Source: unknown |
TCP traffic detected without corresponding DNS query: 104.46.162.224 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 173.222.162.32 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 173.222.162.32 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.204.76.112 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 173.222.162.32 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: global traffic |
HTTP traffic detected: GET /complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&oft=1&pgcl=20&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw HTTP/1.1Host: www.google.comConnection: keep-aliveX-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiVocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /async/newtab_ogb?hl=en-US&async=fixed:0 HTTP/1.1Host: www.google.comConnection: keep-aliveX-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiVocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /async/newtab_promos HTTP/1.1Host: www.google.comConnection: keep-aliveSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&oft=1&pgcl=20&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw HTTP/1.1Host: www.google.comConnection: keep-aliveX-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiVocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: noneSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /sorry/index?continue=https://www.google.com/async/newtab_promos&q=EgRmgZjcGOXjrrEGIjC4jVxfp-h1T95D__e1hifsmLHtMbQtVurfMLjuVV-qYNApfmE9CIFqdY7D1CKGhlsyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM HTTP/1.1Host: www.google.comConnection: keep-aliveSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 1P_JAR=2024-04-26-13; NID=513=G94Alckhsj3GYDAid5utgt3toPMw7gixOMraWuaUjZ23C3NcuD3PR2pz4HjUwIwj-gv_ft2CFQdY7YZLrqYiLpLPAZhVnFYnNsJ5hXli6QL4IJLfS5zfHR9Titgmca7yFH9ezkXsonmKmOD6x1-Gh6tcCsREl9zAEG2JLM8J0uU |
Source: global traffic |
HTTP traffic detected: GET /sorry/index?continue=https://www.google.com/async/newtab_ogb%3Fhl%3Den-US%26async%3Dfixed:0&hl=en-US&q=EgRmgZjcGOXjrrEGIjAn68XOZKbfXPOBM4wkhVftkUATczltJ7lJ71WAMuxxnRRZwbK5g7alfIDHjhzA5ZAyAXJKGVNPUlJZX0FCVVNJVkVfTkVUX01FU1NBR0VaAUM HTTP/1.1Host: www.google.comConnection: keep-aliveX-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiVocsBCJz+zAEIhaDNAQjcvc0BCLnKzQEIotHNAQiK080BCJ7WzQEIp9jNAQj5wNQVGPbJzQEYutLNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: emptyUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 1P_JAR=2024-04-26-13; NID=513=G94Alckhsj3GYDAid5utgt3toPMw7gixOMraWuaUjZ23C3NcuD3PR2pz4HjUwIwj-gv_ft2CFQdY7YZLrqYiLpLPAZhVnFYnNsJ5hXli6QL4IJLfS5zfHR9Titgmca7yFH9ezkXsonmKmOD6x1-Gh6tcCsREl9zAEG2JLM8J0uU |
Source: global traffic |
HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com |
Source: global traffic |
HTTP traffic detected: GET /AvGEoxV/ HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /jquery-3.6.0.min.js HTTP/1.1Host: code.jquery.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gelw.nalverd.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /turnstile/v0/api.js?render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gelw.nalverd.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /turnstile/v0/b/471dc2adc340/api.js?render=explicit HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gelw.nalverd.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j7byh/0x4AAAAAAAXFpOFgzO5Hc4Qb/auto/normal HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: cross-siteSec-Fetch-Mode: navigateSec-Fetch-Dest: iframeReferer: https://gelw.nalverd.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87a710338ea567d5 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j7byh/0x4AAAAAAAXFpOFgzO5Hc4Qb/auto/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j7byh/0x4AAAAAAAXFpOFgzO5Hc4Qb/auto/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/AvGEoxV/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IlpSV09rN0RlVXd1R3pSc0Z6Nm1jd2c9PSIsInZhbHVlIjoiQVhOU2dSK3JFMTNiMy8xeDJzUnpLK3RXK0pWTlBKMDl3bWFjdURmeHVhWDNLUktIajdtRTlDb1RJZEVRb3dJZFFoODJxYUdCWmN3NGlFUHJVcFBLeU5neTlEZFhhT0JBaEZObjZjNDNOcy9CY2k1ckRhY2NjeTcweDRsNHdMRGkiLCJtYWMiOiIzNzlhOGExZWZiOThmNGNkMzg4ZmYwYmQ0YzU0YWU4MjY5Yzc1NjUxMTFmNjIzYTZkZTAzYjM3MzZhYjFiMzM5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFMbjdadXBqWUE2UmxKL0toWHhPcWc9PSIsInZhbHVlIjoiT0dVZ0cvbEZJa3p2VGV6TDB5Ylk3WGhwSmdyK0kzNlJrYTJlR0FHQVVYNzh0TTBtWVVBRmV4ZCtCL3NjenhjekVuc2Vsd0h0Q3FmSTZENklENnJTMm9jNGJwclNpRTh0SklrdmdDVUJZMUM0QkdGMXhoYTdoYjZycGVVTklpcm4iLCJtYWMiOiI0ZDYxZDYyM2QwOTkwZGFkZTMxMTFjZWViZmVkMDkyMWY3NjU5OWUwMzFiOTk4ZmFkZDdmNDQwNDlhMjI1MmUyIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/cmg/1/wh0E0SXYnx6pTBdJW%2Fl926I%2BPRUplRdtQz3K9lHXs%2Fs%3D HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/87a710338ea567d5/1714139654150/r0ZfVbOmH73SGQe HTTP/1.1Host: challenges.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j7byh/0x4AAAAAAAXFpOFgzO5Hc4Qb/auto/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/2068823770:1714138173:Yd-dD0IZEEpfFfpf9Qa63h2pIQIK_QVifXRcV5tB7BU/87a710338ea567d5/a7fbae31b181157 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/i/87a710338ea567d5/1714139654150/r0ZfVbOmH73SGQe HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/pat/87a710338ea567d5/1714139654153/81999ed28a33744e83b5c38619d9069ef1e685be62df9d2992cd495c0e962af3/v0ZxRUGQqAmyGXK HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/j7byh/0x4AAAAAAAXFpOFgzO5Hc4Qb/auto/normalAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/2068823770:1714138173:Yd-dD0IZEEpfFfpf9Qa63h2pIQIK_QVifXRcV5tB7BU/87a710338ea567d5/a7fbae31b181157 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /cdn-cgi/challenge-platform/h/b/flow/ov1/2068823770:1714138173:Yd-dD0IZEEpfFfpf9Qa63h2pIQIK_QVifXRcV5tB7BU/87a710338ea567d5/a7fbae31b181157 HTTP/1.1Host: challenges.cloudflare.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /AvGEoxV/ HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveCache-Control: max-age=0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentReferer: https://gelw.nalverd.com/AvGEoxV/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Ikw4TWpBYlQybm0zMHlRbTF4VmIrc3c9PSIsInZhbHVlIjoiVndoNGNHcVVQUzRKSnoyVS9mVnM4UHl2OFNwcU1QcGx6YlFGMjlZcUpqTUFMQWNTVWg4U1pZU0RUZnZoN2F4SnJmUlF6K0JPZGkyL01GakpmTnFzVUVqNDFuSllpeGZER2RqLzZjUWx6YnEvZXB3Q0oyTWkyd28rSUxWamxPY1MiLCJtYWMiOiI0Y2IxMjE0Y2ZiZWYwOWZiNjlhN2E5ZWUwMmU4Yzc0MGE1ZGFiMTFiZTg4MjgxMGI5NWZlMTFhNzQxZGVkNGRiIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InY2TG1PRUc1dDBRMk5HUlJEYlpoZHc9PSIsInZhbHVlIjoiQkRlMjhiZ1A5S3p5MHh5bjBDMDhnOWZXQ2JTVHNoaTVqRUhzaE5FbFVjKzlOMHBqS2IySElKckx5bkh3eGxOc0lPZTB3SG5rbThMbjgyTVo4MW41YzJ2UmRyb3I5VWJGZDJiOXRoWDdXWTJ2UTNpOW05dGlFK3VBT2UyY21GVjMiLCJtYWMiOiI0Y2IxYTJjMThlOGJmMzY4MWNhZmI3ODdjNGY0YzUyNzg0ODRjNTg0MmE0MzIxMWU0MjY1MWFiYWQ3ZDQ2NzZiIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /ciu6ZlGujadtbi2YBUZC11pmfydNyxiG9k7l HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Ikw4TWpBYlQybm0zMHlRbTF4VmIrc3c9PSIsInZhbHVlIjoiVndoNGNHcVVQUzRKSnoyVS9mVnM4UHl2OFNwcU1QcGx6YlFGMjlZcUpqTUFMQWNTVWg4U1pZU0RUZnZoN2F4SnJmUlF6K0JPZGkyL01GakpmTnFzVUVqNDFuSllpeGZER2RqLzZjUWx6YnEvZXB3Q0oyTWkyd28rSUxWamxPY1MiLCJtYWMiOiI0Y2IxMjE0Y2ZiZWYwOWZiNjlhN2E5ZWUwMmU4Yzc0MGE1ZGFiMTFiZTg4MjgxMGI5NWZlMTFhNzQxZGVkNGRiIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InY2TG1PRUc1dDBRMk5HUlJEYlpoZHc9PSIsInZhbHVlIjoiQkRlMjhiZ1A5S3p5MHh5bjBDMDhnOWZXQ2JTVHNoaTVqRUhzaE5FbFVjKzlOMHBqS2IySElKckx5bkh3eGxOc0lPZTB3SG5rbThMbjgyTVo4MW41YzJ2UmRyb3I5VWJGZDJiOXRoWDdXWTJ2UTNpOW05dGlFK3VBT2UyY21GVjMiLCJtYWMiOiI0Y2IxYTJjMThlOGJmMzY4MWNhZmI3ODdjNGY0YzUyNzg0ODRjNTg0MmE0MzIxMWU0MjY1MWFiYWQ3ZDQ2NzZiIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /AvGEoxV/?I HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://gelw.nalverd.com/AvGEoxV/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Ii96dGxzUjRVbW5scVRVRnNYNk1RTWc9PSIsInZhbHVlIjoid1F1ZVN6WS8zdkVOQVdLd29YeEVUWVArVE1lKzVIaFhobTJsN2swYW1sZVZiWTRyY042NGViTHVQNXNQRlE0SjZwYXpTbk9vcmI4QkhqRnNVbm5rQ3RUU3p4LzZBcHNaUm94QmsvV1V2UnZnR3hhc0JESExUb2d3ZGQzVjdvWjAiLCJtYWMiOiJkYjdhMmViN2ZiNTJmM2YwODg4ZDE1YmZhYWEyNzM0MTlmZTE5ZDc2NzNjNjhjZTQyYWE0NjAyZDIyMWY1ZTVhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InoxN2lzZjNKdFlZY0Q3emprTWpNN2c9PSIsInZhbHVlIjoiVTJ4L1N5ZEVpOThzbVVKODZROTVNTXNPWEs3UmtaQzZzcUVVcmhkMk1IVDRGQlNPalBFa0kwL1R5QVoyQlhBVEFlamI4RklYc2xkRTczUjBXK2tFNXg4WFNESHh3d0Y1WVAxWkI1SE9Bb3grMys5NXErbzltUzIvK29DRGhXNnUiLCJtYWMiOiI4M2QzZDI2ZGU3OTlhYmNkMDg2NGVjNjFjNmRhNTE4ZjIwNTMxMmQ0NzQwZGFlMDVmZjIzNWExY2ZkMjFlMmJhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQ HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://gelw.nalverd.com/AvGEoxV/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IlVPWUR6YXNIUkRTbDZIRER1NVRrRGc9PSIsInZhbHVlIjoia0V4c052aFB1cndYaUI0b3k5R3BrQ2xQU3BRdmtWaWI0SGYyLzRvSE1EWC8za0xPbENtd2NhQUpTb0FSZVlMMnh1dHJHZHlkNDRJdXZvbTNHeHBxN1ZLMEpwZzh4YTZiT2M5MXQ3VmJ2YW1CVWtxTzZ5QzJiSUNRdU1zNzlGekIiLCJtYWMiOiJhZTMxZDhkNTg3NTk1Mjg0MjE1MWU3OTQ1OTNlNWMzZDM0YTAxMTJkODI2YjI2YjY5ZDBjMmZlMWFiMzhjMmU1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlpFYzlDa3dyUWd6c21SdjFCV3Z0Znc9PSIsInZhbHVlIjoia2xMNWZnQUVQcEhTejFLaHRrOE9SRXh4OEJaT1diTmxMc0xGL08yMjNqNW9RUzRtb2Q1dmplRk56OEN3NExNZnBDcEpiUWZzQ1Bjc2FiNkExeE1pbzIwOUJZWGozZkdNQW1xMHI4aTVUem9KcUViSU1Ma0dDSzZ1RzUwcjEyNUoiLCJtYWMiOiI5YWY2ZjUxN2VlZmE2NjUyYzkyNWM4MmFhOWM1OGExYTA4ZDBmNmIzYWIwMGMyNzcyNzhkNmRlMTlkZTNkOGM5IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /12xTPozz5QNdx7URFcdWeF8920 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /xyjOiDrdG3K2xYrsFtzef30 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /pq5Loe61P66934Jy6H9zKuv40 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gelw.nalverd.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /12mFBHzsl1P5UHY78Rh8VKqQwop46 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gelw.nalverd.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /56K0nbKYrgITt23boQaw63NUst60 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gelw.nalverd.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /45yVO44dmTA90syzESKrvw70 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gelw.nalverd.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /4.6.0/socket.io.min.js HTTP/1.1Host: cdn.socket.ioConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gelw.nalverd.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /recaptcha/api.js HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Intervention: <https://www.chromestatus.com/feature/5718547946799104>; level="warning"sec-ch-ua-platform: "Windows"Accept: */*X-Client-Data: CKq1yQEIi7bJAQiktskBCKmdygEIoOHKAQiVocsBCJz+zAEIhaDNAQi5ys0BCIrTzQEY9snNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gelw.nalverd.com/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: 1P_JAR=2024-04-26-13; NID=513=G94Alckhsj3GYDAid5utgt3toPMw7gixOMraWuaUjZ23C3NcuD3PR2pz4HjUwIwj-gv_ft2CFQdY7YZLrqYiLpLPAZhVnFYnNsJ5hXli6QL4IJLfS5zfHR9Titgmca7yFH9ezkXsonmKmOD6x1-Gh6tcCsREl9zAEG2JLM8J0uU |
Source: global traffic |
HTTP traffic detected: GET /89FC3LlzFMbfkAIa12MVy6APab80 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gelw.nalverd.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /efHT9fEl2bIjBxAkf788HZGPIeoMmn93 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://gelw.nalverd.comsec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /56t0gL5gK2cmpN4LsnFcyfwlpkl11tSccwbSup0iu89110 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /web8socket/socket.io/?type=User&appnum=1&EIO=4&transport=websocket HTTP/1.1Host: gelw.nalverd.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://gelw.nalverd.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3DSec-WebSocket-Key: pFT9s2ItGPHJ6hdGXrWlOw==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits |
Source: global traffic |
HTTP traffic detected: GET /mnOWaQBrcIdpa34BRhnzOaJ24edeMnemijmE4g5lxOGkEJX6fiGguaVvC2XLwx217 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /klj1eG3tSaytCwjrXzICsMuEqyQpW4g8SFRzUj6tIKqr7txlTIREt7dVq58AuzO33Lfaab230 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /wxzeIZFcFkuD2JEnuWY0FKopaBCDYwWLVVv9vW4bCd34124 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /qrqxZQ7i49HVQDFkT2K9mniyQTFXOnXx5i81oj42ckX345139 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6Imc4cFdwYkQyTFI5UkhROGs3a3UxT3c9PSIsInZhbHVlIjoiM1ovd3E0VDBDM0llM2Y3T084dUdBWEV2dU8yUXJSRFYvanRXNWFvU2JzSXB1VUpWWU9TNmFjZWo3SUZYQmQ1UFdKb2wxN1NrN2VmYWdPRExyYXBubG9HTWVSSHQ2Y1VzU2M3MU5ha3puQ0tDQzVVc3ZFOTNDakdyMDVaR3FqQnkiLCJtYWMiOiJiMmM3NDcyNWVjNzY5Y2I2ZmU4ZTFkNTgzYjM2ZWRhMmQ0MWEwMTFjY2NlNmEyYzk4Y2IzZjU0N2IyM2ZkZGEzIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Inc2eHp3T0pDQWZuYWxjQ2dWQ3JLSkE9PSIsInZhbHVlIjoiUFBaRk9YeWtZUkgyUHYzK1hCeXFmUlE4dFZKS0N4U1FzN1V5S2k3TlhEczF0T2p3cXRSQ00zM0J4Tm8vYW96TUhUT21JL24vR3BLSzVKWTZaR1ZnbjlNQXFGN3NCYVJOaE5vY1o1a0RwRSsyN0tRWkpuN0FVUk9xeDhORFB3ZU8iLCJtYWMiOiJiYzU1NDIxNzE1OTQyOWQ2NzFhMWZhOGNjYThhNTJlODk5Mzg4MTUzNjUyYzY1MDE5OWE2NDIzZjIxMGYzODU2IiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /mn5trU4TDuv3RovRLaSklrwxCRX3PZ1DLDk90150 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /klYxDrIn4c5ahRCJcTlqyzxGkfyG4Q3O2Emd78169 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /yzRPf0ukSa92U6vgYnj4wVzAUifxwAyrsUB99awLhumZZ1wwaE3ab180 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /opS0liWtiXMPTKhtyAqukrR2E4BkVhGkIyPEij9IxRXmD8amGJE1HQR7T51iDwV8Eef198 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /mnOWaQBrcIdpa34BRhnzOaJ24edeMnemijmE4g5lxOGkEJX6fiGguaVvC2XLwx217 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /vsM6mmvurLL43CsA8dxFAJ3rUHNM6UX3tRalxywoFHROMEZ4H0ywk9u8BpBzIWiEzk HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /klj1eG3tSaytCwjrXzICsMuEqyQpW4g8SFRzUj6tIKqr7txlTIREt7dVq58AuzO33Lfaab230 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /wxzeIZFcFkuD2JEnuWY0FKopaBCDYwWLVVv9vW4bCd34124 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /ghul1Tu50F2Y5jjiuNP6JD7kUYmWfHYKkVUyz4FdmnjUBVW0XkEsPF4LxYKUjdA3pZWDJffxref210 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /klYxDrIn4c5ahRCJcTlqyzxGkfyG4Q3O2Emd78169 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /yzRPf0ukSa92U6vgYnj4wVzAUifxwAyrsUB99awLhumZZ1wwaE3ab180 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /opXzx0V3EAxkN1NVtcp1FcM5voH8d1uvMINzY0npJbyzB59Q9k6zaOH8NN1UAEcJPowpabef231 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /stfgaECSNBRcwGTjvw4Y2UjQh2isH45Yxy60MMkI4AG5WKuuMRQB3u7ef252 HTTP/1.1Host: gelw.nalverd.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://gelw.nalverd.com/FWGyepeeTcNLGevvghfBiFFrzBGCYUBPWXEMKIPPIVBICGFWIRWQZIQCXMQI?NUXHCCSXGMHREERTFBIRZOTJnUNpiQBJQVUNRJGENPXLFHUCZQRYGBXSLLNBBLAQSWMBHQAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /opS0liWtiXMPTKhtyAqukrR2E4BkVhGkIyPEij9IxRXmD8amGJE1HQR7T51iDwV8Eef198 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /mn5trU4TDuv3RovRLaSklrwxCRX3PZ1DLDk90150 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /qrqxZQ7i49HVQDFkT2K9mniyQTFXOnXx5i81oj42ckX345139 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /opXzx0V3EAxkN1NVtcp1FcM5voH8d1uvMINzY0npJbyzB59Q9k6zaOH8NN1UAEcJPowpabef231 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /ghul1Tu50F2Y5jjiuNP6JD7kUYmWfHYKkVUyz4FdmnjUBVW0XkEsPF4LxYKUjdA3pZWDJffxref210 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /web8socket/socket.io/?type=User&appnum=1&EIO=4&transport=websocket HTTP/1.1Host: gelw.nalverd.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://gelw.nalverd.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3DSec-WebSocket-Key: 43TXkwQJiEWVqmU+d9NKSA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits |
Source: global traffic |
HTTP traffic detected: GET /stfgaECSNBRcwGTjvw4Y2UjQh2isH45Yxy60MMkI4AG5WKuuMRQB3u7ef252 HTTP/1.1Host: gelw.nalverd.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3D |
Source: global traffic |
HTTP traffic detected: GET /web8socket/socket.io/?type=User&appnum=1&EIO=4&transport=websocket HTTP/1.1Host: gelw.nalverd.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://gelw.nalverd.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3DSec-WebSocket-Key: 8BTlkE7ayTVFHJXxWb5r1g==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits |
Source: global traffic |
HTTP traffic detected: GET /web8socket/socket.io/?type=User&appnum=1&EIO=4&transport=websocket HTTP/1.1Host: gelw.nalverd.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://gelw.nalverd.comSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6ImkzM3QxU0pJRHM3Q1lrSXVXWC9ONUE9PSIsInZhbHVlIjoiNG1yS1pONkhmdWp0QW5ZRG5GTmh1YmQ5QnErczgxQ2plVTA3b3lOZitRaUw5M0UzWmVwSDEzQkZHK2ZUY3RmRldMcW82S3QzSFNHcERFaFRUQTdDdTBWTFN6bVhNMlloRUh5UllwenNNSkdZclNwbjhpU24rMTFTMVQ3OGgra1QiLCJtYWMiOiI5YTg4ZTM0OTUxOTk5ZWQ2OGM2YzlkZGZiNmZjMzZlZjVhYTdlM2VjZDk4MmE1MGIwZmIzMDNmZjZkMDg1NWMyIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InYyajhjc05pdTJiczhSOGs2T1Y1TEE9PSIsInZhbHVlIjoiZ0tvL09WM2NrdXJsUG5KcUZaUytra2Nlb2Z3T1VIanc3bC8xaEYrUTVLZnZ0L3dmMHJJTWl5eUw2L1owbEg2akJhcHdqb0NVWUY5RXhqanpndE5CYy83WU50MUg5SW1tWUNlaFh4VU5Uell1U2tpamprZjVud01Rb2N6VHhHUFEiLCJtYWMiOiJiNWEzYzlhZjA5YzI1OWRkODNhZWI0NTM2OTU5OWVmOWYwMjlkMWExY2Y4Y2M3OWI2MTRhOGY5ZTIwMDAzOWVhIiwidGFnIjoiIn0%3DSec-WebSocket-Key: JQVg/LgVIntA5dEtTHa/aA==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49744 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49743 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49817 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49672 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49740 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49789 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49800 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49766 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49743 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49781 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49769 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49803 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49826 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49739 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49736 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49735 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49772 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49734 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49733 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49675 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49820 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49812 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49784 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49763 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49806 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49823 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49752 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49798 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49735 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49819 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49787 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49760 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49745 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49793 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49774 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49757 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49782 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49799 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49734 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49798 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49797 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49796 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49794 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49672 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49793 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49792 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49822 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49791 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49740 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49765 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49768 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49796 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49825 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49808 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49811 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49827 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49826 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49754 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49825 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49823 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49771 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49789 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49822 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49733 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49788 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49821 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49787 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49820 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49786 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49779 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49785 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49784 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49813 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49783 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49782 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49781 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49780 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49785 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49762 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49807 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49819 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49818 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49776 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49799 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49810 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49817 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49816 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49736 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49791 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49759 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49813 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49753 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49779 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49812 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49778 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49811 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49810 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49816 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49776 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49775 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49774 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49773 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49772 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49771 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49770 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49788 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49767 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49780 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49794 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49827 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49802 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49809 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49808 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49807 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49806 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49804 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49773 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49803 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49769 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49802 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49768 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49801 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49739 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49756 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49767 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49800 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49766 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49758 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49765 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49783 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49763 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49762 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49761 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49678 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49760 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49821 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49770 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49797 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49801 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49809 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49759 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49778 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49758 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49757 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49755 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49756 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49755 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49754 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49753 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49752 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49818 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49786 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49761 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49804 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49744 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49775 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 49792 -> 443 |
Source: unknown |
Network traffic detected: HTTP traffic on port 443 -> 49745 |
Source: unknown |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" |
|
Source: unknown |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http:/// |
|
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2028 --field-trial-handle=1988,i,14014969750969590740,8094112872708556366,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 |
|
Source: unknown |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --single-argument http:/// |
|
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2036 --field-trial-handle=1992,i,16513210451006904575,5440778139736474350,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 |
|
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2032 --field-trial-handle=1976,i,12066371401791932286,9202225342553752342,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 |
|
Source: unknown |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://gelw.nalverd.com/AvGEoxV/" |
|
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2028 --field-trial-handle=1988,i,14014969750969590740,8094112872708556366,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2036 --field-trial-handle=1992,i,16513210451006904575,5440778139736474350,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2032 --field-trial-handle=1976,i,12066371401791932286,9202225342553752342,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 |
Jump to behavior |
Source: C:\Program Files\Google\Chrome\Application\chrome.exe |
Process created: unknown unknown |
Jump to behavior |