VdK4OOZOhn9tZSSrHwYnOrmYtlyRhjqeEPvZ0VA-axbUcKlZQ5cedEmjySxqCUpiBtAKW7LOLrMiChjG7QjY4W3P_Z_U4wZDUXD8_tCnFOo4pwi0SnthxUZWuRmEjGY1U_vzMyOUsLaG9PDsq6Fw235HlhwYXO4wqww3buw10Q5D3WpdG63Z6ooJtZVu5tCirxz-g6NwCGCwAT_wMCy-QGIBZatr7kGkgUECAQYAZIFBAgFGASgBi6AB62DrnaoB9m2sQKoB6a-G6gHjs4bqAeT2BuoB_DgG6gH7paxAqgH_p6xAqgHr76xAqgH98KxAtgHAPIHBRC0jMUC0ggmCIBhEAEYHzICigI6C4BAgMCAgICgqIACSL39wTpYxKnRqNL0iAOaCaUBaHR0cHM6Ly93d3cua2F5YWsuY29tL3NlbWkvZ2RudGV4dC9ob3RlbF9nZW5lcmFsL2FueS9lbi5odG1sP2FpZD02Njk0NjM0MzAzOSZ0aWQ9JmxvY3A9Mjg0MCZsb2NpPSZuPWQmZD1jJmZpZD0mY2lkPTQxNzM2NTQ1MTc1MyZwaWQ9d3d3Lmhhb3FxLmNvbSZhY2VpZD0mZ2FkX3NvdXJjZT01gAoByAsB2gwQCgoQkKPHtJrPpJw1EgIBA9gTDIgUBNAVAYAXAbIXHgoaCAASFHB1Yi0xNjczMzk5MTYwNzEwNzE4GAAYAboXAjgBshgJEgKnTxguIgEA0BgB6BgB&sigh=X_XUzysFvXU&cmd=ChdjYS1wdWItMTY3MzM5OTE2MDcxMDcxOBDuAxgB&uach_m=%5BUACH%5D&ase=2&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8BgB&template_id=494&vis=1&nis=6 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, triggerReferer: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CF9t9S9T_ZpnWAa2dvPIP7626gAyM7O2yerX2tr76ErCQHxABIOfA1G1gyQagAZu5y5wDyAEJqAMByAPLBKoE0QFP0Muz49MN5LepIXnNX2sWNLxMALjBFfUbB0OZ2Y0CJtCvkfyDGTTHkvgwdHFxHOZPYjHlSnAkfjxVHg7khwWwbSF-mOD2pnLEQM0aRU-cye1QN1svxQfKt4w1qmK1C6_lgsJpSig58jbAj5r_X7Xa2RcNQkg64BuGTdiTL6Ze5Zc8uCeSGxuJNBBw3Mos-MSRXrVt2jk195dptrpa4u92Fh3hUsQdGfv1pzrs8tjVhcOhyHP7idLok4gVELaBFlQ0MBGNjxisfmlICQGD-VcfacAE78rGuP0EiAX82IfGBaAGLoAHzca0Y6gH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WInB06jS9IgDsQmZiQGFumlbPoAKAZgLAcgLAYAMAdoMFQoKENDV7YDq6Ze8ORICAQNAAUoBJKoNAlVTyA0B2BMD0BUB-BYBgBcBshcCGAG6FwI4AbIYCRICk04YLiIBANAYAQ&sigh=u-MddZClIwg&cid=CAQSTwDpaXnfveAUNmBW3DIP4C91nkml_SMN3Hg2AHSGSs7Ftop1asYQtYb9NO9VmWgne4QnS7GY0ln__zk75HuRrRfdwuTWEC3iNDnMml_kF4E&label=window_focus&gqid=StT_ZrmHOoyI1PIPyfqEgQk&qqid=CNmn16jS9IgDFa0OTwgd75YOwA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1673399160710718&output=html&h=280&adk=1234807076&adf=884246868&pi=t.aa~a.3958040794~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042057&rafmt=1&to=qs&pwprc=7942162476&format=1200x280&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042055445&bpp=1&bdt=9109&idt=1853&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie_enabled=1&eoidce=1&prev_fmts=0x0%2C1200x280&nras=2&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=89&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=3&uci=a!3&fsb=1&dtd=1856Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CW9SqT9T_ZuXJErmPvPIPmYyg6Qe8lYK7erW-qerjEr__uePXAhABIOfA1G1gyQagAcjHtfICyAEJqAMByAObBKoE9QFP0LdA_QtCVxOC6UdH1mV_RjR01OPBl6YIph7NQYCRLj6m1RRHTEN_IsaYLCeCkeipgYxf_DYYCKwmrnn20t63B6etYUanxrvkfUwUGpGuCDCEcwIkbcTcMYP1GgsHZ_gXC4wkPbVi4EU8TRb_cDMWTxwJ-hCsTvrI92ByxwLQqQsd-gqbWJF6_onNQ0jaAUmw26prJ99x14CcDtosYlge6ozapmLCQkpDWen9-WOPDZ8L5u-4YbJzElVx2vIKrz4l0Eb2ZKyCGWrJ4zOEvbVo5NasVQVNm_jNUkTpg4nacMYeIWk_JAegu4fGCJLzaRfUgAmvxcAEiMWN0LcE4AQDiAWy6fyESZAGAaAGTIAHoLjKjQGoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB-C9sQKoB_-esQKoB9-fsQKoB_jCsQKoB_vCsQLYBwDSCCYIgGEQARgfMgKKAjoLgECAwICAgKCogAJIvf3BOlim_Neq0vSIA4AKAZgLAcgLAYAMAaoNAlVTsBP-08cX0BMA2BMK2BQB0BUB-BYBgBcBshcCGALoFwSyGAkSAuVZGEwiAQA&sigh=v-kmi5WLZvs&cid=CAQSOwDpaXnfmOv4SBG4QY_5UnCklWXEdYWC3Np8BnW-7nO9_2RuSzEtrFw_9hE3gto6oqNw6mYSrKEf-Ile&label=window_focus&gqid=T9T_ZtuDDbPmx_APnKXP2Qw&qqid=CKWt3KrS9IgDFbkHTwgdGQYofQ&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=3371909064&adf=397776184&pi=t.aa~a.1089127196~rp.4&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042061&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2F&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042059378&bpp=2&bdt=13043&idt=2&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1200x280%2C1200x280&nras=5&correlator=5260686608363&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=3625&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C95343329%2C95339679&oid=2&psts=AOrYGsnWNeP75MdEBAfmYBN9W6xWnGSZ41PWiITiP14m81H9xmfuL_qWo11fMzbBf2s72c2fn72D870bhr-Ib76rS0E&pvsid=2307661656001176&tmod=532925844&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CFkeFStT_Zr3NPPSUvPIP6_ucmQnLxLaNesry_oSVC2QQASDnwNRtYMkGoAGwuqHXA8gBCagDAcgDywSqBNUBT9DwTZzcreVd7WdKxYcnKcQNLegB1X7jM1Zr-u0QfT-UwlSRamFVdnwIJ2JktFCc1Qh441o2neoo3VdK4OOZOhn9tZSSrHwYnOrmYtlyRhjqeEPvZ0VA-axbUcKlZQ5cedEmjySxqCUpiBtAKW7LOLrMiChjG7QjY4W3P_Z_U4wZDUXD8_tCnFOo4pwi0SnthxUZWuRmEjGY1U_vzMyOUsLaG9PDsq6Fw235HhpyQOF0dBgRUA_vJbQhzq2FXmQzboQwlji9o1qQIp9f4sAebAAPTei8wAT_wMCy-QGIBZatr7kGoAYugAetg652qAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WMSp0ajS9IgDsQnoOb0IcHAWJ4AKAZgLAcgLAYAMAdoMEAoKEJCjx7Saz6ScNRICAQOqDQJVU8gNAdgTDIgUBNAVAfgWAYAXAbIXAhgBuhcCOAGyGAkSAqdPGC4iAQDQGAHoGAE&sigh=E8pEeiVYDmU&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8A&label=window_focus&gqid=StT_ZpzqN_fox_APxrqS4QI&qqid=CL2a1ajS9IgDFXQKTwgd6z0nkw&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /i/ca-pub-1673399160710718?href=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&ers=2 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=731747807&adf=1645902383&pi=t.aa~a.3940796168~rp.4&w=1140&abgtt=6&fwrn=1&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1140x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&fwrattr=false&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280&nras=3&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=62&ady=1189&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=4&uci=a!4&btvi=2&fsb=1&dtd=1342 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=4075358053&adf=2063629977&pi=t.aa~a.2231736124~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1140x90&nras=4&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=1605&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=5&uci=a!5&btvi=3&fsb=1&dtd=1354 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: iframeReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVifTah-veLB2rSHOQe0IKZPYwlRiX35dRmH46TWedosDWvfXDDZ-bvXXGc0yGV8rU0PvB-mhhXDlDQU9jXsfzgZs8za28qE3AojEGnKd6WmIUV8mLyW141ijTuqwB6WzDwmtk2Ig==?fccs=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 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQkr0JJgssmDkJ2FOoy1zXJuHY33xopr66TxI5_P2ixGa7v499Hr6UyVMO5I4JSxPUYk6JfT43GcQTJqX13u3S6Ks_78A HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaSTJhR1OewMZkk8y1BcO3CQvZVbfqSnCW9083mQ4nofBlUtk-Ozne0ZnJ-3ALD6ENYc8MiLZzQWyNz_zigWQ_sTmwCZiA HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dcm/dcmads.js HTTP/1.1Host: www.googletagservices.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /xbbe/pixel?d=CPfHxOMEEM2_2-oEGNKikZsCMAE&v=APEucNXhnXjF2sJ9tyF-VUC9xWNRJ5NC-o5pBxJKQb83I3CuqwyAcmRD3qKflRXX69i79_9PlTMDWa044gbi9Vl0jovCTNPXMg HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/html/r20241001/r20190131/zrt_lookup_fy2021.htmlAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEGEiavs7xorMj9f6JVwxzhA&google_cver=1&google_push=AXcoOmSulyuPz4s2VMwaw06B9jFvCD3Ea4zvFVN_jiFcqjgfjyvBrnsuuio5aJjQ9PpNZwTI7nE9QdVgHFylTAP5InkPiSOlbvVM-5Q HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmQCvToyhvfM6gk2vMYoxrJQZorSrtw93am8KOb5SbI2bnCwv6k0SKPOy8pZBCOmRCfwi8Bd0Z54Ptt6QOOx0dSi30UFYLO6Zm11 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /adx/user/cookie_syn?pubid=Z29vZ2xlYWR4&google_gid=CAESEMubsfg7aw9eHiY9QDqBVSA&google_cver=1&google_push=AXcoOmQ0Ne2aCV1Mlh6kz-lVa1oTUCTyGJj1orcPFFdDIkOjVJMxBKSk4nE9PC0fD6n4emS4V77hLq_syWMU1Wh8rW2O_2_MW0DbPM7t HTTP/1.1Host: gw-iad-bid.ymmobi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CFkeFStT_Zr3NPPSUvPIP6_ucmQnLxLaNesry_oSVC2QQASDnwNRtYMkGoAGwuqHXA8gBCagDAcgDywSqBNUBT9DwTZzcreVd7WdKxYcnKcQNLegB1X7jM1Zr-u0QfT-UwlSRamFVdnwIJ2JktFCc1Qh441o2neoo3VdK4OOZOhn9tZSSrHwYnOrmYtlyRhjqeEPvZ0VA-axbUcKlZQ5cedEmjySxqCUpiBtAKW7LOLrMiChjG7QjY4W3P_Z_U4wZDUXD8_tCnFOo4pwi0SnthxUZWuRmEjGY1U_vzMyOUsLaG9PDsq6Fw235HhpyQOF0dBgRUA_vJbQhzq2FXmQzboQwlji9o1qQIp9f4sAebAAPTei8wAT_wMCy-QGIBZatr7kGoAYugAetg652qAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WMSp0ajS9IgDsQnoOb0IcHAWJ4AKAZgLAcgLAYAMAdoMEAoKEJCjx7Saz6ScNRICAQOqDQJVU8gNAdgTDIgUBNAVAfgWAYAXAbIXAhgBuhcCOAGyGAkSAqdPGC4iAQDQGAHoGAE&sigh=E8pEeiVYDmU&cid=CAQSTgDpaXnfboqX4X_9rsqqHEEhQJnIT-6Qi_rPYbhoXaoKOEjva4ImuT4TosKBR7_MO7zHK86s9xctm5mG2Xcykyr4Zftb-54g5GSKlz4s8A&label=window_focus&gqid=StT_ZpzqN_fox_APxrqS4QI&qqid=CL2a1ajS9IgDFXQKTwgd6z0nkw&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmSMzdJch9f5yspzBreHk7MkJGMkYmQ7l_CBrHUxRVaoffKY4RNI2u5YLrO2puwm_HkGYBZSRSnlykknHeXLElmJuD0t50Kx0HxNIQ HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CF9t9S9T_ZpnWAa2dvPIP7626gAyM7O2yerX2tr76ErCQHxABIOfA1G1gyQagAZu5y5wDyAEJqAMByAPLBKoE0QFP0Muz49MN5LepIXnNX2sWNLxMALjBFfUbB0OZ2Y0CJtCvkfyDGTTHkvgwdHFxHOZPYjHlSnAkfjxVHg7khwWwbSF-mOD2pnLEQM0aRU-cye1QN1svxQfKt4w1qmK1C6_lgsJpSig58jbAj5r_X7Xa2RcNQkg64BuGTdiTL6Ze5Zc8uCeSGxuJNBBw3Mos-MSRXrVt2jk195dptrpa4u92Fh3hUsQdGfv1pzrs8tjVhcOhyHP7idLok4gVELaBFlQ0MBGNjxisfmlICQGD-VcfacAE78rGuP0EiAX82IfGBaAGLoAHzca0Y6gH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgHyqmxAqgH66WxAqgH6rGxAqgHmbWxAqgHvrexAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WInB06jS9IgDsQmZiQGFumlbPoAKAZgLAcgLAYAMAdoMFQoKENDV7YDq6Ze8ORICAQNAAUoBJKoNAlVTyA0B2BMD0BUB-BYBgBcBshcCGAG6FwI4AbIYCRICk04YLiIBANAYAQ&sigh=u-MddZClIwg&cid=CAQSTwDpaXnfveAUNmBW3DIP4C91nkml_SMN3Hg2AHSGSs7Ftop1asYQtYb9NO9VmWgne4QnS7GY0ln__zk75HuRrRfdwuTWEC3iNDnMml_kF4E&label=window_focus&gqid=StT_ZrmHOoyI1PIPyfqEgQk&qqid=CNmn16jS9IgDFa0OTwgd75YOwA&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13JAzld3HP190wTQExCS7Y2g6rh8D1rl-YR7ypoQ1a9rkeuR9OA_f3v9hRwF-8cpc2HhTmCGUt4 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pagead/interaction/?ai=CW9SqT9T_ZuXJErmPvPIPmYyg6Qe8lYK7erW-qerjEr__uePXAhABIOfA1G1gyQagAcjHtfICyAEJqAMByAObBKoE9QFP0LdA_QtCVxOC6UdH1mV_RjR01OPBl6YIph7NQYCRLj6m1RRHTEN_IsaYLCeCkeipgYxf_DYYCKwmrnn20t63B6etYUanxrvkfUwUGpGuCDCEcwIkbcTcMYP1GgsHZ_gXC4wkPbVi4EU8TRb_cDMWTxwJ-hCsTvrI92ByxwLQqQsd-gqbWJF6_onNQ0jaAUmw26prJ99x14CcDtosYlge6ozapmLCQkpDWen9-WOPDZ8L5u-4YbJzElVx2vIKrz4l0Eb2ZKyCGWrJ4zOEvbVo5NasVQVNm_jNUkTpg4nacMYeIWk_JAegu4fGCJLzaRfUgAmvxcAEiMWN0LcE4AQDiAWy6fyESZAGAaAGTIAHoLjKjQGoB9XJG6gH2baxAqgHpr4bqAeOzhuoB5PYG6gH8OAbqAfulrECqAf-nrECqAevvrECqAeaBqgH89EbqAeW2BuoB6qbsQKoB4OtsQKoB-C9sQKoB_-esQKoB9-fsQKoB_jCsQKoB_vCsQLYBwDSCCYIgGEQARgfMgKKAjoLgECAwICAgKCogAJIvf3BOlim_Neq0vSIA4AKAZgLAcgLAYAMAaoNAlVTsBP-08cX0BMA2BMK2BQB0BUB-BYBgBcBshcCGALoFwSyGAkSAuVZGEwiAQA&sigh=v-kmi5WLZvs&cid=CAQSOwDpaXnfmOv4SBG4QY_5UnCklWXEdYWC3Np8BnW-7nO9_2RuSzEtrFw_9hE3gto6oqNw6mYSrKEf-Ile&label=window_focus&gqid=T9T_ZtuDDbPmx_APnKXP2Qw&qqid=CKWt3KrS9IgDFbkHTwgdGQYofQ&fg=1 HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVkOjNjJJKLKXvuqNrKTy8XeDRyBbVLvvzydWOUHoM4r_wYL4b4XxqUaWzbfgIYs1sXg3V8ofBDzWlbP2zmN-y2YZTKZlcdB_g-1OSRGY73RPSCizozY6nsIrD183r4qJf9tO5CMQ==?fccs=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 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVifTah-veLB2rSHOQe0IKZPYwlRiX35dRmH46TWedosDWvfXDDZ-bvXXGc0yGV8rU0PvB-mhhXDlDQU9jXsfzgZs8za28qE3AojEGnKd6WmIUV8mLyW141ijTuqwB6WzDwmtk2Ig==?fccs=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 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEFi9PqLuqTCfmE2lDk5eZnw&google_cver=1&google_push=AXcoOmShV-Jtc0RSd1rbHkgI_Eyj-B0DmnvvLixLb2rNvHzkMf38HLb3pMjATPv7RlVFZyU8Y1Mcjw32FWGNm0ehaP1l1kshMV69yV9W HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmRbtMccDxJg2BjT3wnvT1aepLpjWQ_QuS-yRl_uN-efUYE_YqPR6ef0-7Yh5T8BxoQ4rpvAjuN3vlHpI_ROEJWbBvpxn8ySqG3c HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /w/1.0/cm?id=9ca165a9-d9fe-2ff6-d83d-d145a80b0d37&r=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dopenx%26google_hm%3D%7Bopenx_uuid_base64%7D HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=openx&google_cm&google_dbm HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEGEiavs7xorMj9f6JVwxzhA&google_cver=1&google_push=AXcoOmTyFCDwwx6UNnlLcmSN88RNjshcmNS5SmS2VOGMiQ0qsij0fWvXW6TkZOtmWF9T9iQmuHoMbQj8LlPgnZacn2DENsWg7qpOZYs HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _tracker=%7B%22UUID%22%3A%22B84BC440-1A69-41D3-077A-EED82B6DB51D%22%7D
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=teadstv_dbm&google_cm&google_dbm HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /track/cmb/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmQCvToyhvfM6gk2vMYoxrJQZorSrtw93am8KOb5SbI2bnCwv6k0SKPOy8pZBCOmRCfwi8Bd0Z54Ptt6QOOx0dSi30UFYLO6Zm11 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=e335e2e1-b80f-4249-b64b-19f1016b75ba; TDCPM=CAEYBSgCMgsI-qmH3oadsj0QBTgB
Source: global traffic	HTTP traffic detected: GET /v1/api/sync/AdxPixel?google_gid=CAESEAmTNgM_-pcFL5ffd_dk1kc&google_cver=1&google_push=AXcoOmTV2KSAc1N-m2G0xNU9LFPb6GLXMBggU8DeWZNW3cTP-vpAbscLRbseese_6eze5rzy_lCdZGSYwuDmUn2pmEk6Mpac1tSMy6k HTTP/1.1Host: tr.blismedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmQqDjvbOg9mh9Ke-eHDgTeGGYCzmctbUZo85ZhML4SeTOLGHbGXAx5LKbO3n6hKn0Nm2gEy5TVP3y-GOpx_XkUXiy4RoIvYa_o HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=e335e2e1-b80f-4249-b64b-19f1016b75ba; TDCPM=CAEYBSgCMgsI-qmH3oadsj0QBTgB
Source: global traffic	HTTP traffic detected: GET /adx/user/cookie_syn?pubid=Z29vZ2xlYWR4&google_gid=CAESEMubsfg7aw9eHiY9QDqBVSA&google_cver=1&google_push=AXcoOmTIr8seDQb_z6tw0YfTB36eULzlKSYmdeIO-RpgGl--1XRNf-DwqS-nBR9_-efeOV0xQL6nfUgai4DG0LXt7AK1rclHwHo31WXT HTTP/1.1Host: gw-iad-bid.ymmobi.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjsvxYDsb__THUaY0R_4hEJClqTq60nsvnmUsuOvXD9kOk5IONGUjuMUywcV68vM4JfFFmhDfqQjgYGYy9qXp0lqbiDjviQGHzn9DydUL0BLMh061MKtRuQpvktto14K7ShTxrR3v1cwsbFi1AVSPCfvpGbdUVUkHKLuVvrloI2UxoOver-GnBpXgTvkNqRXXVOoBo0WE48_5KH18AIPRSHbAXOjb6NuVsGd4KVVDJJ2skKKpLubqXna2puUz47ca6zHerZzabTjmUgTa1rtyR7qjbQD7-Eeuii8SVp7W-MRsFUW8Zl_4IcF_QlJMPeh_MIvWEsZaprLhHnpTO2csXiP_W2zQR2wY_LwWepKdoHSyItVcowtLN-0896TATHux5z_C6DJacdT6gASN0yA8BUfIKZT-L0Pd5aDI8DV_ePzinLtws5F_OIhKxz8PZr4s5EgA3ksBnn38wNOnDzY-rcPr2rmJB5n7WLTB9yBfCwP4JM_Y65RsIw1gFj6TEfytjO3qFw8egQX0c1khOZz64rn31kfsQDSUJjdgGFQEfMehRMvmjhQnZiQQ92fbwYP-YBhT365muwcPr8KzB9n-_4gHUyCBG4vQHu4cGOipcB6o7favllQr12hcBzJlRxtg-iIiBc0jEUeNPFzfpGbNdTnuFoDq0eOPoosAWuD0LjeJ_TFQDsTqxShBEVeOpqqVGnUVfVVOh0KgY9315o7HIxUGx2UAwyvRtySE8jSmq5cAFrlte2ES5zErW2t1AgeQC2BS4zspuAxp43AkLKSheTNcgIA04JQzA94pYp481jWtr4-0GfokeRjuZbU5fFb49SG0HnM-wYDvr6DwadnOwuJP1ZSB5IbCuHFoAlD62alklOiy0g-jakLku9qP1bmH739Qn8IBGL71mBi1Ej3SYyAJjcBRn3vm2QHzdP4mGX-nGJISEPADY3v7NlNIPYeYXVOm5MUAdhkb00u-FIfFVeKz0XxbjRrAsEqDC06YRq7UTB96mqI3fc09KDVVigNkHJFOu4oRoErRcpBDenZlsWv_VCR4qTGBRq4oIq3idJoF3r2d6VzXrMPJP3R6FP3W3Ew1hte9eCuyWBRxv1ERwU3FDlirEhByh7AuBIAhbA9KMnaNrOmG4mWeLjYHhzv0IMx32QQPG7PeAHxfaqukeq9VgrCEyUp98BBbOFZAa8ZRvSQpO_rM3d1yl-SZA5cgRNYp28i0RYHgztcjjbehTEXsj_cs-9OSBsxd8xnYGnJQZUozk7Ydl3kjaSrdqvtidfyWYWyLEP9Kp1QEEsBGFqRzqzci7H-VGLxQJ7NpEwTrrQphT2OGwMiEw4HiHPE8rRnr0vOyz09HoIVwoUHMlc6hy2dn6g4y4mW9DshDds6evQ5re_ow1LUk-dxcQA&sai=AMfl-YTZxJ2Gyk7hXc2lVbJspSVACpbIcM50ZEG5oMSFhSivhYpOLlmzR-uy5NuYfU4MeGPzF7yMPB0j28uBTnlOvPs9z90FXKtU8WQ2zwNtwICIebA49c5qNgvEhlkinfK68tIE_hHOGRHXdSQW7wY8r2P-WWIuDA-KnJj76BsfUd4pODrx3EXBN-bgO_36K0CX8PNcH4g6ynlm0v2vpVpK3Vk_Ciy3SplHRi8KQrQRo-K4UK2GDBsq6EJJ3SyqhhCEL775xS-zCaEUfFmNsM2LzLmYce1rmLpSTwN1c43aE4zKg_HIsSNqKcAx-6scL-xh036ylBYb0-km77qnXgajBhEOBDsNMznDso9-bu23P3jT4FTGmGN0F7kGLKp4NP_E58WBMGFmduqgKRl7EZ5uCjf85XPOPs6XKsh2&sig=Cg0ArKJSzIvdSSM8R1wLEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=4&cbvp=2&dett=2&cstd=1&cisv=r20241001.86318&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source, not-triggerReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /google_pixel?google_gid=CAESEGEiavs7xorMj9f6JVwxzhA&google_cver=1&google_push=AXcoOmS_qwRyX3whO3xQLvSc2JgBrDnO1X6pF86whMgAw7VSZjEYKco6wzHdQ5JwZcDLi1z2zEFLH-9drso1Sc7wUKmGo6svitaLdac HTTP/1.1Host: ads.travelaudience.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: _tracker=%7B%22UUID%22%3A%22B84BC440-1A69-41D3-077A-EED82B6DB51D%22%7D
Source: global traffic	HTTP traffic detected: GET /xbbe/pixel?d=CLbFxQEQq9bcARio-uKYAjAB&v=APEucNWY-6eV-PamxnzS1IYVwACNrpTeCLFv0-YchtE3vR9t2wema9vG5z1iKaHit8wKiP_Fm7slvYlC4NPq7_TYrYF4LywVeWXrrF864smd7v7SXzepVaA HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=4075358053&adf=2063629977&pi=t.aa~a.2231736124~rp.1&w=1200&abgtt=6&fwrn=4&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1200x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280%2C1140x90&nras=4&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=32&ady=1605&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=5&uci=a!5&btvi=3&fsb=1&dtd=1354Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmSulyuPz4s2VMwaw06B9jFvCD3Ea4zvFVN_jiFcqjgfjyvBrnsuuio5aJjQ9PpNZwTI7nE9QdVgHFylTAP5InkPiSOlbvVM-5Q HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /xbbe/pixel?d=CLbFxQEQq9bcARio-uKYAjAB&v=APEucNW0uDA7eulVQo62CO4fVaRDsljOIJWFDirYM-cKSquXh-s5PzT4pRuWgb8AH5Qo-aVZYddkP-uvlT149X22qRIcfZDD1bWCJ37Y7L4SNA_rQgcdA-U HTTP/1.1Host: googleads.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/pagead/ads?gdpr=0&client=ca-pub-1673399160710718&output=html&h=90&adk=731747807&adf=1645902383&pi=t.aa~a.3940796168~rp.4&w=1140&abgtt=6&fwrn=1&fwrnh=100&lmt=1728042083&rafmt=1&to=qs&pwprc=7942162476&format=1140x90&url=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&fwr=0&fwrattr=false&pra=3&rpe=1&resp_fmts=3&wgl=1&fa=40&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&dt=1728042081828&bpp=1&bdt=2602&idt=-M&shv=r20241001&mjsv=m202410010101&ptt=9&saldr=aa&abxe=1&cookie=ID%3D2704f8406324721a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MboI7ICpcUqb3GYV7mnteyNH3631Q&gpic=UID%3D00000f23c94b23d1%3AT%3D1728042058%3ART%3D1728042058%3AS%3DALNI_MZ-hSD0IzVT1wUUiLYGumUziEHQrw&eo_id_str=ID%3Db4a5e61cc765553a%3AT%3D1728042058%3ART%3D1728042058%3AS%3DAA-AfjZfklDsV3KI35jmw7Cy6bKg&prev_fmts=0x0%2C1200x280%2C1200x280&nras=3&correlator=7979588698718&frm=20&pv=1&u_tz=-240&u_his=1&u_h=1024&u_w=1280&u_ah=984&u_aw=1280&u_cd=24&u_sd=1&dmc=8&adx=62&ady=1189&biw=1263&bih=907&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31084127%2C44795922%2C95341936%2C95343328%2C95339678&oid=2&pvsid=2188456680695935&tmod=532925844&uas=3&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C984%2C1280%2C907&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=128&bc=31&bz=1&td=1&tdf=0&psd=W251bGwsbnVsbCxudWxsLDNd&nt=1&ifi=4&uci=a!4&btvi=2&fsb=1&dtd=1342Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssczs0X-KB6qYP2KlivIqRJ99DIQD1UwVoZBOQNyJSMchHZUm_LOkMvlEHlRAmsBrk4MPryuOx_x2GbHD2CoVZp5GKZDonXWYm3MoumJZlTzzJZYohLFLUV8nh9uJATzOfH9kc-uRMjzLf5WqB3mexrRpd0QSPgLU9fgZ21vsoWRYG4pegpnLPHaYnD6M5cE4Vc13QMOq4SVWXJS15lUH2Sa3sAIs7dZ7eNS96hHVLPoiTLGLyMeMwg2yc8co__iXwlCz77ocS_v3e2EZ7FYrQqZTOrZRUhHVbCxOm371lrOVR1A0xiX9heWbeypHLLTJOJmXJbcsFT_GFafBzi1rwkV7Z3qHceQh9BDMWYne68NHJ-bhEN-2Zn-NkBsfYC-TtALOEfWVQe-x0DIRw1CPuRtOoVFO9qxsVC5fr0OhLMrh2yjzQ4Zcp6eOk9r3W7o_vX7pQax5cDy4nj2Mt_32saH3c4s9Lz14k6_bqvI_knfE_rBQ-ORDazhFho5It82kMCwmx4xGvgSpT9fespgqObJhhDO7pXcdeAOJnXX-_y8sbH3Gcv0yZEsoGsdcgozYCEp8ayp86y2fLBuUjsfvgqygMYJqdXaHRmoQpUEeWrzeY4myyDoBdI-dBb8K2FhclGqEMCcTGe-lImKrxna6lcmVDXdRpGIBReN6AgsN5wmrC7Z8ouHm-iK3m-u08UXsCWHhysG09iPtX7NwhCWFj7AzO4M1BHGa58ReaBJ_PSZiGdgMeVTTIGVo5l8cF3JJXaOy0QnDT-wPNqdvZAvMyeYpGknIM4nys0dfl1LJwiuvaFLc-vgkIzNyLOpx-Z8Ew_F6q65gb8ywcVlogTQj95gPFjPg-ILTcc7AfdaOzvSrVZnNJw5_iMSaeqSfeJFuIJ9qKygeb1PxEBskwkcNDFyWw3gRV8_YlK6pkz2mCpkGuhM0DEIogpAL71sxeWdNVYksNkBoGlBXLtq99W2wheuWlArL6hjOy6NMXD7CiH66H6qAEH_b8SU18jyCawVQsyhQHgQtaJFTVa1NaZCgm6bzhtj0Cw_iadx7Pzp8RK6KCw7LZWGqjBo5XkK6BTEZFS5rj7M5qU26z47A3fZmLMW25TMAM7lF1xqmQwXvDV-O7oBV_id1QMLdrkw6tiW4uCAEHvhJP0PbA0oz2P9RgTEBoBLWJ14cD3vfrGawg6BRqAhNfG6RxAYdD0FE_aX_vBnSr8XltGF1fLvJrHJy26n3hCqyGiBSE-3CcTvEebZ5tkNr15PQPY56NmbLXQhL5KMFKOzbRHRM-O2A0MX4iJR0kcsNswlav8NPIKL6VOY8pdk4N5Gt7UYqY46GBh59iFvr1-Mj5iHr22EyPQqgaS4Mdb4EvR5IidBDlnjTJkkYdNgZo2jXb2olGXPQ&sai=AMfl-YQuGsdX2J4rx848wRgIc57LJSFq768n9kCajIqaG7jX8XTfUvgkjIG5TqrWvzPJ2RaBrCZ0T5fvOOklbFDdPwtIfdE44pkdsmSUH8sGVS6bfVIpbst11pDEHAskJYkYRlqDusUOSZ6Tknjl7ZyjcPk8RApyj9X9usScvoBMdAKOY8PAzzAuYEisVcqiUVSyyZp5cZIQyXA1IAylAamCAeMib3P2mwXh118Ht9_YzIEdMqn48cvsGtAWzeNm3ByGyJFNrEGum7FrG3XFcnjxuOMse0M6fJyl7wG5QU4Wy9nvJO5fl2IlJXvU8XWzXdl3LnrFG76-0CPfBZXmG5CdWD6JkiVYKfzaqCHhu5AvYbZa7121CgcaJe_FDGQAAU3OeC0v1hFClTRQVR03hJmw6Fr66r7CZ7C4U09t&sig=Cg0ArKJSzFCam7cFjlUvEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=3&cbvp=2&dett=2&cstd=0&cisv=r20241001.37687&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source=triggerReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmSMzdJch9f5yspzBreHk7MkJGMkYmQ7l_CBrHUxRVaoffKY4RNI2u5YLrO2puwm_HkGYBZSRSnlykknHeXLElmJuD0t50Kx0HxNIQ&tc=1 HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: g=1D6xnsGMXasXsu6Ji6uj_1728042086362; ts=1728042086
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=286fbcaf-c685-43ee-8bde-74ddd673711e; c=1728042086; tuuid_lu=1728042086
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESEPv97O-fbD076H-t7qpclug&google_cver=1&google_push=AXcoOmTs1_ll0D_RCewYKHbjcou2C-D9XigwEMKV_u-aZD-O41ML3SE9fdZH5w_1zibbiRxTdKUAFgAe8aWsnlS_ljhlXIAw66tm7YJT HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESEPv97O-fbD076H-t7qpclug&google_cver=1&google_push=AXcoOmSG2y2CKSsJHjNe49B23UO6-5g3bFSL2LYXX_GQWIMBaewczfO2x8EyvksJW-qUf0IyZLinmX_ctJGlnpQh0UG90kQ-Di98fpQn HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13IUKnPygisc1SVSIAl_6VxOJ9jS4uztRUM4KTV9FLgRkGCpljYd8R2BKcK-9j-nq2UoEmmmCQ HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmRCSlMPxwQTtRY0srsvhVQKth5iLYF47d3btKbG_d_3IsMyUKNQADdrnqdCg6DLNPZUT840YBHlR4IVAe5fcGcCAepXLko1F3A HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=286fbcaf-c685-43ee-8bde-74ddd673711e; c=1728042086; tuuid_lu=1728042086
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEFi9PqLuqTCfmE2lDk5eZnw&google_cver=1&google_push=AXcoOmRuShbATQDatQq4sJWhdwSrBaGF1h8JWd189LN0U19evDjkxqz6PEo6NN4Cmk1GaEawPQp5AY2xig2e6DaJALkaVLbrCocgGg HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEFi9PqLuqTCfmE2lDk5eZnw&google_cver=1&google_push=AXcoOmQnNLICDQEa3vo6G_jaTp0NK-2q-MGnmoNPYU3Aa2sIj7Rxn0cU26cd4a8b_IFvGN63TwpI48Ce2Jhn1M-z_WPNWRTnZv5PfbI HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmRy4LztOfvutfEIQqeamY70sMjqOCzGEp04PRMa584VqdOYtMt116yfAa_MYRTxcDQqTgSXjjxfVMmSapNlh1rX65TKi5Q-N1I HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=e335e2e1-b80f-4249-b64b-19f1016b75ba; TDCPM=CAEYBSgCMgsI-qmH3oadsj0QBTgB
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaS8gCQFP0o1eus7-AihtczXrA7yuF7mCvHGueJU_LMl5dYEN5zMJwL72QmFQlpXYbgd_zSsqmxxKea2m55Wivzm6oo8YA HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13L4GvAS5ilSZs0f2MWid2THf2dPYje2EVLYnqkR4AkOHvwpPTTV0XE7TKY0O6A6Ow6XfaFA6NI HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmT4o063xBBQDu0z4njujpW3iMXyySg6RrAn0VBLP2vry8QG1govK7gCAyoaJNfaM1IIP-17W1aBlEfY617IxoiLn9u3SbkN4a0 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ads/measurement/l?ebcid=ALh7CaQY3seh0MpD2DAPZGWcGa0eyeMaZjmKJbAzbZ4sjiZYrM2JP-bBS2iYVMfW3q26Xl_E5QUiCXpV3673kLeQEChXLoCWfg HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=D463160B91F546D383A1AF8385A1B33A&google_push=AXcoOmShV-Jtc0RSd1rbHkgI_Eyj-B0DmnvvLixLb2rNvHzkMf38HLb3pMjATPv7RlVFZyU8Y1Mcjw32FWGNm0ehaP1l1kshMV69yV9W HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmRbtMccDxJg2BjT3wnvT1aepLpjWQ_QuS-yRl_uN-efUYE_YqPR6ef0-7Yh5T8BxoQ4rpvAjuN3vlHpI_ROEJWbBvpxn8ySqG3c&_bee_ppp=1 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: checkForPermission=ok
Source: global traffic	HTTP traffic detected: GET /dbm/ad?dbm_c=AKAmf-BmwgLlXvLBDhkYHic6fuX49VdJ25tE_0myFee4RzIpazsSanc2sDjik01ZLPn36OhmSEWoGfGPz5SXZjf1xOgwqRv4oSvkenGiaEs91mTI-JWahTZGmKo_5Nu3puY7PuQQfNWMus2BDvFwBJs_XsqYHj3OkKx8mqSukz_RaZMUZM3fKt9xy2PP_tIheV93WR_VSb5wAOnhQbaycBDCbSlTgOR-esdxTnOh5-5Xx3mbVhao-kg&cry=1&dbm_d=AKAmf-Ctkfiisw4sUKcjWsLWg6bu1FonrD_Mrehk92SJHpzkPzXReqaMsEEEjWicDM03Zn_2Wf9BGLrKSJASO3hhy6pt7YFa5IQULRtat2VuW0hhBPMqk5NcbqW9y5kQCNZrDbSDVSB7OB35RuZUMf6LC3qM9xmJTV8Fuq_TEdx-19AENel1TSyxkg1glhQBMV89eX202AQar3P63zQt2Km56Zb24BgJSNEgKIQJnBNlQWCl1xtQTM0LWhgK0Ljkcjykqj-7P0UZ5tQPPeyh8ZfEY-QZQrpXAsljhHHemCDsvKSyVJLTj1LhSr8kBGfsE4uqWGL8T5eMjmL_ISvFHy0iuhuHON-8q9qBDvu3RxwngqWA_THWQN8Mx2SWx42vTnBAQKX1OSIRSC4rSycMXmkmEQGcd8rU_HWFGsBtaTzG__G8vDFhVOR1auBW31T7Ozkexq2V83hBFUf06JksnSITmSPWt9EIs_aPFXwvkirKukZw3B8s57wqYYSbvxlV3m6z7Venw8J2MbYCwoySSQihoQ2TG11k8WADxGUcWVpZHRD0ig78UvZmEGbREYz_CEimdL8OafEikmJprO1FD6Wq8FNAe8-7sIw7PFyZrGallNX2gPNqvGWAnowVOQ1-j-c17-X2yPX2ZMQDXdueKDbcXd309WBwLZxX6oBI28u0i6o9_2Q0Z7NqdNfuiSuMHeQGmxSCcEff21Y6J4mhbpqJvGvJaZkiH8OgNOlORjasj2yIwDZban8I1l5IKFrhJt98OI-L3Qh2R9m4deu7r8pXMX_-D9izQV4dxQoXCH4V27SOz9wPcL0AbtcFHBjZff9wP4DHbFj4mw3EyGYfVbU7sWSNjjl7hAAYbfplbOrbWg1tsYHn2hwwcGLK4rndm3KY6Qms2M7cw7gpgBjgxezy2sAddP_snFQ629jqygLOSyivKCOBbHeyRHQSzaOa8TnO0_kA5AV0ESmnsyEws9RVfa254xEVF-TcE0LwXX0qu-Z82PsDjf25-g5zv28ond5nJPq7kDGYXkz4MRwvayh7lxezcH0IejNdSlyZ-oT6qUOJNf1Fk8xMySZj5UkaK9t9mUMxQ3Hxsj7TvKnwd7ykJJddAe_4Fgj2woslc0QYe2nE0tzjl6XdT5yENmmWFMmcFYm0OK-9S8i1ow6VIsQGmV0d5LhnldQHAcU_9w4GnEHUpProslXx3NRAKfoXvUGKngThQq6fVKaL8Z9JhROzbgvVmAxMkl9wAVxG0GEhY4rwJpSpVcWsUwg3-G21g_PYWJow8EjqK9hAxKWOz6x8UaT4CU4Ugri6XtfwMNucL8LVegMkgq3ALOMyjXWi6qboviCPqk9kd1YXXoVrkqXxAs8woRGQvPh7vUJCzEewQpOrxpJkJ0UFPmRwZXRLMZFA94AK44MMI07cRedaSZkNyFQYEuLcdMjlE70u0TLaXltuQezYRMdiN5MH2bsnoIvq7fDQJuL-xr2jkFO2z2TxKGGW8uQ_9Hu12z_S9COMJNFhHryNaDEdM1iJq_QcI5MMuCkFz9zR6a3fzeHYQiciDvIIbE74OEmXzhWs1655tp3WNlvSMcK22PTQKzGuvuJk9C4HrFhqAljUWZ_jL-nCVJrIaRcdPiGXUfHz-qTXS2AU5iy12p_gCQFM_CziKOVmLaOpfmITGNA5efmPeZWhNW7cwoAr3Umh9cIO4Lmu5gWr0p8oWVoHZWy0c52wi1bswa_6u8b5WNxPdmcT1dfh72KZa5BCul-VAsbJ74W8AgthMMi5stZ5UflEiMQmaDyIudTocqKSo0IOROF7EWvCk7j1_-mbnQI6iQASrJVpK_O0pozZbo93wvmGkONMI1nQKq0ZvJm30RqG33RJSkrr60yAi4dJSaEZKVDH4EusvWooFzh8cZ44nglsQ3RM8c65_LhzWfPz8EFDk3HhdDl5pITxQ0COSXhIqus6M47GVEFE728ePpylgqL5875kTp8-hW_ut7w603H1wgmcPssvagFWWzLlQS-5EFBuwA7cjknL5hqTvvv6tybAIBGyilaWWoNQ-jWep6IlmhDBpK1yorJ38Ndo7iqQjWcoEvX7kjsMHbvYXpbbgmCOB5ld-4TMM5sG8D_BYp0rZLboADKUrWqIKmaBAG7ZcjEm-i_x7ANSYxUsaun4ULE0Ize7kyxEyqj6kZtfGEEbzTZjSz8HBaFuSWPFDHjK6Yjn5RlYeClgeoH6JCshr7DXo_5AQYEWZ-0MGwMvT8wpb3-GUMFLlO3u-eqHkxxYFOl67Wov67q1mwBMyg6b27Nu1qvYAcGPdaBqb6-n-5izwo0epC86uIYqsQEC7mO13ZfGcYubuzOSlyBP-Frbn-xyCvDmD0lBp_5tOhmsPUzM-zP81fpm3xwhLIqFYvY3mKxhba7Jzuym3ZMwe6J1thCHSAcguRTgRZ0qJzRT1VVmr_rdx5EI1ijv8HJbZcH1DUg6F1cX723wW0x71rCr0dOaz0nxaL2h4EOJePq0jI84dT4F1lKFCP-pQ9fzu9mstlvt8ewg_Oh6pXSuGZHmQVKo8a-owFWWQhmxZ3DDrS9ULrzIu6z5U1IfgNUL9Civvecv0QXW3N82Zrvu-HAdQ1oZU2RvqJnJUv41UcbkmfQF8DKLiqtsm1QIZboNqAhLkoyfMwh81EAexeL3B7nEHbGuJMwSjEdIta6rWdSzL-5djcol8FmvxCdViFh6cv
Source: global traffic	HTTP traffic detected: GET /w/1.0/cm?cc=1&id=9ca165a9-d9fe-2ff6-d83d-d145a80b0d37&r=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dopenx%26google_hm%3D%7Bopenx_uuid_base64%7D HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=b9a15fbb-fda0-4fbe-a342-d928a6585a12\|1728042086
Source: global traffic	HTTP traffic detected: GET /rules/rule702051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /w/1.0/sd?id=537072991&val=CAESEMkjFLMM811MJvGQ6HGZDCc&google_cver=1 HTTP/1.1Host: us-u.openx.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=b9a15fbb-fda0-4fbe-a342-d928a6585a12\|1728042086
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=teadstv_dbm&google_hm=ZWVlZjQxZTItYjIzYy00MTFmLTljNjQtNzk3ZDNkYzAzNzQy HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule700700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=tremor_video_dbm&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid_lu=1728042087; google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b; tuuid=4a7a769d-5c1b-4c0b-8955-8bf06fc08476; c=1728042087
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw&_bee_ppp=1 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: checkForPermission=ok
Source: global traffic	HTTP traffic detected: GET /cookie-sync/adx?google_gid=CAESEBRveydk5eFLhieKEjDnekk&google_cver=1&google_push=AXcoOmT4o063xBBQDu0z4njujpW3iMXyySg6RrAn0VBLP2vry8QG1govK7gCAyoaJNfaM1IIP-17W1aBlEfY617IxoiLn9u3SbkN4a0&_bee_ppp=1 HTTP/1.1Host: match.prod.bidr.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: checkForPermission=ok
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXIoFUECk4FNvCkloFhmBS2oxXCceKSam1esjWsJ0AtzzJXf6WEQfZj9CpxO3jSIRzerEvGRgArgeB-6xT1bWrHGL2lbouxguHuQLmvlFOUyN6QS-KH7VPj6WNJ4ksUBlOXuyq2x_QC8xWGD-qYu-Qksm8uU2ncCyX5VHLlAeFhAacxIZGPoRiQo0aG/__300x250px./writelayerad._468x80./ads/proximic./ad12. HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=spotxchange_dbm&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /sync?ssp=bidswitch&bidswitch_ssp_id=google&bsw_custom_parameter=286fbcaf-c685-43ee-8bde-74ddd673711e HTTP/1.1Host: pool.admedo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stickyxchange_dbm&google_cm&google_dbm&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=openx&google_hm=NDY2MmIzMjgtOWQ1MC0yZWVkLWVjNzQtNGI3OTA4OWRhNzhm HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmTyFCDwwx6UNnlLcmSN88RNjshcmNS5SmS2VOGMiQ0qsij0fWvXW6TkZOtmWF9T9iQmuHoMbQj8LlPgnZacn2DENsWg7qpOZYs HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /ups/58269/sync?_origin=1&gdpr=0&redir=true HTTP/1.1Host: ups.analytics.yahoo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBFPU_2YCEMHQmkWA5FtJWDYVa9d9mmIFEgEBAQElAWcJZwAAAAAA_eMAAA&S=AQAAAnQ3ncZmf4JPQPHh-7KC5OM
Source: global traffic	HTTP traffic detected: GET /ddm/activity/attribution_src_register;crd=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
Source: global traffic	HTTP traffic detected: GET /dcm/impl_v102.js HTTP/1.1Host: www.googletagservices.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700550v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700601v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /w/1.0/sd?id=537072991&val=CAESEMkjFLMM811MJvGQ6HGZDCc&google_cver=1 HTTP/1.1Host: us-u.openx.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: i=b9a15fbb-fda0-4fbe-a342-d928a6585a12\|1728042086
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVkOjNjJJKLKXvuqNrKTy8XeDRyBbVLvvzydWOUHoM4r_wYL4b4XxqUaWzbfgIYs1sXg3V8ofBDzWlbP2zmN-y2YZTKZlcdB_g-1OSRGY73RPSCizozY6nsIrD183r4qJf9tO5CMQ==?fccs=W1siQUtzUm9sX1UzYkRuRTllck5UaXR1SkNIdUZqZjhURXdPTnVzSDcxczU5TlVqOXdMeHA3UUFNX1lSM2pCODJHLUR6SjFDYnhUekUzb1hqbkpuM2tmQjdsVzFXck9PSmpodXNWNGpvalBNT3oxaXNhQWN1Szk0bTQxdkktcGdTQ2NtMHhYMHplcTJvRDYySlhJN1lsRXh5NS1xbm9NckF6ZU93PT0iXSxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsWzE3MjgwNDIwODQsNzIyMDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbNyw5XSxudWxsLDIsbnVsbCwiZW4tR0IiXSwiaHR0cHM6Ly93d3cuaGFvcXEuY29tL25ld3MvaS8zQjlDODNFMC01OUJBLTZFQ0ItREY3MS02N0M2NTg1QjBFMjguaHRtbCIsbnVsbCxbWzgsImVza1dYU0ZIc1FnIl0sWzksImVuLVVTIl0sWzE4LCJbW1swXV1dIl0sWzE5LCIyIl0sWzE3LCJbMF0iXV1d HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjsvxYDsb__THUaY0R_4hEJClqTq60nsvnmUsuOvXD9kOk5IONGUjuMUywcV68vM4JfFFmhDfqQjgYGYy9qXp0lqbiDjviQGHzn9DydUL0BLMh061MKtRuQpvktto14K7ShTxrR3v1cwsbFi1AVSPCfvpGbdUVUkHKLuVvrloI2UxoOver-GnBpXgTvkNqRXXVOoBo0WE48_5KH18AIPRSHbAXOjb6NuVsGd4KVVDJJ2skKKpLubqXna2puUz47ca6zHerZzabTjmUgTa1rtyR7qjbQD7-Eeuii8SVp7W-MRsFUW8Zl_4IcF_QlJMPeh_MIvWEsZaprLhHnpTO2csXiP_W2zQR2wY_LwWepKdoHSyItVcowtLN-0896TATHux5z_C6DJacdT6gASN0yA8BUfIKZT-L0Pd5aDI8DV_ePzinLtws5F_OIhKxz8PZr4s5EgA3ksBnn38wNOnDzY-rcPr2rmJB5n7WLTB9yBfCwP4JM_Y65RsIw1gFj6TEfytjO3qFw8egQX0c1khOZz64rn31kfsQDSUJjdgGFQEfMehRMvmjhQnZiQQ92fbwYP-YBhT365muwcPr8KzB9n-_4gHUyCBG4vQHu4cGOipcB6o7favllQr12hcBzJlRxtg-iIiBc0jEUeNPFzfpGbNdTnuFoDq0eOPoosAWuD0LjeJ_TFQDsTqxShBEVeOpqqVGnUVfVVOh0KgY9315o7HIxUGx2UAwyvRtySE8jSmq5cAFrlte2ES5zErW2t1AgeQC2BS4zspuAxp43AkLKSheTNcgIA04JQzA94pYp481jWtr4-0GfokeRjuZbU5fFb49SG0HnM-wYDvr6DwadnOwuJP1ZSB5IbCuHFoAlD62alklOiy0g-jakLku9qP1bmH739Qn8IBGL71mBi1Ej3SYyAJjcBRn3vm2QHzdP4mGX-nGJISEPADY3v7NlNIPYeYXVOm5MUAdhkb00u-FIfFVeKz0XxbjRrAsEqDC06YRq7UTB96mqI3fc09KDVVigNkHJFOu4oRoErRcpBDenZlsWv_VCR4qTGBRq4oIq3idJoF3r2d6VzXrMPJP3R6FP3W3Ew1hte9eCuyWBRxv1ERwU3FDlirEhByh7AuBIAhbA9KMnaNrOmG4mWeLjYHhzv0IMx32QQPG7PeAHxfaqukeq9VgrCEyUp98BBbOFZAa8ZRvSQpO_rM3d1yl-SZA5cgRNYp28i0RYHgztcjjbehTEXsj_cs-9OSBsxd8xnYGnJQZUozk7Ydl3kjaSrdqvtidfyWYWyLEP9Kp1QEEsBGFqRzqzci7H-VGLxQJ7NpEwTrrQphT2OGwMiEw4HiHPE8rRnr0vOyz09HoIVwoUHMlc6hy2dn6g4y4mW9DshDds6evQ5re_ow1LUk-dxcQA&sai=AMfl-YTZxJ2Gyk7hXc2lVbJspSVACpbIcM50ZEG5oMSFhSivhYpOLlmzR-uy5NuYfU4MeGPzF7yMPB0j28uBTnlOvPs9z90FXKtU8WQ2zwNtwICIebA49c5qNgvEhlkinfK68tIE_hHOGRHXdSQW7wY8r2P-WWIuDA-KnJj76BsfUd4pODrx3EXBN-bgO_36K0CX8PNcH4g6ynlm0v2vpVpK3Vk_Ciy3SplHRi8KQrQRo-K4UK2GDBsq6EJJ3SyqhhCEL775xS-zCaEUfFmNsM2LzLmYce1rmLpSTwN1c43aE4zKg_HIsSNqKcAx-6scL-xh036ylBYb0-km77qnXgajBhEOBDsNMznDso9-bu23P3jT4FTGmGN0F7kGLKp4NP_E58WBMGFmduqgKRl7EZ5uCjf85XPOPs6XKsh2&sig=Cg0ArKJSzIvdSSM8R1wLEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=4&cbvp=2&dett=2&cstd=1&cisv=r20241001.86318&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmSulyuPz4s2VMwaw06B9jFvCD3Ea4zvFVN_jiFcqjgfjyvBrnsuuio5aJjQ9PpNZwTI7nE9QdVgHFylTAP5InkPiSOlbvVM-5Q HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /dbm/ad?dbm_c=AKAmf-BmwgLlXvLBDhkYHic6fuX49VdJ25tE_0myFee4RzIpazsSanc2sDjik01ZLPn36OhmSEWoGfGPz5SXZjf1xOgwqRv4oSvkenGiaEs91mTI-JWahTZGmKo_5Nu3puY7PuQQfNWMus2BDvFwBJs_XsqYHj3OkKx8mqSukz_RaZMUZM3fKt9xy2PP_tIheV93WR_VSb5wAOnhQbaycBDCbSlTgOR-esdxTnOh5-5Xx3mbVhao-kg&cry=1&dbm_d=AKAmf-Ctkfiisw4sUKcjWsLWg6bu1FonrD_Mrehk92SJHpzkPzXReqaMsEEEjWicDM03Zn_2Wf9BGLrKSJASO3hhy6pt7YFa5IQULRtat2VuW0hhBPMqk5NcbqW9y5kQCNZrDbSDVSB7OB35RuZUMf6LC3qM9xmJTV8Fuq_TEdx-19AENel1TSyxkg1glhQBMV89eX202AQar3P63zQt2Km56Zb24BgJSNEgKIQJnBNlQWCl1xtQTM0LWhgK0Ljkcjykqj-7P0UZ5tQPPeyh8ZfEY-QZQrpXAsljhHHemCDsvKSyVJLTj1LhSr8kBGfsE4uqWGL8T5eMjmL_ISvFHy0iuhuHON-8q9qBDvu3RxwngqWA_THWQN8Mx2SWx42vTnBAQKX1OSIRSC4rSycMXmkmEQGcd8rU_HWFGsBtaTzG__G8vDFhVOR1auBW31T7Ozkexq2V83hBFUf06JksnSITmSPWt9EIs_aPFXwvkirKukZw3B8s57wqYYSbvxlV3m6z7Venw8J2MbYCwoySSQihoQ2TG11k8WADxGUcWVpZHRD0ig78UvZmEGbREYz_CEimdL8OafEikmJprO1FD6Wq8FNAe8-7sIw7PFyZrGallNX2gPNqvGWAnowVOQ1-j-c17-X2yPX2ZMQDXdueKDbcXd309WBwLZxX6oBI28u0i6o9_2Q0Z7NqdNfuiSuMHeQGmxSCcEff21Y6J4mhbpqJvGvJaZkiH8OgNOlORjasj2yIwDZban8I1l5IKFrhJt98OI-L3Qh2R9m4deu7r8pXMX_-D9izQV4dxQoXCH4V27SOz9wPcL0AbtcFHBjZff9wP4DHbFj4mw3EyGYfVbU7sWSNjjl7hAAYbfplbOrbWg1tsYHn2hwwcGLK4rndm3KY6Qms2M7cw7gpgBjgxezy2sAddP_snFQ629jqygLOSyivKCOBbHeyRHQSzaOa8TnO0_kA5AV0ESmnsyEws9RVfa254xEVF-TcE0LwXX0qu-Z82PsDjf25-g5zv28ond5nJPq7kDGYXkz4MRwvayh7lxezcH0IejNdSlyZ-oT6qUOJNf1Fk8xMySZj5UkaK9t9mUMxQ3Hxsj7TvKnwd7ykJJddAe_4Fgj2woslc0QYe2nE0tzjl6XdT5yENmmWFMmcFYm0OK-9S8i1ow6VIsQGmV0d5LhnldQHAcU_9w4GnEHUpProslXx3NRAKfoXvUGKngThQq6fVKaL8Z9JhROzbgvVmAxMkl9wAVxG0GEhY4rwJpSpVcWsUwg3-G21g_PYWJow8EjqK9hAxKWOz6x8UaT4CU4Ugri6XtfwMNucL8LVegMkgq3ALOMyjXWi6qboviCPqk9kd1YXXoVrkqXxAs8woRGQvPh7vUJCzEewQpOrxpJkJ0UFPmRwZXRLMZFA94AK44MMI07cRedaSZkNyFQYEuLcdMjlE70u0TLaXltuQezYRMdiN5MH2bsnoIvq7fDQJuL-xr2jkFO2z2TxKGGW8uQ_9Hu12z_S9COMJNFhHryNaDEdM1iJq_QcI5MMuCkFz9zR6a3fzeHYQiciDvIIbE74OEmXzhWs1655tp3WNlvSMcK22PTQKzGuvuJk9C4HrFhqAljUWZ_jL-nCVJrIaRcdPiGXUfHz-qTXS2AU5iy12p_gCQFM_CziKOVmLaOpfmITGNA5efmPeZWhNW7cwoAr3Umh9cIO4Lmu5gWr0p8oWVoHZWy0c52wi1bswa_6u8b5WNxPdmcT1dfh72KZa5BCul-VAsbJ74W8AgthMMi5stZ5UflEiMQmaDyIudTocqKSo0IOROF7EWvCk7j1_-mbnQI6iQASrJVpK_O0pozZbo93wvmGkONMI1nQKq0ZvJm30RqG33RJSkrr60yAi4dJSaEZKVDH4EusvWooFzh8cZ44nglsQ3RM8c65_LhzWfPz8EFDk3HhdDl5pITxQ0COSXhIqus6M47GVEFE728ePpylgqL5875kTp8-hW_ut7w603H1wgmcPssvagFWWzLlQS-5EFBuwA7cjknL5hqTvvv6tybAIBGyilaWWoNQ-jWep6IlmhDBpK1yorJ38Ndo7iqQjWcoEvX7kjsMHbvYXpbbgmCOB5ld-4TMM5sG8D_BYp0rZLboADKUrWqIKmaBAG7ZcjEm-i_x7ANSYxUsaun4ULE0Ize7kyxEyqj6kZtfGEEbzTZjSz8HBaFuSWPFDHjK6Yjn5RlYeClgeoH6JCshr7DXo_5AQYEWZ-0MGwMvT8wpb3-GUMFLlO3u-eqHkxxYFOl67Wov67q1mwBMyg6b27Nu1qvYAcGPdaBqb6-n-5izwo0epC86uIYqsQEC7mO13ZfGcYubuzOSlyBP-Frbn-xyCvDmD0lBp_5tOhmsPUzM-zP81fpm3xwhLIqFYvY3mKxhba7Jzuym3ZMwe6J1thCHSAcguRTgRZ0qJzRT1VVmr_rdx5EI1ijv8HJbZcH1DUg6F1cX723wW0x71rCr0dOaz0nxaL2h4EOJePq0jI84dT4F1lKFCP-pQ9fzu9mstlvt8ewg_Oh6pXSuGZHmQVKo8a-owFWWQhmxZ3DDrS9ULrzIu6z5U1IfgNUL9Civvecv0QXW3N82Zrvu-HAdQ1oZU2RvqJnJUv41UcbkmfQF8DKLiqtsm1QIZboNqAhLkoyfMwh81EAexeL3B7nEHbGuJMwSjEdIta6rWdSzL-5djcol8FmvxCdViFh6cv
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjssczs0X-KB6qYP2KlivIqRJ99DIQD1UwVoZBOQNyJSMchHZUm_LOkMvlEHlRAmsBrk4MPryuOx_x2GbHD2CoVZp5GKZDonXWYm3MoumJZlTzzJZYohLFLUV8nh9uJATzOfH9kc-uRMjzLf5WqB3mexrRpd0QSPgLU9fgZ21vsoWRYG4pegpnLPHaYnD6M5cE4Vc13QMOq4SVWXJS15lUH2Sa3sAIs7dZ7eNS96hHVLPoiTLGLyMeMwg2yc8co__iXwlCz77ocS_v3e2EZ7FYrQqZTOrZRUhHVbCxOm371lrOVR1A0xiX9heWbeypHLLTJOJmXJbcsFT_GFafBzi1rwkV7Z3qHceQh9BDMWYne68NHJ-bhEN-2Zn-NkBsfYC-TtALOEfWVQe-x0DIRw1CPuRtOoVFO9qxsVC5fr0OhLMrh2yjzQ4Zcp6eOk9r3W7o_vX7pQax5cDy4nj2Mt_32saH3c4s9Lz14k6_bqvI_knfE_rBQ-ORDazhFho5It82kMCwmx4xGvgSpT9fespgqObJhhDO7pXcdeAOJnXX-_y8sbH3Gcv0yZEsoGsdcgozYCEp8ayp86y2fLBuUjsfvgqygMYJqdXaHRmoQpUEeWrzeY4myyDoBdI-dBb8K2FhclGqEMCcTGe-lImKrxna6lcmVDXdRpGIBReN6AgsN5wmrC7Z8ouHm-iK3m-u08UXsCWHhysG09iPtX7NwhCWFj7AzO4M1BHGa58ReaBJ_PSZiGdgMeVTTIGVo5l8cF3JJXaOy0QnDT-wPNqdvZAvMyeYpGknIM4nys0dfl1LJwiuvaFLc-vgkIzNyLOpx-Z8Ew_F6q65gb8ywcVlogTQj95gPFjPg-ILTcc7AfdaOzvSrVZnNJw5_iMSaeqSfeJFuIJ9qKygeb1PxEBskwkcNDFyWw3gRV8_YlK6pkz2mCpkGuhM0DEIogpAL71sxeWdNVYksNkBoGlBXLtq99W2wheuWlArL6hjOy6NMXD7CiH66H6qAEH_b8SU18jyCawVQsyhQHgQtaJFTVa1NaZCgm6bzhtj0Cw_iadx7Pzp8RK6KCw7LZWGqjBo5XkK6BTEZFS5rj7M5qU26z47A3fZmLMW25TMAM7lF1xqmQwXvDV-O7oBV_id1QMLdrkw6tiW4uCAEHvhJP0PbA0oz2P9RgTEBoBLWJ14cD3vfrGawg6BRqAhNfG6RxAYdD0FE_aX_vBnSr8XltGF1fLvJrHJy26n3hCqyGiBSE-3CcTvEebZ5tkNr15PQPY56NmbLXQhL5KMFKOzbRHRM-O2A0MX4iJR0kcsNswlav8NPIKL6VOY8pdk4N5Gt7UYqY46GBh59iFvr1-Mj5iHr22EyPQqgaS4Mdb4EvR5IidBDlnjTJkkYdNgZo2jXb2olGXPQ&sai=AMfl-YQuGsdX2J4rx848wRgIc57LJSFq768n9kCajIqaG7jX8XTfUvgkjIG5TqrWvzPJ2RaBrCZ0T5fvOOklbFDdPwtIfdE44pkdsmSUH8sGVS6bfVIpbst11pDEHAskJYkYRlqDusUOSZ6Tknjl7ZyjcPk8RApyj9X9usScvoBMdAKOY8PAzzAuYEisVcqiUVSyyZp5cZIQyXA1IAylAamCAeMib3P2mwXh118Ht9_YzIEdMqn48cvsGtAWzeNm3ByGyJFNrEGum7FrG3XFcnjxuOMse0M6fJyl7wG5QU4Wy9nvJO5fl2IlJXvU8XWzXdl3LnrFG76-0CPfBZXmG5CdWD6JkiVYKfzaqCHhu5AvYbZa7121CgcaJe_FDGQAAU3OeC0v1hFClTRQVR03hJmw6Fr66r7CZ7C4U09t&sig=Cg0ArKJSzFCam7cFjlUvEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9maXZlcnIuY29t&pr=missingexchangepricemacro&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=3&cbvp=2&dett=2&cstd=0&cisv=r20241001.37687&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /dcm/dcmads.js HTTP/1.1Host: www.googletagservices.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stickyxchange_dbm&google_hm=NWEyMmVhYzRhZTcxY2MwZjBiMzU1YzQ5ODYzZDZkNQ==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=D463160B91F546D383A1AF8385A1B33A&google_push=AXcoOmShV-Jtc0RSd1rbHkgI_Eyj-B0DmnvvLixLb2rNvHzkMf38HLb3pMjATPv7RlVFZyU8Y1Mcjw32FWGNm0ehaP1l1kshMV69yV9W HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=oath_dbm&google_hm=eS11UWJiX0FSRTJ1SGUwTHVCQ0dkY294Z0hGZ1FtM3h1bn5B&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /sync?UIGL=CAESEIIccipiv8K1-sAAbtkuC5Q&google_cver=1&gdpr=0 HTTP/1.1Host: partners.tremorhub.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=teadstv_dbm&google_hm=ZWVlZjQxZTItYjIzYy00MTFmLTljNjQtNzk3ZDNkYzAzNzQy HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmS_qwRyX3whO3xQLvSc2JgBrDnO1X6pF86whMgAw7VSZjEYKco6wzHdQ5JwZcDLi1z2zEFLH-9drso1Sc7wUKmGo6svitaLdac HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /ul_cb/sync?ssp=bidswitch&bidswitch_ssp_id=google&bsw_custom_parameter=286fbcaf-c685-43ee-8bde-74ddd673711e HTTP/1.1Host: pool.admedo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=6a9b00ba-4e5d-4254-abd4-416f7b5c6c1d; c=1728042088; tuuid_lu=1728042088
Source: global traffic	HTTP traffic detected: GET /rules/rule700600v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /ddm/activity/attribution_src_register;crd=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
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b&google_hm=KG-8r8aFQ-6L3nTd1nNxHg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_ula=5153224&google_hm=-z20fGN5LACZeLZYrDY8vS4U4B8dNNgPSRxJ0GTSSlI&pi=adx&tdc=ams&pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmSMzdJch9f5yspzBreHk7MkJGMkYmQ7l_CBrHUxRVaoffKY4RNI2u5YLrO2puwm_HkGYBZSRSnlykknHeXLElmJuD0t50Kx0HxNIQ&tc=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmTyFCDwwx6UNnlLcmSN88RNjshcmNS5SmS2VOGMiQ0qsij0fWvXW6TkZOtmWF9T9iQmuHoMbQj8LlPgnZacn2DENsWg7qpOZYs HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=openx&google_hm=NDY2MmIzMjgtOWQ1MC0yZWVkLWVjNzQtNGI3OTA4OWRhNzhm HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /rules/rule703150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxXIoFUECk4FNvCkloFhmBS2oxXCceKSam1esjWsJ0AtzzJXf6WEQfZj9CpxO3jSIRzerEvGRgArgeB-6xT1bWrHGL2lbouxguHuQLmvlFOUyN6QS-KH7VPj6WNJ4ksUBlOXuyq2x_QC8xWGD-qYu-Qksm8uU2ncCyX5VHLlAeFhAacxIZGPoRiQo0aG/__300x250px./writelayerad._468x80./ads/proximic./ad12. HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule703951v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703950v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /v1/api/sync/AdxPixel?google_gid=CAESEAmTNgM_-pcFL5ffd_dk1kc&google_cver=1&google_push=AXcoOmQ9LWzOZX_W7ZE8MEuN6TtpvUxlswkb4ZYnGUx6uHdHBQtMz2EZHVoYNfztAT4ZT3vkqDhrk-8T4eqsTAD75Ut35hK3ikYD7g HTTP/1.1Host: tr.blismedia.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: b=66FFD4661E49E037747341E4BLIS
Source: global traffic	HTTP traffic detected: GET /gp_match?google_gid=CAESEFi9PqLuqTCfmE2lDk5eZnw&google_cver=1&google_push=AXcoOmSdWHq4-e5JyuA-tIqiieYbVsQelGc07_N0LXqw6gPc5m_Q3M_32aCfbB6iWUy_u2v8p8v2B9jmEPWMukD8RaQ4pG1We68zaaA HTTP/1.1Host: um.simpli.fiConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: suid=32B60805DE8843869CBAC4833A2F49DB
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmTAclBd83KAvnaABRyrRCf7yt7MOk-96fMjSy57xseyO8ttKEsYmU6H_0tsjTuI3BaYTkkxRTzWz_-2Ki9ETn3rAqtToDamDQs&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: dis.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /cm-notify?pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmQM0a1_7HN4Aa2vmAopd9Qoj-gK-nSr9daJS2E11Gzxb00FrltUC4NxWKD_CvkFqetecjTmapofswe8yPzUovSWnlGf14SZi62B HTTP/1.1Host: creativecdn.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: g=1D6xnsGMXasXsu6Ji6uj_1728042086362; ts=1728042086
Source: global traffic	HTTP traffic detected: GET /sync?ssp=google&google_gid=CAESEARoOq1I9E9A1tGLSs3wVGM&google_cver=1&google_push=AXcoOmT9EAPl8E48z0eEQF1Gw4M_8iQBOO4CuTrZ6xalCQ4vHxvtzD3c7FOKiAx6UAozNPvJ76sC3ENu9H-tNK5pXhBkeUF-wHPFqQ HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=4a7a769d-5c1b-4c0b-8955-8bf06fc08476; c=1728042087; tuuid_lu=1728042088; google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ
Source: global traffic	HTTP traffic detected: GET /api/adx/cm/pixel?google_gid=CAESEPv97O-fbD076H-t7qpclug&google_cver=1&google_push=AXcoOmTkkplSMNuUbwG3x2NG_dbKePuR3T5dWVXLXR_LDUR7zhwNuwEjGQXutwym9n4q2yYewtOiyWndix7PHun4T90HitF2kpvTEpV8 HTTP/1.1Host: www.temu.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /dcm/impl_v102.js HTTP/1.1Host: www.googletagservices.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ddm/adj/N5949.4624185PMPRECISION-DV360/B32374903.402688320;dc_ver=102.299;dc_eid=40004000;sz=728x90;u_sd=1;gdpr=0;nel=1;dsp_bidurl_0_=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html;dsp_campaignid_0_=1018246531;dsp_chanid_0_=1;dsp_id_0_=3;dsp_impid_0_=v4~~ABAjH0i9hZc-8y6MO2Hpn_Nm9X38;dsp_placementid_0_=21626961814;dsp_publisherid_0_=pub-1673399160710718;dc_adk=2515327493;ord=i4o504;click=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCaPy8YdT_ZtWwGfzEvPIP4dmvsAqsuKLgeaDP2t-oE5rT0_rHPBABIOfA1G1gyQagAYa8z90pyAEJqAMByAObBKoE9wFP0EWgCNsR6eleUlqz_k0VM78gpeNEj7AfLw9XXGL0OoLRM6fWevKyfAlDNSEZeV5b8kE6sM_GlweNK3opoB6Cu6b8pwmKngOydkqegOfK_w0H8bJfl7GrSjZxU00R8KaD5sh6m16CXcfSLS_m5FJTJkSFVAoyp0oDU5--_9CFxM6FWM9Y1t4BSfdWSFl5kawLy0IxdpSGMVPXlVYyfNGDRHmMOtgPgOnT4WaD_7iO8l9Pk9cvb4DxHBIuGJ5bpmIGFlRCRjB-mY6VXLkK1WwBu5A8U6lm_qeNkYUxOSFNZagaXrpOOR0tVb1yvSE_lrHhmX74H4cJwASu8u2p-gTgBAOIBZb_xMhQkAYBoAZNgAeG9J-9BKgH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WNfuqbPS9IgDgAoBmAsByAsBgAwBqg0CVVOwE_GDtRnYEw3YFAHQFQH4FgGAFwGyFwIYArIYCRICu08YTSIBAA%26ae%3D1%26num%3D1%26cid%3DCAQSOwDpaXnfkS-bbuqP9x9QQyyOD2GRAoZdyeO5F5pGbPV0L8uEDBKTZo5XfOkU--scFfZXG7ofltUbClvTGAE%26sig%3DAOD64_0Vc8reaXw4shiVFJfB1e3wd0kKcQ%26client%3Dca-pub-1673399160710718%26dbm_c%3DAKAmf-CjBKcSzP2EhMT-P8pZ4DJZ5XvidxAh4dJvdiP-lgN2U6sLXGJGEcDdTb3jTwWxwc0a_IMOhDpM88SrdF0P9OvU_BIbBYRbrWrerzm-8n8vG34ylYOP1VTFO2CkrqyphG2PeJqNPzKC_Kgghbdhjps6s4-b1XIGqtQWsuxoaFkH_YeCDcDpRAfuXL6izGfZEc5c9wWoO1lJqnTo3RBMKnWeKMGkq1V1iyWHvdnraDZN4gTPVnQ%26cry%3D1%26dbm_d%3DAKAmf-CigrglGbo65n8NWkBJpRAbuqXTttSR5nfAqVDMArQA9qxRGIwYWaeDuVGjVgoxNVjxIGorjBApmk8yq82iuRh0ezadBosHp_He9Cm9dJui78YQuebymQxja_69Lajkwb5KoWtcq6hzdYMN67sl8WoFBNQpHAJQXowFJf9W-6T8NkJTvmkOZvTWyNfWsDmXIZXIcpdnOKAqrpbOAbsnhSjVB4NRsUPmFvRl9Gfym6QolBvimVl7eniMSZ2VPmSwalMwrcggv_5osgtN-Ehr9tQoqybAfyEiHY1EbQxoCnPo3wLi5GXkgixodBTrS3B1NAbZ-6yiWQfZav-TdvuBNh-lSd4C6IAsBQV3JmciWYeY864epNMb05Jx3ABnu1qrbIo5aFixO3FBzJKvPOHf_b6wRKPop19qo2sIBLnpgADkJkjE0e_EUJSwj4yM8VpP7t-x5VYt76dCtLxrBW-hJLzVyOd6nDXPDj9VQed0z8hW81_pALV4xYaT6lBu-GXyL2Y5xFo7hrVqrpqj7Hs9vKHS7WeUMyBM-PkMrXBYsVWiqfJNTdFFgbSbraXq7rzJrOFEIYaLBriwO16B61e2q1CY9a8_QI0JamL5dUJOqgSLTzYdViBu6Bp704NuWb1ddpbTw9lvFtvAsCByuQKhMypPx8hp-epMW_y7Lpby8q4ck26Qfyg%26adurl%3D;uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.;dc_rfl=2,https%3A%2F%2Fwww.haoqq.com%2F$0;xdt=1;dc_omid_p=Google2;dc_sdk_apis=7;crlt=Fc(KI5OQPr;cmpl=8;gcsr=a;stc=1;asnm=1;chaa=1;sttr=1198;prcl=s HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWe
Source: global traffic	HTTP traffic detected: GET /track/cmf/google?google_gid=CAESEDMpI2rSDFhjnqZvZHU1y7E&google_cver=1&google_push=AXcoOmR11UtxP_Ii637T9zKReutj2apnPx_WJF0oR9Zyaxhm5KL_Jouop6HQU1PHA5OC-ZWLUGj4Sjy_JRbrXm-aS9qTfkX793Y7_a4 HTTP/1.1Host: match.adsrvr.orgConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: TDID=e335e2e1-b80f-4249-b64b-19f1016b75ba; TDCPM=CAESFQoGZ29vZ2xlEgsI6p-uuvCcsj0QBRgFIAEoAjILCPqph96GnbI9EAU4AQ..
Source: global traffic	HTTP traffic detected: GET /sync?UIGL=CAESEIIccipiv8K1-sAAbtkuC5Q&google_cver=1&gdpr=0 HTTP/1.1Host: partners.tremorhub.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=stickyxchange_dbm&google_hm=NWEyMmVhYzRhZTcxY2MwZjBiMzU1YzQ5ODYzZDZkNQ==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=oath_dbm&google_hm=eS11UWJiX0FSRTJ1SGUwTHVCQ0dkY294Z0hGZ1FtM3h1bn5B&gdpr=0 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=FF57ED73B11F42F1BF9D7A824A85EB0E&google_push=AXcoOmQnNLICDQEa3vo6G_jaTp0NK-2q-MGnmoNPYU3Aa2sIj7Rxn0cU26cd4a8b_IFvGN63TwpI48Ce2Jhn1M-z_WPNWRTnZv5PfbI HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmSG2y2CKSsJHjNe49B23UO6-5g3bFSL2LYXX_GQWIMBaewczfO2x8EyvksJW-qUf0IyZLinmX_ctJGlnpQh0UG90kQ-Di98fpQn HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVF1WVknfajFSvSyNXrJnzl2B-mha6FQQi4nnoFF1mWNowc8MGoU1E2B_3c4NWn5J87On0Jwr0QBJVJYoVMiY9AtIpKcrMGQ5NF25vYOWxztazCq03EhKygdfL9bAylFwqTCk67uA==?fccs=W1siQUtzUm9sX1UzYkRuRTllck5UaXR1SkNIdUZqZjhURXdPTnVzSDcxczU5TlVqOXdMeHA3UUFNX1lSM2pCODJHLUR6SjFDYnhUekUzb1hqbkpuM2tmQjdsVzFXck9PSmpodXNWNGpvalBNT3oxaXNhQWN1Szk0bTQxdkktcGdTQ2NtMHhYMHplcTJvRDYySlhJN1lsRXh5NS1xbm9NckF6ZU93PT0iXSxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsWzE3MjgwNDIwODcsOTY1MDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbNyw5LDZdLG51bGwsMixudWxsLCJlbi1HQiIsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLDFdLCJodHRwczovL3d3dy5oYW9xcS5jb20vbmV3cy9pLzNCOUM4M0UwLTU5QkEtNkVDQi1ERjcxLTY3QzY1ODVCMEUyOC5odG1sIixudWxsLFtbOCwiZXNrV1hTRkhzUWciXSxbOSwiZW4tVVMiXSxbMTgsIltbWzBdXV0iXSxbMTksIjIiXSxbMTcsIlswXSJdXV0 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://www.haoqq.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule702851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /sync?dsp_id=23&expires=14&user_id=6a9b00ba-4e5d-4254-abd4-416f7b5c6c1d&user_group=1&ssp=google&bsw_param=286fbcaf-c685-43ee-8bde-74ddd673711e HTTP/1.1Host: x.bidswitch.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: tuuid=4a7a769d-5c1b-4c0b-8955-8bf06fc08476; c=1728042087; tuuid_lu=1728042088; google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmTs1_ll0D_RCewYKHbjcou2C-D9XigwEMKV_u-aZD-O41ML3SE9fdZH5w_1zibbiRxTdKUAFgAe8aWsnlS_ljhlXIAw66tm7YJT HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=ta&google_hm=uEvEQBppQdMHeu7YK221HQ&google_push=AXcoOmS_qwRyX3whO3xQLvSc2JgBrDnO1X6pF86whMgAw7VSZjEYKco6wzHdQ5JwZcDLi1z2zEFLH-9drso1Sc7wUKmGo6svitaLdac HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=32B60805DE8843869CBAC4833A2F49DB&google_push=AXcoOmRuShbATQDatQq4sJWhdwSrBaGF1h8JWd189LN0U19evDjkxqz6PEo6NN4Cmk1GaEawPQp5AY2xig2e6DaJALkaVLbrCocgGg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFCVjVrN05fNmtBQUJWQVNGSWo2UQ&google_push=AXcoOmRbtMccDxJg2BjT3wnvT1aepLpjWQ_QuS-yRl_uN-efUYE_YqPR6ef0-7Yh5T8BxoQ4rpvAjuN3vlHpI_ROEJWbBvpxn8ySqG3c&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /rules/rule701401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700000v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmTAclBd83KAvnaABRyrRCf7yt7MOk-96fMjSy57xseyO8ttKEsYmU6H_0tsjTuI3BaYTkkxRTzWz_-2Ki9ETn3rAqtToDamDQs&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700001v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQxuYB9T0MrxCVyup9i4f7mTKhXqB8yZiF1igUAyjU3WOayS_I3g-GE5uhNIiPgfC4rdzvOOtEjhP0gBfGuokmNO7MCYohrXU5b&google_hm=KG-8r8aFQ-6L3nTd1nNxHg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /879366/express_html_inpage_rendering_lib_200_280.js HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://googleads.g.doubleclick.netsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFCMXlVN05fNmtBQUJlN3dNeFYyZw&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFFTlQwN05fNmtBQUJXeDRZMEJRUQ&google_push=AXcoOmT4o063xBBQDu0z4njujpW3iMXyySg6RrAn0VBLP2vry8QG1govK7gCAyoaJNfaM1IIP-17W1aBlEfY617IxoiLn9u3SbkN4a0&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /rules/rule701400v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_ula=5153224&google_hm=-z20fGN5LACZeLZYrDY8vS4U4B8dNNgPSRxJ0GTSSlI&pi=adx&tdc=ams&pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmSMzdJch9f5yspzBreHk7MkJGMkYmQ7l_CBrHUxRVaoffKY4RNI2u5YLrO2puwm_HkGYBZSRSnlykknHeXLElmJuD0t50Kx0HxNIQ&tc=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /dis/usersync.aspx?r=4&p=14&cp=google&cu=1&url=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dcjp%26google_hm%3D%40%40CRITEO_USERID%40%40%26google_push%3DAXcoOmTAclBd83KAvnaABRyrRCf7yt7MOk-96fMjSy57xseyO8ttKEsYmU6H_0tsjTuI3BaYTkkxRTzWz_-2Ki9ETn3rAqtToDamDQs&google_gid=CAESEJqj2-HQrekGoW8FECk1TfQ&google_cver=1 HTTP/1.1Host: widget.us.criteo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rjss/st/2197957/82023115/skeleton.js?bundleId=${BUNDLE_ID}&ias_dspID=3&ias_campId=1018246531&ias_pubId=pub-1673399160710718&ias_chanId=1&ias_placementId=21626961814&bidurl=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html&ias_dealId=&ias_xappb=&adsafe_par&ias_impId=v4~~ABAjH0i9hZc-8y6MO2Hpn_Nm9X38 HTTP/1.1Host: fw.adsafeprotected.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /ddm/adj/N5949.4624185PMPRECISION-DV360/B32374903.402688320;dc_ver=102.299;dc_eid=40004000;sz=728x90;u_sd=1;gdpr=0;nel=1;dsp_bidurl_0_=https%3A%2F%2Fwww.haoqq.com%2Fnews%2Fi%2F3B9C83E0-59BA-6ECB-DF71-67C6585B0E28.html;dsp_campaignid_0_=1018246531;dsp_chanid_0_=1;dsp_id_0_=3;dsp_impid_0_=v4~~ABAjH0i9hZc-8y6MO2Hpn_Nm9X38;dsp_placementid_0_=21626961814;dsp_publisherid_0_=pub-1673399160710718;dc_adk=2515327493;ord=i4o504;click=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCaPy8YdT_ZtWwGfzEvPIP4dmvsAqsuKLgeaDP2t-oE5rT0_rHPBABIOfA1G1gyQagAYa8z90pyAEJqAMByAObBKoE9wFP0EWgCNsR6eleUlqz_k0VM78gpeNEj7AfLw9XXGL0OoLRM6fWevKyfAlDNSEZeV5b8kE6sM_GlweNK3opoB6Cu6b8pwmKngOydkqegOfK_w0H8bJfl7GrSjZxU00R8KaD5sh6m16CXcfSLS_m5FJTJkSFVAoyp0oDU5--_9CFxM6FWM9Y1t4BSfdWSFl5kawLy0IxdpSGMVPXlVYyfNGDRHmMOtgPgOnT4WaD_7iO8l9Pk9cvb4DxHBIuGJ5bpmIGFlRCRjB-mY6VXLkK1WwBu5A8U6lm_qeNkYUxOSFNZagaXrpOOR0tVb1yvSE_lrHhmX74H4cJwASu8u2p-gTgBAOIBZb_xMhQkAYBoAZNgAeG9J-9BKgH1ckbqAfZtrECqAemvhuoB47OG6gHk9gbqAfw4BuoB-6WsQKoB_6esQKoB6--sQKoB5oGqAfz0RuoB5bYG6gHqpuxAqgHg62xAqgH4L2xAqgH_56xAqgH35-xAqgH-MKxAqgH-8KxAtgHANIIJgiAYRABGB8yAooCOguAQIDAgICAoKiAAki9_cE6WNfuqbPS9IgDgAoBmAsByAsBgAwBqg0CVVOwE_GDtRnYEw3YFAHQFQH4FgGAFwGyFwIYArIYCRICu08YTSIBAA%26ae%3D1%26num%3D1%26cid%3DCAQSOwDpaXnfkS-bbuqP9x9QQyyOD2GRAoZdyeO5F5pGbPV0L8uEDBKTZo5XfOkU--scFfZXG7ofltUbClvTGAE%26sig%3DAOD64_0Vc8reaXw4shiVFJfB1e3wd0kKcQ%26client%3Dca-pub-1673399160710718%26dbm_c%3DAKAmf-CjBKcSzP2EhMT-P8pZ4DJZ5XvidxAh4dJvdiP-lgN2U6sLXGJGEcDdTb3jTwWxwc0a_IMOhDpM88SrdF0P9OvU_BIbBYRbrWrerzm-8n8vG34ylYOP1VTFO2CkrqyphG2PeJqNPzKC_Kgghbdhjps6s4-b1XIGqtQWsuxoaFkH_YeCDcDpRAfuXL6izGfZEc5c9wWoO1lJqnTo3RBMKnWeKMGkq1V1iyWHvdnraDZN4gTPVnQ%26cry%3D1%26dbm_d%3DAKAmf-CigrglGbo65n8NWkBJpRAbuqXTttSR5nfAqVDMArQA9qxRGIwYWaeDuVGjVgoxNVjxIGorjBApmk8yq82iuRh0ezadBosHp_He9Cm9dJui78YQuebymQxja_69Lajkwb5KoWtcq6hzdYMN67sl8WoFBNQpHAJQXowFJf9W-6T8NkJTvmkOZvTWyNfWsDmXIZXIcpdnOKAqrpbOAbsnhSjVB4NRsUPmFvRl9Gfym6QolBvimVl7eniMSZ2VPmSwalMwrcggv_5osgtN-Ehr9tQoqybAfyEiHY1EbQxoCnPo3wLi5GXkgixodBTrS3B1NAbZ-6yiWQfZav-TdvuBNh-lSd4C6IAsBQV3JmciWYeY864epNMb05Jx3ABnu1qrbIo5aFixO3FBzJKvPOHf_b6wRKPop19qo2sIBLnpgADkJkjE0e_EUJSwj4yM8VpP7t-x5VYt76dCtLxrBW-hJLzVyOd6nDXPDj9VQed0z8hW81_pALV4xYaT6lBu-GXyL2Y5xFo7hrVqrpqj7Hs9vKHS7WeUMyBM-PkMrXBYsVWiqfJNTdFFgbSbraXq7rzJrOFEIYaLBriwO16B61e2q1CY9a8_QI0JamL5dUJOqgSLTzYdViBu6Bp704NuWb1ddpbTw9lvFtvAsCByuQKhMypPx8hp-epMW_y7Lpby8q4ck26Qfyg%26adurl%3D;uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.;dc_rfl=2,https%3A%2F%2Fwww.haoqq.com%2F$0;xdt=1;dc_omid_p=Google2;dc_sdk_apis=7;crlt=Fc(KI5OQPr;cmpl=8;gcsr=a;stc=1;asnm=1;chaa=1;sttr=1198;prcl=s HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQE
Source: global traffic	HTTP traffic detected: GET /rules/rule701951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel/attr?d=AHNF13KZyqIKoftLE_njit3bvfDK5zr4-Qbcbp3ChKE8NLq2bYy2_HgvtCgqtwro7DB5Q6q_Zhps9Bg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmSG2y2CKSsJHjNe49B23UO6-5g3bFSL2LYXX_GQWIMBaewczfO2x8EyvksJW-qUf0IyZLinmX_ctJGlnpQh0UG90kQ-Di98fpQn HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=blismobile&google_push=AXcoOmQ9LWzOZX_W7ZE8MEuN6TtpvUxlswkb4ZYnGUx6uHdHBQtMz2EZHVoYNfztAT4ZT3vkqDhrk-8T4eqsTAD75Ut35hK3ikYD7g&google_hm=hmb_1GYeSeA3dHNB5A&google_redir=https%3A%2F%2Ftr.blismedia.com%2Fv1%2Fredirect%2FAdxPixel%3F%25%25GOOGLE_ERROR_PAIR%25%25%26partner_device_id%3D66FFD4661E49E037747341E4BLIS HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /rules/rule701950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=FF57ED73B11F42F1BF9D7A824A85EB0E&google_push=AXcoOmQnNLICDQEa3vo6G_jaTp0NK-2q-MGnmoNPYU3Aa2sIj7Rxn0cU26cd4a8b_IFvGN63TwpI48Ce2Jhn1M-z_WPNWRTnZv5PfbI HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /f/AGSKWxVF1WVknfajFSvSyNXrJnzl2B-mha6FQQi4nnoFF1mWNowc8MGoU1E2B_3c4NWn5J87On0Jwr0QBJVJYoVMiY9AtIpKcrMGQ5NF25vYOWxztazCq03EhKygdfL9bAylFwqTCk67uA==?fccs=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 HTTP/1.1Host: fundingchoicesmessages.google.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmTs1_ll0D_RCewYKHbjcou2C-D9XigwEMKV_u-aZD-O41ML3SE9fdZH5w_1zibbiRxTdKUAFgAe8aWsnlS_ljhlXIAw66tm7YJT HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=32B60805DE8843869CBAC4833A2F49DB&google_push=AXcoOmRuShbATQDatQq4sJWhdwSrBaGF1h8JWd189LN0U19evDjkxqz6PEo6NN4Cmk1GaEawPQp5AY2xig2e6DaJALkaVLbrCocgGg HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFCVjVrN05fNmtBQUJWQVNGSWo2UQ&google_push=AXcoOmRbtMccDxJg2BjT3wnvT1aepLpjWQ_QuS-yRl_uN-efUYE_YqPR6ef0-7Yh5T8BxoQ4rpvAjuN3vlHpI_ROEJWbBvpxn8ySqG3c&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule701851v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_ula=5153224&google_hm=-z20fGN5LACZeLZYrDY8vS4U4B8dNNgPSRxJ0GTSSlI&pi=adx&tdc=ams&pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmQM0a1_7HN4Aa2vmAopd9Qoj-gK-nSr9daJS2E11Gzxb00FrltUC4NxWKD_CvkFqetecjTmapofswe8yPzUovSWnlGf14SZi62B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmT9EAPl8E48z0eEQF1Gw4M_8iQBOO4CuTrZ6xalCQ4vHxvtzD3c7FOKiAx6UAozNPvJ76sC3ENu9H-tNK5pXhBkeUF-wHPFqQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=32B60805DE8843869CBAC4833A2F49DB&google_push=AXcoOmSdWHq4-e5JyuA-tIqiieYbVsQelGc07_N0LXqw6gPc5m_Q3M_32aCfbB6iWUy_u2v8p8v2B9jmEPWMukD8RaQ4pG1We68zaaA HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /rules/rule703051v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703050v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701850v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmTkkplSMNuUbwG3x2NG_dbKePuR3T5dWVXLXR_LDUR7zhwNuwEjGQXutwym9n4q2yYewtOiyWndix7PHun4T90HitF2kpvTEpV8 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/index.html?ev=01_252 HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjsuvtIqzVY3ggWg3jVmRPkf4eU6UofNdZmU2iGH8lgkVsKG3xfGxi6O2lRHyOKn50YBLBiTc8MMX9QSagI6L5CaNPQZpEjxADTDWPZWTdYuONI2U1vduc5l9pQ31kaQgrLrKET67tDYUaF0Svqh8GOaRqwMkSqhfD5mOtOVYjQRCAJaHG0B81WmKbF0EQd7FZKUG_JFvsnTI&sai=AMfl-YQZJKu8l0SQ73izwOFHJYrUwCpfXmwD_G4vHiwb17J1h1X9KlyR2k-yockDal06uaYx0oPeQxsppA_IEe0q9zFenHZBh3kRRRI&sig=Cg0ArKJSzAcRQsGeMpwpEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9rYXkuY29tLGh0dHBzOi8vZG90b21pLmNvbQ&cry=1&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=1206&cbvp=1&cstd=1198&cisv=r20241001.96553&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: same-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyAttribution-Reporting-Eligible: event-source;navigation-sourceReferer: https://googleads.g.doubleclick.net/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /879366/express_html_inpage_rendering_lib_200_280.js HTTP/1.1Host: s0.2mdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFCMXlVN05fNmtBQUJlN3dNeFYyZw&google_push=AXcoOmREUFDoKt58WD4hhRsoVeOseZi1I0Ys1Qg0n7KxI_pZydHReAj6Hp0QmeOAuXJg_Zb7NJCvbxXGTTcS7koVHG-ASIrh08pMxw&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=beeswaxio&google_sc=&google_hm=QUFFTlQwN05fNmtBQUJXeDRZMEJRUQ&google_push=AXcoOmT4o063xBBQDu0z4njujpW3iMXyySg6RrAn0VBLP2vry8QG1govK7gCAyoaJNfaM1IIP-17W1aBlEfY617IxoiLn9u3SbkN4a0&bee_sync_partners=&bee_sync_current_partner=adx&bee_sync_hop_count=1 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=blismobile&google_push=AXcoOmQ9LWzOZX_W7ZE8MEuN6TtpvUxlswkb4ZYnGUx6uHdHBQtMz2EZHVoYNfztAT4ZT3vkqDhrk-8T4eqsTAD75Ut35hK3ikYD7g&google_hm=hmb_1GYeSeA3dHNB5A&google_redir=https%3A%2F%2Ftr.blismedia.com%2Fv1%2Fredirect%2FAdxPixel%3F%25%25GOOGLE_ERROR_PAIR%25%25%26partner_device_id%3D66FFD4661E49E037747341E4BLIS HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule700950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmT9EAPl8E48z0eEQF1Gw4M_8iQBOO4CuTrZ6xalCQ4vHxvtzD3c7FOKiAx6UAozNPvJ76sC3ENu9H-tNK5pXhBkeUF-wHPFqQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pcs/view?xai=AKAOjsuvtIqzVY3ggWg3jVmRPkf4eU6UofNdZmU2iGH8lgkVsKG3xfGxi6O2lRHyOKn50YBLBiTc8MMX9QSagI6L5CaNPQZpEjxADTDWPZWTdYuONI2U1vduc5l9pQ31kaQgrLrKET67tDYUaF0Svqh8GOaRqwMkSqhfD5mOtOVYjQRCAJaHG0B81WmKbF0EQd7FZKUG_JFvsnTI&sai=AMfl-YQZJKu8l0SQ73izwOFHJYrUwCpfXmwD_G4vHiwb17J1h1X9KlyR2k-yockDal06uaYx0oPeQxsppA_IEe0q9zFenHZBh3kRRRI&sig=Cg0ArKJSzAcRQsGeMpwpEAE&uach_m=%5BUACH%5D&crd=aHR0cHM6Ly9rYXkuY29tLGh0dHBzOi8vZG90b21pLmNvbQ&cry=1&fbs_aeid=%5Bgw_fbsaeid%5D&urlfix=1&omid=0&rm=1&ctpt=1206&cbvp=1&cstd=1198&cisv=r20241001.96553&uach=WyJXaW5kb3dzIiwiMTAuMC4wIiwieDg2IiwiIiwiMTE3LjAuNTkzOC4xMzQiLG51bGwsMCxudWxsLCI2NCIsW1siR29vZ2xlIENocm9tZSIsIjExNy4wLjU5MzguMTM0Il0sWyJOb3Q7QT1CcmFuZCIsIjguMC4wLjAiXSxbIkNocm9taXVtIiwiMTE3LjAuNTkzOC4xMzQiXV0sMF0.&arae=1&ftch=1&adurl= HTTP/1.1Host: ad.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/b959f22280157e2c555913dccd91372b.js HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=simplifi&google_hm=32B60805DE8843869CBAC4833A2F49DB&google_push=AXcoOmSdWHq4-e5JyuA-tIqiieYbVsQelGc07_N0LXqw6gPc5m_Q3M_32aCfbB6iWUy_u2v8p8v2B9jmEPWMukD8RaQ4pG1We68zaaA HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_ula=5153224&google_hm=-z20fGN5LACZeLZYrDY8vS4U4B8dNNgPSRxJ0GTSSlI&pi=adx&tdc=ams&pi=adxab&google_nid=rtb_house_us&google_gid=CAESEM_4e_-PjCsiqNDdDlZcgmU&google_cver=1&google_push=AXcoOmQM0a1_7HN4Aa2vmAopd9Qoj-gK-nSr9daJS2E11Gzxb00FrltUC4NxWKD_CvkFqetecjTmapofswe8yPzUovSWnlGf14SZi62B HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://pagead2.googlesyndication.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi5ap1b28-Z7uE-6kxeZBLcL_pRGozp0mZ3w2VZovNSPMSqoRw
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=whaleco_services_llc&google_push=AXcoOmTkkplSMNuUbwG3x2NG_dbKePuR3T5dWVXLXR_LDUR7zhwNuwEjGQXutwym9n4q2yYewtOiyWndix7PHun4T90HitF2kpvTEpV8 HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=bdsw&google_push=AXcoOmQlNuKXVW9fBpgD-siEiVtBt4LuexHwI4ExChPK2qIXWgdBwX3zFr_LzncagEJVe_tGfNLvz0mcQplVS-eeS1RrBBZxrLawZQ&google_hm=Snp2nVwbTAuJVYvwb8CEdg==&gdpr=&gdpr_consent= HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule703550v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703551v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702700v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule702701v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /sync/stickyads/834c591d97ba1180d18da6e4f93f46f9?gdpr=0&gdpr_consent= HTTP/1.1Host: pr-bh.ybp.yahoo.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: A3=d=AQABBFPU_2YCEMHQmkWA5FtJWDYVa9d9mmIFEgEBAQElAWcJZwAAAAAA_eMAAA&S=AQAAAnQ3ncZmf4JPQPHh-7KC5OM
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/6fc2d839f7cf510e00c9f5bd1132889f.jpg HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/a3a0e34ff72c160c1b186677f13e0128.svg HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/b959f22280157e2c555913dccd91372b.js HTTP/1.1Host: s0.2mdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/25fcc0797a2837d2f439c5a924fd40a6.svg HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/db3df4cf961c8d56e246db246f4d6dc6.svg HTTP/1.1Host: s0.2mdn.netConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://s0.2mdn.net/sadbundle/1535206504467815149/index.html?ev=01_252Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule700450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704000v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704001v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=soKWxluS4tuRGfA&MD=yw2KXhkV HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /pixel?google_nid=TheTradeDesk&google_hm=ZTMzNWUyZTEtYjgwZi00MjQ5LWI2NGItMTlmMTAxNmI3NWJh&google_push&gdpr=0&gdpr_consent=&ttd_tdid=e335e2e1-b80f-4249-b64b-19f1016b75ba HTTP/1.1Host: cm.g.doubleclick.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: IDE=AHWqTUkvYhLIXZSCYjm6v-BtRYFFIMD9dY2ElEd_GK58gGTn0qdnnrBQ4dJoXM96uKE; ar_debug=1; APC=AfxxVi6sxW-u8XfqJFOEroJ1FSC6gpiHfhkgfgyjOCzfYSUp_LDL4Q
Source: global traffic	HTTP traffic detected: GET /rules/rule703251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702401v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /sadbundle/1535206504467815149/media/6fc2d839f7cf510e00c9f5bd1132889f.jpg HTTP/1.1Host: s0.2mdn.netConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	DNS traffic detected: DNS query: www.wbtd.com
Source: global traffic	DNS traffic detected: DNS query: www.haoqq.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: fundingchoicesmessages.google.com
Source: global traffic	DNS traffic detected: DNS query: 8proof.com
Source: global traffic	DNS traffic detected: DNS query: ad.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: ad.turn.com
Source: global traffic	DNS traffic detected: DNS query: dclk-match.dotomi.com
Source: global traffic	DNS traffic detected: DNS query: a.c.appier.net
Source: global traffic	DNS traffic detected: DNS query: pr-bh.ybp.yahoo.com
Source: global traffic	DNS traffic detected: DNS query: dis.criteo.com
Source: global traffic	DNS traffic detected: DNS query: s.uuidksinc.net
Source: global traffic	DNS traffic detected: DNS query: b1sync.zemanta.com
Source: global traffic	DNS traffic detected: DNS query: cm.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: dsum-sec.casalemedia.com
Source: global traffic	DNS traffic detected: DNS query: ib.adnxs.com
Source: global traffic	DNS traffic detected: DNS query: s0.2mdn.net
Source: global traffic	DNS traffic detected: DNS query: widget.us.criteo.com
Source: global traffic	DNS traffic detected: DNS query: r.turn.com
Source: global traffic	DNS traffic detected: DNS query: www.googletagservices.com
Source: global traffic	DNS traffic detected: DNS query: um.simpli.fi
Source: global traffic	DNS traffic detected: DNS query: match.adsrvr.org
Source: global traffic	DNS traffic detected: DNS query: ads.travelaudience.com
Source: global traffic	DNS traffic detected: DNS query: x.bidswitch.net
Source: global traffic	DNS traffic detected: DNS query: match.prod.bidr.io
Source: global traffic	DNS traffic detected: DNS query: creativecdn.com
Source: global traffic	DNS traffic detected: DNS query: gw-iad-bid.ymmobi.com
Source: global traffic	DNS traffic detected: DNS query: us-u.openx.net
Source: global traffic	DNS traffic detected: DNS query: sync.teads.tv
Source: global traffic	DNS traffic detected: DNS query: tr.blismedia.com
Source: global traffic	DNS traffic detected: DNS query: www.temu.com
Source: global traffic	DNS traffic detected: DNS query: pool.admedo.com
Source: global traffic	DNS traffic detected: DNS query: sync.search.spotxchange.com
Source: global traffic	DNS traffic detected: DNS query: ups.analytics.yahoo.com
Source: global traffic	DNS traffic detected: DNS query: ads.stickyadstv.com
Source: global traffic	DNS traffic detected: DNS query: partners.tremorhub.com
Source: global traffic	DNS traffic detected: DNS query: fw.adsafeprotected.com
Source: global traffic	DNS traffic detected: DNS query: 1f2e7.v.fwmrm.net
Source: global traffic	DNS traffic detected: DNS query: tpt.dotomi.com
Source: global traffic	DNS traffic detected: DNS query: tpt.mediaplex.com
Source: global traffic	DNS traffic detected: DNS query: eb2.3lift.com
Source: global traffic	DNS traffic detected: DNS query: pm.w55c.net
Source: global traffic	DNS traffic detected: DNS query: image8.pubmatic.com
Source: global traffic	DNS traffic detected: DNS query: image2.pubmatic.com

Source: unknown

Source: chromecache_338.2.dr, chromecache_195.2.dr	String found in binary or memory: http://ad.doubleclick.net/viewad/817-grey.gif
Source: chromecache_317.2.dr, chromecache_306.2.dr	String found in binary or memory: http://gambit.ph
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: http://google.com
Source: chromecache_352.2.dr, chromecache_267.2.dr, chromecache_345.2.dr, chromecache_276.2.dr	String found in binary or memory: http://googleads.g.doubleclick.net
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: http://mathiasbynens.be/
Source: chromecache_401.2.dr, chromecache_294.2.dr	String found in binary or memory: http://opensource.org/licenses/MIT).
Source: chromecache_352.2.dr, chromecache_267.2.dr, chromecache_345.2.dr, chromecache_276.2.dr	String found in binary or memory: http://pagead2.googlesyndication.com
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_214.2.dr	String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_214.2.dr	String found in binary or memory: https://ad.doubleclick.net/
Source: chromecache_222.2.dr	String found in binary or memory: https://ads.stickyadstv.com/user-matching?id=11
Source: chromecache_251.2.dr, chromecache_285.2.dr	String found in binary or memory: https://adsense.com.
Source: chromecache_396.2.dr, chromecache_267.2.dr, chromecache_330.2.dr, chromecache_276.2.dr	String found in binary or memory: https://cdn.ampproject.org/amp4ads-host-v0.js
Source: chromecache_396.2.dr, chromecache_330.2.dr	String found in binary or memory: https://cdn.ampproject.org/rtv/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://cdn.ampproject.org/rtv/$
Source: chromecache_278.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_cm&google_dbm&gdpr=0
Source: chromecache_278.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dsp_secure&google_cm&google_dbm&gdpr=0
Source: chromecache_350.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=openx&google_cm&google_dbm
Source: chromecache_286.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=spotxchange_dbm&google_cm&google_dbm&gdpr=0
Source: chromecache_222.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=stickyxchange_dbm&google_cm&google_dbm&gdpr=0
Source: chromecache_350.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=teadstv_dbm&google_cm&google_dbm
Source: chromecache_286.2.dr	String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=tremor_video_dbm&google_cm&google_dbm&gdpr=0
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://cse.google.com/cse.js
Source: chromecache_425.2.dr, chromecache_244.2.dr	String found in binary or memory: https://csp.withgoogle.com/csp/lcreport/
Source: chromecache_278.2.dr	String found in binary or memory: https://dsum-sec.casalemedia.com/rrum?ixi=0&cm_dsp_id=85&gdpr=0&cb=https%3A%2F%2Fcm.g.doubleclick.ne
Source: chromecache_354.2.dr, chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/bg/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/getconfig/sodar
Source: chromecache_354.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=231
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/gen_204?id=sodar2&v=232
Source: chromecache_354.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=231
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232
Source: chromecache_231.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://ep2.adtrafficquality.google/sodar/$
Source: chromecache_220.2.dr, chromecache_341.2.dr	String found in binary or memory: https://fonts.google.com/license/googlerestricted
Source: chromecache_276.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Google
Source: chromecache_276.2.dr	String found in binary or memory: https://fonts.googleapis.com/css?family=Google
Source: chromecache_220.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesans/v61/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RP
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv39oS_a.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDv79oQ.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDvD9oS_a.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDvH9oS_a.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8FacM9Wef3EJPWRrHjgE4B6CnlZxHVDvr9oS_a.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etB77TKx9.woff2
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBD7TA.woff2)
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBP7TKx9.woff2
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etBT7TKx9.woff2
Source: chromecache_341.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/googlesansdisplay/v21/ea8IacM9Wef3EJPWRrHjgE4B6CnlZxHVBg3etB_7TKx9.woff2
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBxc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCBc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCRc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2)
Source: chromecache_205.2.dr	String found in binary or memory: https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfCxc4EsA.woff2)
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://fundingchoicesmessages.google.com/i/$
Source: chromecache_436.2.dr, chromecache_326.2.dr, chromecache_389.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_404.2.dr, chromecache_304.2.dr	String found in binary or memory: https://github.com/OwlCarousel2/OwlCarousel2/blob/master/LICENSE
Source: chromecache_372.2.dr, chromecache_214.2.dr	String found in binary or memory: https://github.com/google/safevalues/issues
Source: chromecache_436.2.dr, chromecache_326.2.dr, chromecache_389.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/main/LICENSE)
Source: chromecache_436.2.dr, chromecache_389.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/graphs/contributors)
Source: chromecache_345.2.dr, chromecache_276.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net
Source: chromecache_214.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://googleads.g.doubleclick.net/pagead/html/$
Source: chromecache_278.2.dr	String found in binary or memory: https://ib.adnxs.com/getuid?https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=$
Source: chromecache_276.2.dr, chromecache_285.2.dr, chromecache_407.2.dr, chromecache_408.2.dr, chromecache_423.2.dr, chromecache_256.2.dr, chromecache_263.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_354.2.dr, chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/bg/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/getconfig/sodar
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&bin=
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&name=invalid_geo&context=10
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=extra&rnd=
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&lidartos
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&start&control&fle=1&s
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-fallback2
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-later2
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-pagehide2
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-start2
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=reach&proto=
Source: chromecache_197.2.dr, chromecache_199.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=fccs&
Source: chromecache_251.2.dr, chromecache_285.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=plmetrics
Source: chromecache_352.2.dr, chromecache_372.2.dr, chromecache_214.2.dr, chromecache_345.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rcs_internal
Source: chromecache_399.2.dr, chromecache_374.2.dr, chromecache_312.2.dr, chromecache_433.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rhmss
Source: chromecache_354.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=231
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=sodar2&v=232
Source: chromecache_396.2.dr, chromecache_330.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_257.2.dr, chromecache_423.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=urind
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/html/$
Source: chromecache_388.2.dr, chromecache_434.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/
Source: chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/$
Source: chromecache_352.2.dr, chromecache_267.2.dr, chromecache_345.2.dr, chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=
Source: chromecache_302.2.dr, chromecache_417.2.dr, chromecache_242.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1673399160710718
Source: chromecache_352.2.dr, chromecache_257.2.dr, chromecache_267.2.dr, chromecache_251.2.dr, chromecache_345.2.dr, chromecache_276.2.dr, chromecache_285.2.dr, chromecache_423.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/err_rep.js
Source: chromecache_267.2.dr, chromecache_251.2.dr, chromecache_276.2.dr, chromecache_285.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/logging_library.js
Source: chromecache_285.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/managed/js/adsense/$
Source: chromecache_214.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping
Source: chromecache_276.2.dr, chromecache_285.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping?e=1
Source: chromecache_246.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?
Source: chromecache_354.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=231
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=232
Source: chromecache_338.2.dr, chromecache_195.2.dr	String found in binary or memory: https://s0.2mdn.net/ads/richmedia/studio/mu/templates/hifi/hifi.js
Source: chromecache_338.2.dr, chromecache_195.2.dr	String found in binary or memory: https://s0.2mdn.net/ads/richmedia/studio_canary/mu/templates/hifi/hifi_canary.js
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://securepubads.g.doubleclick.net/static/topics/topics_frame.html
Source: chromecache_286.2.dr	String found in binary or memory: https://sync.search.spotxchange.com/partner?adv_id=7025&gdpr=0&redir=https%3A%2F%2Fcm.g.doubleclick.
Source: chromecache_350.2.dr	String found in binary or memory: https://sync.teads.tv/um?eid=3&uid=&fb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dtea
Source: chromecache_231.2.dr	String found in binary or memory: https://tpc.googlesyndication.com
Source: chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://tpc.googlesyndication.com/sodar/$
Source: chromecache_222.2.dr	String found in binary or memory: https://ups.analytics.yahoo.com/ups/58269/sync?_origin=1&gdpr=0&redir=true
Source: chromecache_350.2.dr	String found in binary or memory: https://us-u.openx.net/w/1.0/cm?id=9ca165a9-d9fe-2ff6-d83d-d145a80b0d37&r=https%3A%2F%2Fcm.g.doublec
Source: chromecache_231.2.dr	String found in binary or memory: https://www.google.com
Source: chromecache_251.2.dr, chromecache_285.2.dr	String found in binary or memory: https://www.google.com/adsense
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://www.google.com/adsense/search/async-ads.js
Source: chromecache_354.2.dr, chromecache_267.2.dr, chromecache_276.2.dr, chromecache_427.2.dr, chromecache_231.2.dr	String found in binary or memory: https://www.google.com/recaptcha/api2/aframe
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://www.google.com/s2/favicons?sz=64&domain_url=
Source: chromecache_188.2.dr, chromecache_255.2.dr, chromecache_320.2.dr, chromecache_376.2.dr	String found in binary or memory: https://www.googleadservices.com/pagead/managed/js/activeview/
Source: chromecache_276.2.dr	String found in binary or memory: https://www.gstatic.com
Source: chromecache_267.2.dr, chromecache_276.2.dr	String found in binary or memory: https://www.gstatic.com/prose/protected/$

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49986
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49984
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49983
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49982
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49981
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49980
Source: unknown	Network traffic detected: HTTP traffic on port 49932 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50131 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50498 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 50177 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50257 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50532 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49979
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49978
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49977
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49976
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49975
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50502
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 50085 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50360 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49973
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50504
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49972
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50503
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49971
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50506
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49970
Source: unknown	Network traffic detected: HTTP traffic on port 50417 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50505
Source: unknown	Network traffic detected: HTTP traffic on port 50165 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50440 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50507
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50486 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50325 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50004 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50292 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49729
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50509
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49969
Source: unknown	Network traffic detected: HTTP traffic on port 49978 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49968
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49967
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49724
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49966
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50513
Source: unknown	Network traffic detected: HTTP traffic on port 50359 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49720
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49962
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50515
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50514
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49960
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50517
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50516
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50519
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50518
Source: unknown	Network traffic detected: HTTP traffic on port 49966 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50189 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50464 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50511
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50510
Source: unknown	Network traffic detected: HTTP traffic on port 50108 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50073 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50028 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50303 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50269 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50544 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49719
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49718
Source: unknown	Network traffic detected: HTTP traffic on port 50439 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49716
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49957
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49956
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49955
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50524
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50523
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49950
Source: unknown	Network traffic detected: HTTP traffic on port 50280 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50525
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50528
Source: unknown	Network traffic detected: HTTP traffic on port 49944 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50529
Source: unknown	Network traffic detected: HTTP traffic on port 50507 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50337 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50522
Source: unknown	Network traffic detected: HTTP traffic on port 50051 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50396 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50153 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50405 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49708
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49949
Source: unknown	Network traffic detected: HTTP traffic on port 50235 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50510 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49948
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49947
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49946
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49945
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49944
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49943
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 50061 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49968 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50462 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50221 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50026 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50301 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50270 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 50347 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 50335 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 50282 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50247 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50522 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50095 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50370 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50407 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50155 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50430 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49991 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 50038 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50208 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50429 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49956 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50259 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50534 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50083 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50496 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49999
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49998
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49997
Source: unknown	Network traffic detected: HTTP traffic on port 50121 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49996
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49995
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49993
Source: unknown	Network traffic detected: HTTP traffic on port 50016 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49992
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49991
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49990
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50199 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50474 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 50369 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49989
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49988
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49987
Source: unknown	Network traffic detected: HTTP traffic on port 50277 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50337
Source: unknown	Network traffic detected: HTTP traffic on port 50420 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50339
Source: unknown	Network traffic detected: HTTP traffic on port 50386 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50338
Source: unknown	Network traffic detected: HTTP traffic on port 50546 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50151 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50392 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50331
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50330
Source: unknown	Network traffic detected: HTTP traffic on port 50225 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50332
Source: unknown	Network traffic detected: HTTP traffic on port 50466 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50335
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50334
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50071 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50305 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50106
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50347
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50108
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50107
Source: unknown	Network traffic detected: HTTP traffic on port 50505 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50109
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50340
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50342
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50341
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50102
Source: unknown	Network traffic detected: HTTP traffic on port 50339 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50344
Source: unknown	Network traffic detected: HTTP traffic on port 50352 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50243 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50343
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50346
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50103
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50345
Source: unknown	Network traffic detected: HTTP traffic on port 50289 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50128 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50197 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50117
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50359
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50358
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50119
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50118
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50351
Source: unknown	Network traffic detected: HTTP traffic on port 50317 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50350
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50353
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50110
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50352
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50355
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50354
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50115
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50357
Source: unknown	Network traffic detected: HTTP traffic on port 50374 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50114
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50356
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49986 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50360
Source: unknown	Network traffic detected: HTTP traffic on port 50175 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50213 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50128
Source: unknown	Network traffic detected: HTTP traffic on port 50419 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 50012 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50127
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50369
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50129
Source: unknown	Network traffic detected: HTTP traffic on port 50255 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 50524 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50442 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50120
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50362
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 50093 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50122
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50364
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50121
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50124
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50366
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50123
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50365
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50126
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50368
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50125
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50367
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50048 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50370
Source: unknown	Network traffic detected: HTTP traffic on port 50340 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 50478 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50535
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50534
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50537
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50536
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50539
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50538
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50315 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50531
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50530
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50533
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50532
Source: unknown	Network traffic detected: HTTP traffic on port 50350 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50106 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50536 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50267 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50410 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50081 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50362 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50546
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50303
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50545
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50306
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50548
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50305
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50547
Source: unknown	Network traffic detected: HTTP traffic on port 50173 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50308
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50307
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50549
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50014 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50309
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50540
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49988 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50300
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50542
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50541
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50544
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50301
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50543
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50046 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50141 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50233 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50476 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50315
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50314
Source: unknown	Network traffic detected: HTTP traffic on port 50384 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50317
Source: unknown	Network traffic detected: HTTP traffic on port 49976 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50319
Source: unknown	Network traffic detected: HTTP traffic on port 50548 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50118 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50318
Source: unknown	Network traffic detected: HTTP traffic on port 50279 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50551
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50311
Source: unknown	Network traffic detected: HTTP traffic on port 50394 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50310
Source: unknown	Network traffic detected: HTTP traffic on port 50223 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50312
Source: unknown	Network traffic detected: HTTP traffic on port 50454 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50024 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50326
Source: unknown	Network traffic detected: HTTP traffic on port 50503 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50325
Source: unknown	Network traffic detected: HTTP traffic on port 49998 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50328
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50327
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50329
Source: unknown	Network traffic detected: HTTP traffic on port 50245 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50320
Source: unknown	Network traffic detected: HTTP traffic on port 50058 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50322
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50321
Source: unknown	Network traffic detected: HTTP traffic on port 50372 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50290 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50432 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50002 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50514 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50185 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50409 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50327 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50054
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50296
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50053
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50295
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50056
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50055
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50297
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50058
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50057
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50299
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50059
Source: unknown	Network traffic detected: HTTP traffic on port 49720 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50061
Source: unknown	Network traffic detected: HTTP traffic on port 50286 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50060
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50063
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50062
Source: unknown	Network traffic detected: HTTP traffic on port 50102 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50343 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50045 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50389 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50400 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50148 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50274 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50065
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50064
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50067
Source: unknown	Network traffic detected: HTTP traffic on port 50377 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50066
Source: unknown	Network traffic detected: HTTP traffic on port 50331 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50069
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50068
Source: unknown	Network traffic detected: HTTP traffic on port 50240 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50183 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50070
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50072
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50071
Source: unknown	Network traffic detected: HTTP traffic on port 50434 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50074
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50073
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50537 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50080 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50308 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50227 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50252 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50502 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50422 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50057 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50078
Source: unknown	Network traffic detected: HTTP traffic on port 50114 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50079
Source: unknown	Network traffic detected: HTTP traffic on port 50390 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50515 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50081
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50080
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50083
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50082
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 50085
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50458 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 50549 -> 443

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49718 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49719 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.6:49768 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50066 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50325 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50325 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.245.163.56:443 -> 192.168.2.6:50355 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:50394 version: TLS 1.2

Source: classification engine

Classification label: mal48.win@24/418@155/56

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2352 --field-trial-handle=2292,i,14619693789837683360,10101700089954709903,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.wbtd.com/"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2352 --field-trial-handle=2292,i,14619693789837683360,10101700089954709903,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1525654
Product:	CloudBasic
Start time:	13:39:48
Start date:	04.10.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://www.wbtd.com/

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://www.wbtd.com/

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://www.wbtd.com/